| |
| |||||||
Log-Analyse und Auswertung: Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runterWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
19.12.2015, 21:55
| #1 |
 |  Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter Hallo zusammen, ich befürchte ich habe mir einen Virus zugelegt. Bei meinem Windows 10 System wird der abgesicherte Modus verhindert, indem der PC direkt wieder runterfährt. Der normale Systemstart hingegen ist problemlos möglich. Anbei die Logs. Danke schon mal für die Hilfe! FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:19-12-2015
durchgeführt von Nils (Administrator) auf DIEKUCKS (19-12-2015 21:43:38)
Gestartet von F:\Downloads
Geladene Profile: Nils & Maren & Lilli & Administrator (Verfügbare Profile: Nils & Maren & Lilli & Administrator)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> dwm.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
konnte nicht auf den Prozess zugreifen -> dasHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Windows\SysWOW64\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\WsxService.exe
konnte nicht auf den Prozess zugreifen -> NvStreamNetworkService.exe
konnte nicht auf den Prozess zugreifen -> conhost.exe
konnte nicht auf den Prozess zugreifen -> WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Salfeld Computer) C:\Windows\SysWOW64\cchservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Salfeld Computer) C:\Windows\SysWOW64\ccsync.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Salfeld Computer) C:\Windows\tray\wintmr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
konnte nicht auf den Prozess zugreifen -> MpCmdRun.exe
(2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\Nexus.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Spotify Ltd) C:\Users\Nils\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
konnte nicht auf den Prozess zugreifen -> fontdrvhost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8522496 2015-12-19] (Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [571192 2014-08-14] (Acronis)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-11-05] (NVIDIA Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5380368 2015-07-20] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [693336 2015-07-19] (Acronis International GmbH)
HKLM-x32\...\Run: [ChicoSys] => C:\WINDOWS\SysWOW64\cc32\webtmr.exe [6692360 2015-07-10] (Salfeld Computer)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-11-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [803200 2015-12-01] (Avira Operations GmbH & Co. KG)
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <===== ACHTUNG
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [NeXuS] => C:\Program Files (x86)\Winstep\Nexus.exe [16993408 2014-11-05] (Winstep Software Technologies)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [CCWinTray] => C:\Windows\tray\wintmr.exe [7117184 2014-11-27] (Salfeld Computer)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [Spotify Web Helper] => C:\Users\Nils\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2345584 2015-12-13] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [232960 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [805888 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Run: [Spotify Web Helper] => C:\Users\Lilli\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2015-12-14] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Run: [Spotify] => C:\Users\Lilli\AppData\Roaming\Spotify\Spotify.exe [8387696 2015-12-14] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\RunOnce: [Uninstall C:\Users\Lilli\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Lilli\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\system: [DisableClock] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\Explorer: [RestrictRun] 0
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{f19dd375-f585-429c-9ac4-41059f25f64c}: [NameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1005 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-12-02] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-02] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Toolbar: HKLM - Kein Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Keine Datei
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Nils\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default
FF SelectedSearchEngine: Google
FF Homepage: about:newtab
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com')%20%7B%20return%20'PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "ftp", "188.165.43.114"
FF NetworkProxy: "ftp_port", 8118
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "188.165.43.114"
FF NetworkProxy: "socks_port", 8118
FF NetworkProxy: "ssl", "188.165.43.114"
FF NetworkProxy: "ssl_port", 8118
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-19] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-02] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.770\npSurveillancePlugin_x86_64.dll [2015-10-28] (Synology)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-19] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.770\npSurveillancePlugin.dll [2015-10-28] (Synology)
FF Plugin HKU\S-1-5-21-4268369312-20602237-3728962022-1002: SkypePlugin -> C:\Users\Nils\AppData\Local\SkypePlugin\7.11.0.39\npGatewayNpapi.dll [2015-11-26] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-4268369312-20602237-3728962022-1002: SkypePlugin64 -> C:\Users\Nils\AppData\Local\SkypePlugin\7.11.0.39\npGatewayNpapi-x64.dll [2015-11-26] (Skype Technologies S.A.)
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-04-08] [ist nicht signiert]
FF Extension: Delicious Bookmarks - C:\Users\Nils\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\extensions\{2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9} [2014-10-17] [ist nicht signiert]
FF Extension: Adguard AdBlocker - C:\Users\Nils\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\adguardadblocker@adguard.com.xpi [2015-12-07]
FF Extension: Hola Better Internet - C:\Users\Nils\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-12-19]
FF Extension: New Tab Override (browser.newtab.url replacement) - C:\Users\Nils\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\newtaboverride@agenedia.com.xpi [2015-11-29]
FF Extension: FT DeepDark - C:\Users\Nils\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-12-19]
FF Extension: Kein Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4268369312-20602237-3728962022-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1418560 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [249624 2015-11-23] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\DfSdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany) [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
S2 ksupmgr; C:\Windows\SysWOW64\ksupmgr.exe [1190224 2015-07-10] (Salfeld Computer)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1768912 2015-09-11] (Micro-Star INT'L CO., LTD.)
R2 NMSAccess; C:\WINDOWS\SysWOW64\NMSAccessU.exe [71096 2009-01-12] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-11-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-11-05] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2099720 2015-11-27] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 PelService; C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe [178688 2012-03-13] () [Datei ist nicht signiert]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe [72344 2008-02-17] (SiSoftware) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2014-01-21] (WiseCleaner.com) [Datei ist nicht signiert]
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-05] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-01] (Avira Operations GmbH & Co. KG)
R3 DroidCam; C:\Windows\system32\DRIVERS\droidcam.sys [33592 2015-05-25] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\system32\DRIVERS\droidcamvideo.sys [230712 2015-05-25] (Windows (R) Win 7 DDK provider)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2014-09-18] (Acronis International GmbH)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-03-20] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-12-02] (REALiX(tm))
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185088 2015-12-11] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2015-07-01] (CACE Technologies)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-11-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [889584 2015-12-02] (Realtek )
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2000-01-01] (Synaptics Incorporated)
R2 tib; C:\Windows\system32\DRIVERS\tib.sys [1058632 2015-07-25] (Acronis International GmbH)
S2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [248648 2015-07-25] (Acronis International GmbH)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R1 WiseTDIFw; C:\Windows\WiseTDIFw64.sys [39464 2015-03-20] (WiseCleaner.com) [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-19 21:38 - 2015-12-19 21:43 - 00000000 ____D C:\FRST
2015-12-19 10:15 - 2015-12-19 20:51 - 00000000 ___HD C:\ProgramData\Device
2015-12-19 10:11 - 2015-12-19 10:14 - 00000000 ____D C:\AdwCleaner
2015-12-19 08:18 - 2015-12-19 08:18 - 00000000 ____D C:\Users\Nils\Documents\ProcAlyzer Dumps
2015-12-19 06:43 - 2015-12-19 06:43 - 06539752 _____ (Tim Kosse) C:\Users\Nils\Downloads\FileZilla_3.14.1_win64-setup.exe
2015-12-19 05:53 - 2015-12-19 10:00 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-12-19 05:07 - 2015-12-19 06:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-19 05:04 - 2015-12-19 05:57 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-19 05:04 - 2015-12-19 05:07 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-12-19 04:57 - 2015-12-19 04:57 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-19 04:56 - 2015-12-19 10:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-12-19 04:56 - 2015-12-19 10:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-12-19 04:56 - 2015-12-19 04:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-12-19 04:49 - 2015-12-19 06:00 - 00000000 ____D C:\Users\Nils\AppData\Local\FSDART
2015-12-19 04:48 - 2015-12-19 04:49 - 00000000 ____D C:\ProgramData\F-Secure
2015-12-19 04:48 - 2015-12-19 04:48 - 00000000 ____D C:\Users\Nils\AppData\Local\F-Secure
2015-12-19 04:44 - 2015-12-19 04:44 - 00000000 ____D C:\KVRT_Data
2015-12-19 04:41 - 2015-12-19 04:44 - 00202998 _____ C:\TDSSKiller.3.1.0.9_19.12.2015_04.41.58_log.txt
2015-12-19 04:29 - 2015-12-19 04:29 - 00000000 ____D C:\Users\Nils\Documents\Simply Super Software
2015-12-19 04:06 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-19 04:06 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-19 04:06 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-19 04:05 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-19 04:05 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-19 04:05 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-19 04:05 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-19 04:05 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-19 04:05 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-19 04:05 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-19 04:05 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-19 04:05 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-19 04:05 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-19 04:05 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-19 04:05 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-19 04:05 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-19 04:05 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-19 04:05 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-19 04:05 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-19 04:05 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-19 04:05 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-19 04:05 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-19 04:05 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-19 04:05 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-19 04:05 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-19 04:05 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-19 04:05 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-19 04:05 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-19 04:05 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-19 04:05 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-19 04:05 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-19 04:05 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-19 04:05 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-19 04:05 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-19 04:05 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-19 04:05 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-19 04:05 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-19 04:05 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-19 04:05 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-19 04:05 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-19 04:05 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-19 04:05 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-19 04:05 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-19 04:05 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-19 04:05 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 37882672 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 22345336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 18389624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 16561320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 15839392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 14844304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 13533416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 12040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 02876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 02496816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01905272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435906.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435906.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01016360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00877872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00689784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00445400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00422752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00177416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-12-19 04:01 - 2015-12-19 04:01 - 72121872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-12-19 04:01 - 2015-12-19 04:01 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 13120760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 12986520 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05775144 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05412880 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05289952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03741396 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-12-19 04:01 - 2015-12-19 04:01 - 03299824 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03278408 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03196455 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-12-19 04:01 - 2015-12-19 04:01 - 02997504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02823280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02711296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-12-19 04:01 - 2015-12-19 04:01 - 02600408 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02531696 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02437136 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02110600 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02050176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01839360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01601952 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01395760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01350456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01334384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01211832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01194352 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01121864 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00998032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00961848 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00952984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00923744 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00888480 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00874728 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00873472 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00749000 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00699064 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00678184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00677672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00645456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00596120 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00569440 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-12-19 04:01 - 2015-12-19 04:01 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00448584 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00362056 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00357520 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00340648 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00258504 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00224264 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00172584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00158696 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00088328 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-12-12 04:56 - 2015-12-12 04:56 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll
2015-12-12 04:56 - 2015-12-12 04:56 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll
2015-12-09 12:02 - 2015-12-09 12:02 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-12-09 01:43 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 01:43 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 01:43 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 01:43 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 01:43 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-09 01:43 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-09 01:43 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-09 01:43 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-09 01:43 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 01:43 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 01:43 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 01:43 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 01:43 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 01:43 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 01:43 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-09 01:43 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 01:43 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 01:43 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 01:43 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 01:43 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 01:43 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 01:43 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 01:43 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 01:43 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 01:43 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 01:43 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 01:43 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 00:08 - 2015-12-09 00:36 - 00000000 ____D C:\Users\Maren\Desktop\FOTOBUCH & KALENDER
2015-12-08 02:55 - 2015-12-08 02:55 - 00002676 _____ C:\Users\Nils\AppData\Local\recently-used.xbel
2015-12-05 02:16 - 2015-12-05 02:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-05 01:18 - 2015-12-19 21:23 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-05 01:18 - 2015-12-19 20:51 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-05 01:18 - 2015-12-05 01:18 - 00004194 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 01:18 - 2015-12-05 01:18 - 00003962 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 17:20 - 2015-12-04 17:20 - 00515471 _____ C:\Users\Nils\Downloads\default_htc_Icons.zip
2015-12-03 00:34 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-03 00:34 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-03 00:34 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-03 00:34 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-12-03 00:34 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-03 00:34 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 00:33 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-12-03 00:33 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-03 00:33 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-03 00:33 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-03 00:33 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-03 00:33 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-03 00:33 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-03 00:33 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-03 00:33 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-03 00:33 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-12-03 00:33 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-12-03 00:33 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-03 00:33 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-03 00:33 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-03 00:33 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-12-03 00:33 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-03 00:33 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-03 00:33 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-03 00:33 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-03 00:33 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-03 00:33 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-03 00:33 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-03 00:33 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-03 00:33 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-03 00:33 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-03 00:33 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-12-03 00:33 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-03 00:33 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2015-12-03 00:33 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2015-12-03 00:33 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-03 00:33 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-03 00:33 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-03 00:33 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-03 00:33 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-12-03 00:33 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-12-03 00:33 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-03 00:33 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-03 00:33 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-12-03 00:33 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-03 00:33 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-12-03 00:33 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-12-03 00:33 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-03 00:33 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-03 00:33 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-03 00:33 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-12-02 23:42 - 2015-12-02 23:42 - 00000000 ____D C:\Users\Nils\AppData\Local\SkypePlugin
2015-12-02 20:45 - 2015-12-02 20:45 - 00008480 _____ C:\Users\Maren\Downloads\winmail (1).dat
2015-12-02 20:44 - 2015-12-02 20:44 - 00361472 _____ C:\Users\Maren\Downloads\winmail_opener.exe
2015-12-02 20:44 - 2015-12-02 20:44 - 00000000 ____D C:\Users\Maren\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winmail Opener
2015-12-02 20:42 - 2015-12-02 20:42 - 00008480 _____ C:\Users\Maren\Downloads\winmail.dat
2015-12-02 02:19 - 2015-12-19 21:40 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-02 02:19 - 2015-12-19 04:03 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-02 02:13 - 2015-12-19 04:01 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-12-02 02:12 - 2015-12-02 02:12 - 00889584 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-12-02 02:12 - 2015-12-02 02:12 - 00084064 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-12-02 02:11 - 2015-12-11 01:28 - 00185088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-12-02 01:54 - 2015-12-02 01:55 - 00003424 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2015-12-02 01:54 - 2015-12-02 01:55 - 00003070 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Nils)
2015-12-02 01:54 - 2015-12-02 01:54 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-12-02 01:54 - 2015-12-02 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-30 22:47 - 2015-11-30 22:47 - 00003640 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-27 23:06 - 2015-11-27 23:06 - 00003041 _____ C:\Users\Nils\Desktop\Helium.lnk
2015-11-27 20:19 - 2015-11-27 20:23 - 00000000 ____D C:\Users\Nils\Documents\FIFA 16
2015-11-27 04:03 - 2015-11-27 04:03 - 00001230 _____ C:\Users\Public\Desktop\FIFA 16.lnk
2015-11-27 03:47 - 2015-11-27 03:48 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-11-26 00:33 - 2015-11-26 00:33 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2015-11-25 14:31 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-25 14:31 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-25 14:31 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-25 14:31 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-25 14:31 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-11-19 00:29 - 2015-11-13 07:55 - 00035680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-11-19 00:29 - 2015-11-13 07:51 - 00698208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-19 00:29 - 2015-11-13 07:51 - 00523616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-19 00:29 - 2015-11-13 07:51 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-11-19 00:29 - 2015-11-13 07:43 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-19 00:29 - 2015-11-13 07:43 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-19 00:29 - 2015-11-13 07:43 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-11-19 00:29 - 2015-11-13 07:43 - 00110032 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-11-19 00:29 - 2015-11-13 07:43 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-11-19 00:29 - 2015-11-13 07:42 - 00516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-19 00:29 - 2015-11-13 07:42 - 00408128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-11-19 00:29 - 2015-11-13 07:42 - 00088392 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-19 00:29 - 2015-11-13 07:41 - 22572632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-19 00:29 - 2015-11-13 07:33 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-11-19 00:29 - 2015-11-13 07:33 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-11-19 00:29 - 2015-11-13 07:33 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-19 00:29 - 2015-11-13 07:32 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2015-11-19 00:29 - 2015-11-13 07:21 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-11-19 00:29 - 2015-11-13 07:21 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-11-19 00:29 - 2015-11-13 07:21 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-11-19 00:29 - 2015-11-13 07:21 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-11-19 00:29 - 2015-11-13 07:21 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-11-19 00:29 - 2015-11-13 07:21 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2015-11-19 00:29 - 2015-11-13 07:18 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-11-19 00:29 - 2015-11-13 07:09 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2015-11-19 00:29 - 2015-11-13 07:07 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-11-19 00:29 - 2015-11-13 07:06 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-11-19 00:29 - 2015-11-13 07:05 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-19 00:29 - 2015-11-13 07:05 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-11-19 00:29 - 2015-11-13 07:05 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-11-19 00:29 - 2015-11-13 07:05 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-11-19 00:29 - 2015-11-13 07:04 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-11-19 00:29 - 2015-11-13 07:04 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-11-19 00:29 - 2015-11-13 07:04 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-11-19 00:29 - 2015-11-13 07:03 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-19 00:29 - 2015-11-13 07:00 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-11-19 00:29 - 2015-11-13 06:59 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-11-19 00:29 - 2015-11-13 06:58 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-19 00:29 - 2015-11-13 06:58 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-19 00:29 - 2015-11-13 06:57 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-11-19 00:29 - 2015-11-13 06:56 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-19 00:29 - 2015-11-13 06:55 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-19 00:29 - 2015-11-13 06:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-19 00:29 - 2015-11-13 06:53 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-11-19 00:29 - 2015-11-13 06:50 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-19 00:29 - 2015-11-13 06:49 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-19 00:29 - 2015-11-13 06:40 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2015-11-19 00:29 - 2015-11-13 06:40 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.proxy.dll
2015-11-19 00:29 - 2015-11-13 06:39 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-19 00:29 - 2015-11-13 06:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2015-11-19 00:29 - 2015-11-13 06:33 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-19 00:29 - 2015-11-13 06:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-11-19 00:29 - 2015-11-13 06:30 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-11-19 00:29 - 2015-11-13 06:29 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-11-19 00:29 - 2015-11-13 06:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2015-11-19 00:29 - 2015-11-13 06:23 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-19 00:29 - 2015-11-13 06:19 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-19 21:41 - 2014-09-07 12:20 - 00000601 _____ C:\WINDOWS\SysWOW64\excltmp~.dat
2015-12-19 21:40 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-19 21:24 - 2014-03-16 22:28 - 00000000 ____D C:\Users\Nils\AppData\Roaming\Skype
2015-12-19 20:56 - 2015-10-30 19:35 - 00780072 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-19 20:56 - 2015-10-30 19:35 - 00156884 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-19 20:56 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-19 20:56 - 2015-09-14 09:20 - 01811252 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-19 20:51 - 2015-11-14 13:43 - 00000000 ____D C:\Users\Nils
2015-12-19 20:51 - 2014-03-23 09:13 - 00000000 ___RD C:\Users\Nils\Google Drive
2015-12-19 20:50 - 2015-11-14 13:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-19 20:50 - 2015-10-30 07:28 - 01310720 ___SH C:\WINDOWS\system32\config\BBI
2015-12-19 20:43 - 2015-10-14 15:00 - 00000294 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Nils.job
2015-12-19 20:42 - 2015-10-14 15:00 - 00002476 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Nils
2015-12-19 19:38 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-19 10:15 - 2015-09-14 15:03 - 00003146 _____ C:\WINDOWS\SysWOW64\cchservice.err
2015-12-19 10:15 - 2014-09-07 12:19 - 00000307 _____ C:\NET.INI
2015-12-19 10:14 - 2015-09-14 09:23 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-19 09:59 - 2015-03-20 17:48 - 00000000 ____D C:\Program Files (x86)\ESET
2015-12-19 08:17 - 2014-03-17 04:53 - 00000000 ____D C:\Users\Nils\AppData\Roaming\FileZilla
2015-12-19 07:54 - 2014-03-29 18:59 - 00000000 ____D C:\Users\Nils\AppData\Roaming\vlc
2015-12-19 06:00 - 2014-03-16 16:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-19 05:05 - 2014-05-02 20:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-19 05:04 - 2014-05-02 20:06 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-19 04:26 - 2014-03-17 12:44 - 00000000 ____D C:\ProgramData\TEMP
2015-12-19 04:25 - 2014-03-16 21:32 - 00000000 ____D C:\Users\Public\Documents\Winstep
2015-12-19 04:15 - 2014-11-19 11:28 - 00000000 ____D C:\Users\Nils\AppData\Roaming\QuickScan
2015-12-19 04:12 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-19 04:12 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-19 04:09 - 2014-05-01 15:56 - 00000000 ____D C:\Users\Nils\AppData\LocalLow\Company
2015-12-19 04:02 - 2015-11-14 13:42 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-19 04:02 - 2015-11-13 10:01 - 18487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 15933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 12870384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 11228488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-12-19 04:02 - 2015-11-13 10:01 - 03540360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 03126800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 00034494 _____ C:\WINDOWS\system32\nvinfo.pb
2015-12-19 04:01 - 2015-11-14 13:42 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-12-19 04:01 - 2015-09-18 11:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-19 04:01 - 2015-07-03 10:26 - 04592384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-12-19 04:01 - 2015-07-03 10:26 - 03271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 02954224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 00195192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 00023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-12-19 04:01 - 2014-03-16 11:37 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-19 03:48 - 2014-08-20 15:29 - 00000000 ____D C:\ProgramData\ProductData
2015-12-15 01:49 - 2014-03-17 04:08 - 00000000 ____D C:\Users\Nils\AppData\Roaming\UseNeXT
2015-12-14 18:39 - 2015-06-12 18:48 - 00000000 ____D C:\Users\Lilli\AppData\Local\Spotify
2015-12-14 17:42 - 2015-06-12 18:48 - 00000000 ____D C:\Users\Lilli\AppData\Roaming\Spotify
2015-12-14 17:16 - 2014-08-26 20:19 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A684F971-CF44-4E53-937C-655718D4BBA8}
2015-12-14 17:08 - 2015-09-14 12:46 - 00002393 _____ C:\Users\Lilli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-14 17:08 - 2015-09-14 12:46 - 00000000 ___RD C:\Users\Lilli\OneDrive
2015-12-13 19:12 - 2014-08-16 11:04 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CD8D0312-2F33-4343-80FA-77023AED1586}
2015-12-13 19:12 - 2014-06-06 10:04 - 00000000 ____D C:\Users\Maren\AppData\Roaming\Skype
2015-12-13 17:33 - 2015-11-14 13:42 - 00408728 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-13 09:14 - 2014-03-16 23:03 - 00000000 ____D C:\Users\Nils\AppData\Local\Spotify
2015-12-13 08:01 - 2014-03-16 23:03 - 00000000 ____D C:\Users\Nils\AppData\Roaming\Spotify
2015-12-13 07:48 - 2014-03-26 14:15 - 00163840 _____ (G DATA Software AG) C:\WINDOWS\LgxSetup.exe
2015-12-13 07:32 - 2014-03-16 11:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-13 07:21 - 2015-04-26 08:28 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-12-13 07:13 - 2014-03-16 17:13 - 00000000 ____D C:\Users\Nils\AppData\Local\VirtualStore
2015-12-13 07:12 - 2014-03-26 14:15 - 00000122 _____ C:\LgxUser.dic
2015-12-13 06:57 - 2014-03-26 14:16 - 00004096 _____ C:\Users\Public\Documents\000016E5.LCS
2015-12-13 06:54 - 2015-11-15 16:52 - 00000000 ____D C:\Program Files (x86)\Zviewer
2015-12-12 04:57 - 2015-11-14 13:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-12-12 04:57 - 2015-03-20 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-12-10 01:31 - 2014-03-16 22:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-10 01:31 - 2014-03-16 22:28 - 00000000 ____D C:\ProgramData\Skype
2015-12-09 13:10 - 2014-08-15 21:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-09 13:10 - 2014-08-15 21:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-09 12:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-09 12:03 - 2014-08-15 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-09 12:03 - 2014-03-19 11:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-09 12:02 - 2014-03-17 12:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 11:55 - 2014-03-17 12:24 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39 - 2015-03-15 12:59 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-09 00:38 - 2015-09-29 18:13 - 00000000 ____D C:\Users\Maren\AppData\Local\Comms
2015-12-09 00:37 - 2014-03-21 18:36 - 00000000 ____D C:\Users\Maren\AppData\Local\Packages
2015-12-08 22:00 - 2015-09-29 18:13 - 00002334 _____ C:\Users\Maren\Desktop\Google Chrome.lnk
2015-12-08 16:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-12-08 02:59 - 2014-03-31 18:27 - 00000000 ____D C:\Users\Nils\.gimp-2.8
2015-12-08 02:51 - 2014-03-31 18:29 - 00000000 ____D C:\Users\Nils\AppData\Local\gtk-2.0
2015-12-07 13:08 - 2015-09-13 07:30 - 00002334 _____ C:\Users\Lilli\Desktop\Google Chrome.lnk
2015-12-06 02:51 - 2015-09-14 09:23 - 00002334 _____ C:\Users\Nils\Desktop\Google Chrome.lnk
2015-12-05 02:16 - 2014-03-16 22:28 - 00000000 ____D C:\Users\Nils\AppData\Local\Skype
2015-12-03 00:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-02 15:38 - 2014-04-07 11:28 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-02 02:18 - 2015-10-04 20:40 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-12-02 02:18 - 2015-10-04 20:40 - 00000000 ____D C:\Users\Nils\.oracle_jre_usage
2015-12-02 02:18 - 2015-10-04 20:40 - 00000000 ____D C:\Program Files\Java
2015-12-02 02:18 - 2014-06-06 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-02 02:09 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\Users\Nils\AppData\Roaming\IObit
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\ProgramData\IObit
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\Program Files (x86)\IObit
2015-12-02 01:03 - 2014-03-23 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-12-01 15:40 - 2015-09-18 11:07 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-30 22:28 - 2014-03-31 18:27 - 00000949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2015-11-27 20:27 - 2014-03-17 04:21 - 00000000 ____D C:\ProgramData\Origin
2015-11-27 20:22 - 2014-03-17 04:21 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-11-27 03:46 - 2014-03-17 04:21 - 00000000 ____D C:\Program Files (x86)\Origin
2015-11-26 16:40 - 2015-09-14 09:26 - 00000000 ___RD C:\Users\Nils\OneDrive
2015-11-26 00:38 - 2015-10-24 03:35 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-26 00:38 - 2015-09-28 21:11 - 00001449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2015-11-26 00:38 - 2015-09-28 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2015-11-26 00:33 - 2014-10-29 02:25 - 00000000 ____D C:\Users\Nils\AppData\LocalLow\IObit
2015-11-24 20:32 - 2015-11-14 13:42 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 02983032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 02554672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-24 20:32 - 2015-11-14 13:42 - 00523384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00385328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-23 22:02 - 2015-11-14 13:43 - 00000000 ____D C:\Users\Maren
2015-11-23 21:35 - 2015-11-14 13:42 - 06049858 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-23 21:01 - 2014-03-16 11:33 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-22 07:33 - 2014-03-16 22:23 - 00000000 ____D C:\Users\Nils\AppData\Local\ElevatedDiagnostics
2015-11-22 07:30 - 2014-04-11 20:09 - 00001089 _____ C:\Users\Nils\Desktop\Google _Drive.lnk
2015-11-22 07:30 - 2014-03-23 09:13 - 00001776 _____ C:\Users\Nils\Desktop\Google Drive.lnk
2015-11-19 11:04 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-19 11:04 - 2015-10-30 08:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-19 11:04 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-11-19 11:04 - 2015-10-30 07:28 - 00000000 ____D C:\WINDOWS\system32\Dism
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-06-04 09:46 - 2005-12-09 03:52 - 0000060 ____R () C:\Program Files (x86)\BRINST.INI
2014-03-20 12:53 - 2014-03-20 12:53 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2014-03-17 05:09 - 2014-10-30 01:06 - 14098432 _____ () C:\Users\Nils\AppData\Roaming\Sandra.mdb
2015-03-21 01:20 - 2015-03-21 01:20 - 0226172 _____ () C:\Users\Nils\AppData\Local\ars.cache
2015-03-21 01:20 - 2015-03-21 01:20 - 1810385 _____ () C:\Users\Nils\AppData\Local\census.cache
2015-01-09 16:31 - 2015-01-09 16:36 - 4230199 _____ () C:\Users\Nils\AppData\Local\HDGraph.log
2015-03-20 16:30 - 2015-03-20 16:30 - 0000036 _____ () C:\Users\Nils\AppData\Local\housecall.guid.cache
2015-12-08 02:55 - 2015-12-08 02:55 - 0002676 _____ () C:\Users\Nils\AppData\Local\recently-used.xbel
2015-11-14 13:43 - 2015-11-14 13:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-24 12:58 - 2014-12-14 04:26 - 0000031 _____ () C:\ProgramData\droidcam-settings
Einige Dateien in TEMP:
====================
C:\Users\Nils\AppData\Local\Temp\avgnt.exe
C:\Users\Nils\AppData\Local\Temp\BeliryS.jnidispatch.dll
C:\Users\Nils\AppData\Local\Temp\cdei.jnidispatch.dll
C:\Users\Nils\AppData\Local\Temp\cDfIQ.proxy_util_ia64.dll
C:\Users\Nils\AppData\Local\Temp\Hola-Setup-Plugin-x64-1.10.994.exe
C:\Users\Nils\AppData\Local\Temp\KI2J.jnidispatch.dll
C:\Users\Nils\AppData\Local\Temp\lBXaSYz.proxy_util_ia64.dll
C:\Users\Nils\AppData\Local\Temp\nrxDDS.proxy_util_ia64.dll
C:\Users\Nils\AppData\Local\Temp\proxy_util_ia64.dll
C:\Users\Nils\AppData\Local\Temp\pZ2ue63T.jnidispatch.dll
C:\Users\Nils\AppData\Local\Temp\sqlite3.dll
C:\Users\Nils\AppData\Local\Temp\TmX5wtn.jnidispatch.dll
C:\Users\Nils\AppData\Local\Temp\v3FaEqQ.proxy_util_ia64.dll
C:\Users\Nils\AppData\Local\Temp\Zhdus.proxy_util_ia64.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-12 23:12
==================== Ende von FRST.txt ============================
|
|
19.12.2015, 21:57
| #2 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter FRST Additions Logfile:
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:19-12-2015
durchgeführt von Nils (2015-12-19 21:44:09)
Gestartet von F:\Downloads
Windows 10 Pro (X64) (2015-11-14 12:52:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4268369312-20602237-3728962022-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4268369312-20602237-3728962022-503 - Limited - Disabled)
Gast (S-1-5-21-4268369312-20602237-3728962022-501 - Limited - Disabled)
Lilli (S-1-5-21-4268369312-20602237-3728962022-1005 - Limited - Enabled) => C:\Users\Lilli
Maren (S-1-5-21-4268369312-20602237-3728962022-1003 - Administrator - Enabled) => C:\Users\Maren
Nils (S-1-5-21-4268369312-20602237-3728962022-1002 - Administrator - Enabled) => C:\Users\Nils
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\uTorrent) (Version: 3.4.2.34309 - BitTorrent Inc.)
Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}Visible) (Version: 18.0.6613 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6613 - Acronis) Hidden
Acronis True Image 2015 Media Add-on (HKLM-x32\...\{16DFE22F-B923-4FA4-AA48-32EC1F7BC873}) (Version: 18.0.5539 - Acronis)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.02 - Adobe Systems)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1483, 27.02.2015 - AIMP DevTeam)
Amazon Music (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Amazon Amazon Music) (Version: 3.7.1.698 - Amazon Services LLC)
Apple Application Support (32-Bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 2015 (HKLM-x32\...\{4209F371-3276-A8F7-B851-845A83732AB4}_is1) (Version: 11.00.60 - Ashampoo GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{d0e166af-1634-4c0b-ae96-2180e61f9d38}) (Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother Driver Deployment Wizard (HKLM-x32\...\{0ED38503-B69A-44B4-98BE-21BFF284A9B6}) (Version: 1.09.000 - Brother)
Brother MFL-Pro Suite MFC-5490CN (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.123 - MSI)
ControlCenter (HKLM-x32\...\{AF14F0CD-5307-4134-BDFA-15974473C1EE}_is1) (Version: 2.5.060 - MSI)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
Driver Booster 3.1 (HKLM-x32\...\Driver Booster_is1) (Version: 3.1 - IObit)
Equalify v2.5.3 (Stable) (HKLM-x32\...\{33EC4F70-9F4B-406F-BB2A-F75A285E927D}) (Version: 2.5.3.0 - Equalify)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.4.55163.11 - Electronic Arts)
FileZilla Client 3.12.0.2 (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
FolderVisualizer (HKLM-x32\...\FolderVisualizer_is1) (Version: 7.1 - Abelssoft)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
G DATA Logox4 Speechengine (HKLM-x32\...\lgx4.lgx.server) (Version: - G DATA Software AG)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Glary Utilities PRO 5.21 (HKLM-x32\...\Glary Utilities 5) (Version: 5.21.0.40 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Hardcopy (HKLM-x32\...\Hardcopy) (Version: 2015.10.14 - www.hardcopy.de)
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.7 - IObit)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Kindersicherung 2014 (HKLM-x32\...\Kindersicherung_is1) (Version: - Salfeld Computer GmbH)
Lenovo Mouse Suite (HKLM\...\MouseSuite98) (Version: 6.69 - Lenovo)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech)
LogoMaker 4.0 (HKLM-x32\...\LogoMaker_is1) (Version: - Avanquest)
MFL-Pro Suite (HKLM-x32\...\{20E970DF-A7B2-4345-9DEB-72213A29645E}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.008 - MSI)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyHarmony (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\036a0e4fc6a247ec) (Version: 1.0.1.257 - Logitech)
Nexus 12.2 (HKLM-x32\...\Winstep Xtreme_is1) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 21.0.1432.57 (HKLM-x32\...\Opera 21.0.1432.57) (Version: 21.0.1432.57 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.4 - CEWE Stiftung u Co. KGaA)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7644 - Realtek Semiconductor Corp.)
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
Rossmann Fotowelt Software 4.13 (HKLM-x32\...\Rossmann Fotowelt Software) (Version: 4.13 - ORWO Net)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
SiSoftware Sandra Lite 2014.SP1a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 20.21.2014.3 - SiSoftware)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{89E20F5B-FB84-488A-8914-9D70B6790112}) (Version: 7.11.0.39 - Skype Technologies S.A.)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.102 - Skype Technologies S.A.)
SleepTimer Ultimate 1.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Spotify (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB)
Spotify (HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Spotify) (Version: 1.0.20.94.g8f8543b3 - Spotify AB)
StreamTransport version: 1.1.6.1 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - )
SUPER © v2014.build.60+Recorder (2014/02/18) Version v2014.buil (HKLM-x32\...\{8E2A18E2-96AF-8549-4DE7-5C06B75719A4}_is1) (Version: v2014.build.60+Recorder - eRightSoft)
SurveillancePlugin (HKLM-x32\...\{7FFF73CC-6F9B-4B61-8951-BC8610A4665E}) (Version: 1.0.0.770 - Synology)
SyncBackPro (HKLM-x32\...\SyncBackPro_is1) (Version: 7.5.5.0 - 2BrightSparks)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows-Treiberpaket - Bestunar Inc. BstDtv3 Drivers (12/12/2014 1.35.1212.0) (HKLM\...\7CFC3165F825A9CA6A9022210D1BE530A2397FBF) (Version: 12/12/2014 1.35.1212.0 - Bestunar Inc.)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wise Care 365 3.57 (HKLM-x32\...\Wise Care 365_is1) (Version: 3.57 - WiseCleaner.com, Inc.)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.8.0.20140401 - Xilisoft)
XMedia Recode Version 3.2.3.0 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.2.3.0 - XMedia Recode)
Zviewer version 2.0.0.10 (HKLM-x32\...\{1B00336F-393F-4DC7-9956-42C69ED6565E}_is1) (Version: 2.0.0.10 - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{2D6A292E-57AB-42B2-86F9-41C3E4C558E4}\localserver32 -> C:\Users\Nils\AppData\Local\SkypePlugin\7.11.0.39\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{7093672F-0524-48D3-99AC-A117E8DC3203}\InprocServer32 -> C:\Users\Nils\AppData\Local\SkypePlugin\7.11.0.39\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Nils\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Nils\AppData\Local\SkypePlugin\7.11.0.39\EdgeCalling.exe (Skype Technologies S.A.)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2014-04-08 04:08 - 2014-06-10 09:16 - 00003100 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 activation.acronis.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com:443
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.com.*
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 Adobe
127.0.0.1 adobe.activate.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 crl.verisign.net
127.0.0.1 CRL.VERISIGN.NET.*
127.0.0.1 ereg.adobe.com
Da befinden sich 43 zusätzliche Einträge.
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {13F71391-8B56-4D82-B59F-FA4C37ACAA6A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1A895D0E-5031-48BD-B23F-07DAEA0AD596} - \GU5SkipUAC -> Keine Datei <==== ACHTUNG
Task: {2919E281-C235-40A0-90D9-384BF095BC45} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {325A31BE-95DE-4927-90D4-6635503891A7} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-Nils\SyncBackPro Video => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {4A10F767-4117-4504-B45B-C668CCD75FD8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4E8D1E6C-CB60-4357-8538-18FFA50FB27F} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-11-23] (IObit)
Task: {57AFE3FC-0534-4C65-9D70-D7895580D388} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-Nils\SyncBackPro Nils => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {5A02CD25-5885-41C9-A64A-A7EF4A53B857} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {609DB2F9-26D5-4A42-AEF7-E14B550A53BA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {630AADF9-01AA-451F-87B0-912FA1358CAB} - System32\Tasks\Driver Booster SkipUAC (Nils) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-11-27] (IObit)
Task: {65225D29-C91B-4743-A410-EA60D9365556} - System32\Tasks\hcdll2_ex_Win32 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe [2013-07-17] ()
Task: {67873889-B9C4-4B61-B73E-1347D1E23615} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {68F4FC2D-D514-4A36-83A2-F2D73629C255} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {6C92D458-D6F6-4ECA-85AD-8F2140D0D682} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {6E8ADF7B-5CCD-4849-9DE4-4286D1D6F488} - \User_Feed_Synchronization-{16BB7D0B-FA0F-4430-8202-838D00B3D859} -> Keine Datei <==== ACHTUNG
Task: {72EB1829-3842-4064-9791-95326470EE50} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {7DF508F1-C509-45B3-81DF-18602740CA93} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-Nils\SyncBackPro Musik => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {84B1775A-25A1-47AD-8CEA-F32F0FA5AB3A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {8DCA8F22-9577-4A5D-BC6C-2267D00D8EFC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {92C6E0D3-F16B-4AD1-801F-1158DD264472} - System32\Tasks\hcdll2_ex_x64 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe [2012-11-08] ()
Task: {976B6E51-0769-43A0-9AC4-9EFCF17F2085} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-Nils\SyncBackPro Photo => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {98B93954-F19D-4DBF-80DE-1C9819B98336} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-Nils\SyncBackPro Maren => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {A44421E3-5E6F-4A64-A0DC-16B3C7B5BA65} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-Nils\SyncBackPro Fritzbox => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {A67650AC-DED6-4315-9A3D-2715C1958A9A} - System32\Tasks\Uninstaller_SkipUac_Nils => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit)
Task: {A7406D41-9464-4BAF-B21E-2C1D7620FC23} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {A8F4EF5D-A57E-415F-8EF9-F1EE0434C3F6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {C458362F-474B-42A6-AEC8-49B1A3E4E2C5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D9C54124-DB4C-4DD2-B003-F1AC12367862} - System32\Tasks\Uninstaller_SkipUac_Maren => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit)
Task: {E377BA38-950C-4E57-9D45-D85F8588CEE0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E99FC342-FA94-43B9-9297-15CBCE405DF1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-19] (Adobe Systems Incorporated)
Task: {EBAB6672-AA87-47EB-A7D4-564D67CED456} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F3FA45CF-272E-407F-8E8D-DF62763A662D} - System32\Tasks\2BrightSparks\SyncBackPro\dieKucks-Nils\SyncBackPro => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {F4248FFF-73FF-4DBE-8077-412601E2DB0E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {FBFDFA0C-14F1-4592-AE05-78E98792A497} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {FF45DB2D-C2AB-4D22-BD03-F849544EA1C2} - \avast! Emergency Update -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Maren.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Nils.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-18 21:55 - 2013-07-17 16:03 - 00037880 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
2015-10-18 21:55 - 2012-11-08 07:38 - 00044608 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
2015-12-19 04:05 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-19 04:05 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-19 04:05 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-19 04:05 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-19 04:05 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-18 21:55 - 2012-07-05 14:56 - 00052800 _____ () C:\Program Files (x86)\Hardcopy\hardcopy_05.dll
2015-05-19 09:23 - 2015-11-05 18:00 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-03-16 21:32 - 2012-06-08 19:40 - 01086176 _____ () C:\Program Files (x86)\Winstep\wodTelnetDLX.dll
2015-11-25 20:18 - 2015-11-25 20:18 - 00147136 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-05-08 06:08 - 2015-05-08 06:08 - 00151552 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCam.dll
2015-05-08 06:08 - 2015-05-08 06:08 - 00081920 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter.ax
2015-05-08 06:14 - 2015-05-08 06:14 - 00086016 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter240p.ax
2015-07-20 08:08 - 2015-07-20 08:08 - 00037696 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2015-07-20 08:08 - 2015-07-20 08:08 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-20 08:15 - 2015-07-20 08:15 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-09-15 20:08 - 2014-09-15 20:08 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2015-12-19 20:51 - 2015-12-19 20:51 - 00098816 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32api.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00110080 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\pywintypes27.dll
2015-12-19 20:51 - 2015-12-19 20:51 - 00364544 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\pythoncom27.dll
2015-12-19 20:51 - 2015-12-19 20:51 - 00046080 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_socket.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 01208320 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_ssl.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00320512 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32com.shell.shell.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00776704 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_hashlib.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 01176576 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._core_.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00806400 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._gdi_.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00816128 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._windows_.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 01067008 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._controls_.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00733184 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._misc_.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00682496 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\pysqlite2._sqlite.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00088064 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_ctypes.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00119808 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32file.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00108544 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32security.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00007168 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\hashobjs_ext.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00017920 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\thumbnails_ext.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00079360 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\usb_ext.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00167936 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32gui.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00018432 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32event.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00128512 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_elementtree.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00127488 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\pyexpat.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00013824 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\common.time34.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00036864 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_psutil_windows.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00038912 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32inet.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00525640 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\windows._lib_cacheinvalidation.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00011264 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32crypt.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00077312 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._html2.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00027136 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_multiprocessing.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00020480 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\_yappi.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00035840 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32process.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00686080 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\unicodedata.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00123392 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._wizard.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00024064 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32pipe.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00010240 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\select.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00025600 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32pdh.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00017408 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32profile.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00022528 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\win32ts.pyd
2015-12-19 20:51 - 2015-12-19 20:51 - 00078848 _____ () C:\Users\Nils\AppData\Local\Temp\_MEI81522\wx._animate.pyd
2015-09-28 21:11 - 2015-09-21 10:49 - 00348960 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-09-28 21:11 - 2015-09-21 10:49 - 00183584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-09-28 21:11 - 2015-09-21 10:49 - 00050976 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ksupmgr => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Nils\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{94334f3b-a965-4a6e-a24a-b8abed2749a0}.jpg
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Maren\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Lilli\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-4268369312-20602237-3728962022-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B286657B-021D-4738-B283-11D819045DE0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CFE1D237-03B3-40A5-B949-B822B765A25A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0E9AC7CA-9458-40A4-9B01-E8FA4BFE3700}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{63BE0942-D541-4DC1-A422-96DC07FFF3DF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B2268501-6483-470A-9A65-B1B50973492A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{53B8F03C-0C9E-464C-A4E8-AFF3AD3C67A7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A9038768-5CD8-4F77-8971-203D6BD32CB7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{6B1E36A7-D894-44A1-AAC6-877585A45B88}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{FB4A2C44-7F22-4F66-A1FA-1CC76B05598A}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{5D80CA91-48A8-4778-8821-6AA7BCFA7501}C:\users\lilli\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lilli\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{35E1216F-DE1C-4588-87D8-955CDF0ACEE6}C:\users\lilli\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\lilli\appdata\roaming\spotify\spotify.exe
FirewallRules: [{BE8CABBA-5683-402C-820E-C396998B3DC8}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\WNt500x64\RpcSandraSrv.exe
FirewallRules: [TCP Query User{2807F675-6252-45E9-8518-30F0EB2F6956}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{6F06AB26-9EB8-44B3-B038-16E731CF75AC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{288691A1-7D0E-4CB6-84FB-32CD68F00376}C:\users\nils\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nils\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A6DD778C-75E1-4F03-A8AB-47C6CD6064E3}C:\users\nils\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\nils\appdata\roaming\spotify\spotify.exe
FirewallRules: [{2EC10D5A-BCFC-49E5-B4B2-A4ACE1F761DF}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe
FirewallRules: [{8BC02452-9790-47AE-91D9-36EB4A61F822}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1AF55B2E-11BF-412B-B497-6D79CB4BD5A4}] => (Allow) LPort=2869
FirewallRules: [{57022DCC-7702-4801-A2E9-3CFD9C2BECEC}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{9EDA8B60-5946-436F-9863-54ECF028CF15}C:\users\nils\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\nils\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{69ED4176-13AE-4F36-964A-DCEBF8882E2F}C:\users\nils\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\nils\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{3377141C-8101-4F50-A36F-73BEF9431044}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{BB58319F-D3FE-4708-9B07-54F95E6F8FDB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{A6403454-9953-4347-88CE-3EF9ED7192A3}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{7F194CBC-085B-452A-B01B-A3B2E66A08D5}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{2CE789BA-400F-48E7-B96D-0CCB4DE40149}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{C34C6346-B022-4161-AE46-72D29299E4CD}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{23FDB088-FD61-4F25-8FD1-E28377F075FB}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{B7A57A48-75DF-4DBC-B496-00240021D706}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{F9758868-FF7F-4000-AED0-FBAB5A05BE3E}] => (Allow) C:\Users\Nils\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{BE4BEED2-BDE7-4093-9941-72B876C4649A}] => (Allow) C:\Users\Nils\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{6C6B37B6-52E8-48A8-A880-505EFED08969}] => (Allow) C:\Users\Nils\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E43E5412-D358-44E8-880F-B601CAE33014}] => (Allow) C:\Users\Nils\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2CA3DE12-8853-475F-884C-9DBF1AC44BE1}] => (Allow) LPort=1542
FirewallRules: [{8D175120-2CED-45C4-A4CA-DB402A44879E}] => (Allow) LPort=1542
FirewallRules: [{8E226FC0-A91A-4A07-A71A-10AFFE44AA6F}] => (Allow) LPort=53
FirewallRules: [{6660D38A-0382-4594-8758-69B209B22D9D}] => (Allow) LPort=67
FirewallRules: [{E3098E8C-AA3A-4D0B-80E8-39E011B377D4}] => (Allow) LPort=68
FirewallRules: [{0B3CB86D-0329-44EB-9D5A-D7C14EE3AED1}] => (Allow) LPort=53
FirewallRules: [{0A5C3C88-7456-465D-A7DB-CF921CC15CA9}] => (Allow) LPort=53
FirewallRules: [{A19EA116-C8DE-40BF-9D5E-558454D163F2}] => (Allow) C:\Users\Nils\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{61222358-9555-4723-A551-DD5A3405ECAF}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe
FirewallRules: [{72FA58BB-0E8D-4F24-86C5-B0165D21B596}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe
FirewallRules: [{3D697818-7C68-4C83-936C-A36ABD3F23C7}] => (Allow) LPort=54925
FirewallRules: [{13DB271E-7859-4CE5-A035-51928F254133}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4BFB8C8C-A73B-4BC2-8B35-F91C4FFEE22C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D723AEDE-EC48-47A0-80F7-BA74BAFCE11E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{025D115F-7652-4BF3-98BC-70BEC1A0E835}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{77B2F0BB-99D6-4083-8FD0-00FBB0935E59}] => (Allow) C:\Users\Nils\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{7677F0D7-CF9C-4F25-87B8-AE7F592B7BFB}] => (Allow) C:\Users\Nils\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{F7D2BA0F-FF55-4D1E-9492-D04EC0FEAE2C}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [{734F709D-903E-4C54-A981-70F5073A7C89}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [TCP Query User{04006E0E-EE37-44E3-B9EC-D6F8ABA32C64}C:\users\lilli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\lilli\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{0581BE46-CAC5-4295-BD17-E9E98F631FCE}C:\users\lilli\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\lilli\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DC7D3C5C-B1AB-4E9C-8059-B63A7C9D9368}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{16BCFEE7-4BB5-45D5-B58C-87497C9E239E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{098A4410-7845-4D18-B42A-2C1D718627A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F4C96844-29CC-4EA4-B316-98857450EFCC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{16DC1792-12C5-455C-ADCE-B7A7ED744554}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D8EF6ECC-7BFC-445F-94BA-27AFC7088A87}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7B068B35-EC54-4D98-B1AA-25E342981044}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{041D082A-E30B-482D-B934-E6E85046F610}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{68FEA09B-C6B9-4BE9-BD8F-F59F4F2F151C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{62973302-4300-447E-B625-D5D864A17F7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3A586D2C-A263-4CCF-8AF1-4F282BD60054}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{6998A3CB-51AD-4A85-9852-ACFB4A4503E9}C:\program files (x86)\zviewer\zviewer.exe] => (Allow) C:\program files (x86)\zviewer\zviewer.exe
FirewallRules: [UDP Query User{35B25581-8091-42A1-8C61-6ABE2275A680}C:\program files (x86)\zviewer\zviewer.exe] => (Allow) C:\program files (x86)\zviewer\zviewer.exe
FirewallRules: [{C10A8591-73F1-41AF-B156-5E02DD32311C}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{98E8A0E6-EA0A-45D0-ADEE-F3306EDD7480}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{BFDAC5E5-F233-4C4F-8D0B-4FD02A0DC46F}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{89F29098-A933-4A2E-9081-A8A9B7C842A0}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [{A1CE4039-2488-4748-B5C6-AACBA8CDD7B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{6831ACCC-B7A9-417F-8520-DDE447868FAC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{32500C11-D042-4495-A079-2A1150647B50}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{860BEFA8-76B6-481D-B687-CAC20D8A134D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{005D7FF3-BAE4-4E71-88EE-C2CCCADF3BAA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{3C6C500C-8A46-4664-9188-16B4C4993639}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [TCP Query User{6BE6B4C3-2069-4EFD-AFB3-1A79F758F7C4}C:\users\nils\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe] => (Allow) C:\users\nils\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe
FirewallRules: [UDP Query User{044A80D1-2631-468C-AEA6-973DF140AA2F}C:\users\nils\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe] => (Allow) C:\users\nils\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe
FirewallRules: [{987FD07D-6DAC-4E81-B014-8474AA6E57FB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/19/2015 08:08:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2454
Startzeit: 01d13a8fc4b9840a
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: d5fd1c73-a683-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 08:01:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1340
Startzeit: 01d13a84caa81e87
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: ef12d22f-a682-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 06:43:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 4ac
Startzeit: 01d13a7ff9a054da
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: f48517c5-a677-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 10:00:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DIEKUCKS)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 10:00:07 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DIEKUCKS)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 06:01:23 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:55:53 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:53:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DIEKUCKS)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 05:09:00 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:08:57 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Systemfehler:
=============
Error: (12/19/2015 08:50:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tib_mounter" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1058
Error: (12/19/2015 08:50:42 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (12/19/2015 08:49:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_56674" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/19/2015 08:49:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _56674" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/19/2015 08:49:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_56674" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/19/2015 08:49:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_56674" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/19/2015 08:49:48 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (12/19/2015 04:32:09 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (12/19/2015 12:42:44 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (12/19/2015 11:18:08 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
CodeIntegrity:
===================================
Date: 2015-12-19 20:51:06.581
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-12-19 19:37:59.927
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 19:20:27.114
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 19:20:27.104
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 19:20:27.084
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 19:20:26.507
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 19:20:26.497
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 18:57:09.615
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 18:57:09.607
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-19 18:57:09.598
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 16316.68 MB
Verfügbarer physikalischer RAM: 12231.09 MB
Summe virtueller Speicher: 16316.68 MB
Verfügbarer virtueller Speicher: 12209.23 MB
==================== Laufwerke ================================
Drive c: (Windows 10) (Fixed) (Total:111.35 GB) (Free:41.39 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive e: (Backup) (Fixed) (Total:931.51 GB) (Free:433.56 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (Backup) (Fixed) (Total:931.51 GB) (Free:204.8 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 37CB9554)
Partition 2: (Active) - (Size=931.5 GB) - (Type=05)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 017BF7BD)
Partition 1: (Active) - (Size=111.3 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 98E1891F)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
20.12.2015, 02:03
| #3 |
| /// Malwareteam   | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.
__________________Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  Lesestoff:Illegale Software: Cracks, Keygens und Co Code:
ATTFilter 127.0.0.1 activation.acronis.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.com:443
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.com.*
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 Adobe
127.0.0.1 adobe.activate.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 crl.verisign.net
127.0.0.1 CRL.VERISIGN.NET.*
127.0.0.1 ereg.adobe.com
Da befinden sich 43 zusätzliche Einträge.
Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ |
|
20.12.2015, 03:26
| #4 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter FRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:19-12-2015
durchgeführt von **** (2015-12-20 03:20:18)
Gestartet von C:\Users\****\Desktop
Windows 10 Pro (X64) (2015-11-14 12:52:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4268369312-20602237-3728962022-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4268369312-20602237-3728962022-503 - Limited - Disabled)
Gast (S-1-5-21-4268369312-20602237-3728962022-501 - Limited - Disabled)
**** (S-1-5-21-4268369312-20602237-3728962022-1005 - Limited - Enabled) => C:\Users\****
**** (S-1-5-21-4268369312-20602237-3728962022-1003 - Administrator - Enabled) => C:\Users\****
**** (S-1-5-21-4268369312-20602237-3728962022-1002 - Administrator - Enabled) => C:\Users\****
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\uTorrent) (Version: 3.4.2.34309 - BitTorrent Inc.)
Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}Visible) (Version: 18.0.6613 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6613 - Acronis) Hidden
Acronis True Image 2015 Media Add-on (HKLM-x32\...\{16DFE22F-B923-4FA4-AA48-32EC1F7BC873}) (Version: 18.0.5539 - Acronis)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.02 - Adobe Systems)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1483, 27.02.2015 - AIMP DevTeam)
Amazon Music (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Amazon Amazon Music) (Version: 3.7.1.698 - Amazon Services LLC)
Apple Application Support (32-Bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 2015 (HKLM-x32\...\{4209F371-3276-A8F7-B851-845A83732AB4}_is1) (Version: 11.00.60 - Ashampoo GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{d0e166af-1634-4c0b-ae96-2180e61f9d38}) (Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother Driver Deployment Wizard (HKLM-x32\...\{0ED38503-B69A-44B4-98BE-21BFF284A9B6}) (Version: 1.09.000 - Brother)
Brother MFL-Pro Suite MFC-5490CN (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.123 - MSI)
ControlCenter (HKLM-x32\...\{AF14F0CD-5307-4134-BDFA-15974473C1EE}_is1) (Version: 2.5.060 - MSI)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
Driver Booster 3.1 (HKLM-x32\...\Driver Booster_is1) (Version: 3.1 - IObit)
Equalify v2.5.3 (Stable) (HKLM-x32\...\{33EC4F70-9F4B-406F-BB2A-F75A285E927D}) (Version: 2.5.3.0 - Equalify)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.4.55163.11 - Electronic Arts)
FileZilla Client 3.12.0.2 (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
FolderVisualizer (HKLM-x32\...\FolderVisualizer_is1) (Version: 7.1 - Abelssoft)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
G DATA Logox4 Speechengine (HKLM-x32\...\lgx4.lgx.server) (Version: - G DATA Software AG)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Glary Utilities PRO 5.21 (HKLM-x32\...\Glary Utilities 5) (Version: 5.21.0.40 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Hardcopy (HKLM-x32\...\Hardcopy) (Version: 2015.10.14 - www.hardcopy.de)
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.7 - IObit)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Kindersicherung 2014 (HKLM-x32\...\Kindersicherung_is1) (Version: - Salfeld Computer GmbH)
Lenovo Mouse Suite (HKLM\...\MouseSuite98) (Version: 6.69 - Lenovo)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech)
LogoMaker 4.0 (HKLM-x32\...\LogoMaker_is1) (Version: - Avanquest)
MFL-Pro Suite (HKLM-x32\...\{20E970DF-A7B2-4345-9DEB-72213A29645E}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.008 - MSI)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyHarmony (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\036a0e4fc6a247ec) (Version: 1.0.1.257 - Logitech)
Nexus 12.2 (HKLM-x32\...\Winstep Xtreme_is1) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 21.0.1432.57 (HKLM-x32\...\Opera 21.0.1432.57) (Version: 21.0.1432.57 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.4 - CEWE Stiftung u Co. KGaA)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7644 - Realtek Semiconductor Corp.)
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
Rossmann Fotowelt Software 4.13 (HKLM-x32\...\Rossmann Fotowelt Software) (Version: 4.13 - ORWO Net)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
SiSoftware Sandra Lite 2014.SP1a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 20.21.2014.3 - SiSoftware)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{89E20F5B-FB84-488A-8914-9D70B6790112}) (Version: 7.11.0.39 - Skype Technologies S.A.)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.102 - Skype Technologies S.A.)
SleepTimer Ultimate 1.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Spotify (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB)
Spotify (HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Spotify) (Version: 1.0.20.94.g8f8543b3 - Spotify AB)
StreamTransport version: 1.1.6.1 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - )
SUPER © v2014.build.60+Recorder (2014/02/18) Version v2014.buil (HKLM-x32\...\{8E2A18E2-96AF-8549-4DE7-5C06B75719A4}_is1) (Version: v2014.build.60+Recorder - eRightSoft)
SurveillancePlugin (HKLM-x32\...\{7FFF73CC-6F9B-4B61-8951-BC8610A4665E}) (Version: 1.0.0.770 - Synology)
SyncBackPro (HKLM-x32\...\SyncBackPro_is1) (Version: 7.5.5.0 - 2BrightSparks)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows-Treiberpaket - Bestunar Inc. BstDtv3 Drivers (12/12/2014 1.35.1212.0) (HKLM\...\7CFC3165F825A9CA6A9022210D1BE530A2397FBF) (Version: 12/12/2014 1.35.1212.0 - Bestunar Inc.)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wise Care 365 3.57 (HKLM-x32\...\Wise Care 365_is1) (Version: 3.57 - WiseCleaner.com, Inc.)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.8.0.20140401 - Xilisoft)
XMedia Recode Version 3.2.3.0 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.2.3.0 - XMedia Recode)
Zviewer version 2.0.0.10 (HKLM-x32\...\{1B00336F-393F-4DC7-9956-42C69ED6565E}_is1) (Version: 2.0.0.10 - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{2D6A292E-57AB-42B2-86F9-41C3E4C558E4}\localserver32 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{7093672F-0524-48D3-99AC-A117E8DC3203}\InprocServer32 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\****\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\EdgeCalling.exe (Skype Technologies S.A.)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2014-04-08 04:08 - 2014-06-10 09:16 - 00003100 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {13F71391-8B56-4D82-B59F-FA4C37ACAA6A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1A895D0E-5031-48BD-B23F-07DAEA0AD596} - \GU5SkipUAC -> Keine Datei <==== ACHTUNG
Task: {325A31BE-95DE-4927-90D4-6635503891A7} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-****\SyncBackPro Video => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {4A10F767-4117-4504-B45B-C668CCD75FD8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4E8D1E6C-CB60-4357-8538-18FFA50FB27F} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-11-23] (IObit)
Task: {57AFE3FC-0534-4C65-9D70-D7895580D388} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-****\SyncBackPro **** => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {5A02CD25-5885-41C9-A64A-A7EF4A53B857} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {5F1EC8DF-CC16-4998-9E80-2BE46D202613} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {609DB2F9-26D5-4A42-AEF7-E14B550A53BA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {630AADF9-01AA-451F-87B0-912FA1358CAB} - System32\Tasks\Driver Booster SkipUAC (****) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-11-27] (IObit)
Task: {65225D29-C91B-4743-A410-EA60D9365556} - System32\Tasks\hcdll2_ex_Win32 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe [2013-07-17] ()
Task: {67873889-B9C4-4B61-B73E-1347D1E23615} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {68F4FC2D-D514-4A36-83A2-F2D73629C255} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {6C92D458-D6F6-4ECA-85AD-8F2140D0D682} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {6E8ADF7B-5CCD-4849-9DE4-4286D1D6F488} - \User_Feed_Synchronization-{16BB7D0B-FA0F-4430-8202-838D00B3D859} -> Keine Datei <==== ACHTUNG
Task: {72EB1829-3842-4064-9791-95326470EE50} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {7DF508F1-C509-45B3-81DF-18602740CA93} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-****\SyncBackPro Musik => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {84B1775A-25A1-47AD-8CEA-F32F0FA5AB3A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {8DCA8F22-9577-4A5D-BC6C-2267D00D8EFC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {92C6E0D3-F16B-4AD1-801F-1158DD264472} - System32\Tasks\hcdll2_ex_x64 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe [2012-11-08] ()
Task: {976B6E51-0769-43A0-9AC4-9EFCF17F2085} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-****\SyncBackPro Photo => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {98B93954-F19D-4DBF-80DE-1C9819B98336} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-****\SyncBackPro **** => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {A44421E3-5E6F-4A64-A0DC-16B3C7B5BA65} - System32\Tasks\2BrightSparks\SyncBackPro\DIEKUCKS-****\SyncBackPro Fritzbox => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {A67650AC-DED6-4315-9A3D-2715C1958A9A} - System32\Tasks\Uninstaller_SkipUac_**** => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit)
Task: {A7406D41-9464-4BAF-B21E-2C1D7620FC23} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {A8F4EF5D-A57E-415F-8EF9-F1EE0434C3F6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {C458362F-474B-42A6-AEC8-49B1A3E4E2C5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D9C54124-DB4C-4DD2-B003-F1AC12367862} - System32\Tasks\Uninstaller_SkipUac_**** => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit)
Task: {E377BA38-950C-4E57-9D45-D85F8588CEE0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E99FC342-FA94-43B9-9297-15CBCE405DF1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-19] (Adobe Systems Incorporated)
Task: {EBAB6672-AA87-47EB-A7D4-564D67CED456} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F3FA45CF-272E-407F-8E8D-DF62763A662D} - System32\Tasks\2BrightSparks\SyncBackPro\dieKucks-****\SyncBackPro => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {F4248FFF-73FF-4DBE-8077-412601E2DB0E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {FBFDFA0C-14F1-4592-AE05-78E98792A497} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {FF45DB2D-C2AB-4D22-BD03-F849544EA1C2} - \avast! Emergency Update -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_****.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_****.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-18 21:55 - 2013-07-17 16:03 - 00037880 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
2015-10-18 21:55 - 2012-11-08 07:38 - 00044608 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2010-07-15 05:44 - 2010-07-15 05:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2015-07-09 18:32 - 2015-07-09 18:32 - 00043480 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2015-12-19 04:05 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-19 04:05 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-19 04:05 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-19 04:05 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-19 04:05 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-18 21:55 - 2012-07-05 14:56 - 00052800 _____ () C:\Program Files (x86)\Hardcopy\hardcopy_05.dll
2015-05-19 09:23 - 2015-11-05 18:00 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-03-16 21:32 - 2012-06-08 19:40 - 01086176 _____ () C:\Program Files (x86)\Winstep\wodTelnetDLX.dll
2015-11-25 20:18 - 2015-11-25 20:18 - 00147136 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-05-08 06:08 - 2015-05-08 06:08 - 00151552 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCam.dll
2015-05-08 06:08 - 2015-05-08 06:08 - 00081920 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter.ax
2015-05-08 06:14 - 2015-05-08 06:14 - 00086016 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter240p.ax
2015-07-20 08:08 - 2015-07-20 08:08 - 00037696 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2015-07-20 08:08 - 2015-07-20 08:08 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-20 08:15 - 2015-07-20 08:15 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-09-15 20:08 - 2014-09-15 20:08 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2015-12-20 02:59 - 2015-12-20 02:59 - 00098816 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32api.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00110080 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\pywintypes27.dll
2015-12-20 02:59 - 2015-12-20 02:59 - 00364544 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\pythoncom27.dll
2015-12-20 02:59 - 2015-12-20 02:59 - 00046080 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_socket.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 01208320 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_ssl.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00320512 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32com.shell.shell.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00776704 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_hashlib.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 01176576 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._core_.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00806400 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._gdi_.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00816128 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._windows_.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 01067008 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._controls_.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00733184 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._misc_.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00682496 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\pysqlite2._sqlite.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00088064 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_ctypes.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00119808 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32file.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00108544 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32security.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00007168 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\hashobjs_ext.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00017920 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\thumbnails_ext.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00079360 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\usb_ext.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00167936 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32gui.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00018432 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32event.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00128512 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_elementtree.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00127488 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\pyexpat.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00013824 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\common.time34.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00036864 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_psutil_windows.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00038912 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32inet.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00525640 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\windows._lib_cacheinvalidation.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00011264 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32crypt.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00077312 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._html2.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00027136 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_multiprocessing.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00020480 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\_yappi.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00035840 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32process.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00686080 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\unicodedata.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00123392 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._wizard.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00024064 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32pipe.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00010240 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\select.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00025600 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32pdh.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00017408 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32profile.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00022528 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\win32ts.pyd
2015-12-20 02:59 - 2015-12-20 02:59 - 00078848 _____ () C:\Users\****\AppData\Local\Temp\_MEI79442\wx._animate.pyd
2015-09-28 21:11 - 2015-09-21 10:49 - 00348960 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-09-28 21:11 - 2015-09-21 10:49 - 00183584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-09-28 21:11 - 2015-09-21 10:49 - 00050976 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ksupmgr => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\****\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{94334f3b-a965-4a6e-a24a-b8abed2749a0}.jpg
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\****\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\****\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-4268369312-20602237-3728962022-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B286657B-021D-4738-B283-11D819045DE0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CFE1D237-03B3-40A5-B949-B822B765A25A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0E9AC7CA-9458-40A4-9B01-E8FA4BFE3700}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{63BE0942-D541-4DC1-A422-96DC07FFF3DF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B2268501-6483-470A-9A65-B1B50973492A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{53B8F03C-0C9E-464C-A4E8-AFF3AD3C67A7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A9038768-5CD8-4F77-8971-203D6BD32CB7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{6B1E36A7-D894-44A1-AAC6-877585A45B88}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{FB4A2C44-7F22-4F66-A1FA-1CC76B05598A}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{5D80CA91-48A8-4778-8821-6AA7BCFA7501}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{35E1216F-DE1C-4588-87D8-955CDF0ACEE6}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [{BE8CABBA-5683-402C-820E-C396998B3DC8}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\WNt500x64\RpcSandraSrv.exe
FirewallRules: [TCP Query User{2807F675-6252-45E9-8518-30F0EB2F6956}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{6F06AB26-9EB8-44B3-B038-16E731CF75AC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{288691A1-7D0E-4CB6-84FB-32CD68F00376}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A6DD778C-75E1-4F03-A8AB-47C6CD6064E3}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [{2EC10D5A-BCFC-49E5-B4B2-A4ACE1F761DF}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe
FirewallRules: [{8BC02452-9790-47AE-91D9-36EB4A61F822}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1AF55B2E-11BF-412B-B497-6D79CB4BD5A4}] => (Allow) LPort=2869
FirewallRules: [{57022DCC-7702-4801-A2E9-3CFD9C2BECEC}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{9EDA8B60-5946-436F-9863-54ECF028CF15}C:\users\****\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\****\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{69ED4176-13AE-4F36-964A-DCEBF8882E2F}C:\users\****\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\****\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{3377141C-8101-4F50-A36F-73BEF9431044}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{BB58319F-D3FE-4708-9B07-54F95E6F8FDB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{A6403454-9953-4347-88CE-3EF9ED7192A3}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{7F194CBC-085B-452A-B01B-A3B2E66A08D5}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{2CE789BA-400F-48E7-B96D-0CCB4DE40149}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{C34C6346-B022-4161-AE46-72D29299E4CD}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{23FDB088-FD61-4F25-8FD1-E28377F075FB}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{B7A57A48-75DF-4DBC-B496-00240021D706}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{F9758868-FF7F-4000-AED0-FBAB5A05BE3E}] => (Allow) C:\Users\****\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{BE4BEED2-BDE7-4093-9941-72B876C4649A}] => (Allow) C:\Users\****\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{6C6B37B6-52E8-48A8-A880-505EFED08969}] => (Allow) C:\Users\****\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E43E5412-D358-44E8-880F-B601CAE33014}] => (Allow) C:\Users\****\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2CA3DE12-8853-475F-884C-9DBF1AC44BE1}] => (Allow) LPort=1542
FirewallRules: [{8D175120-2CED-45C4-A4CA-DB402A44879E}] => (Allow) LPort=1542
FirewallRules: [{8E226FC0-A91A-4A07-A71A-10AFFE44AA6F}] => (Allow) LPort=53
FirewallRules: [{6660D38A-0382-4594-8758-69B209B22D9D}] => (Allow) LPort=67
FirewallRules: [{E3098E8C-AA3A-4D0B-80E8-39E011B377D4}] => (Allow) LPort=68
FirewallRules: [{0B3CB86D-0329-44EB-9D5A-D7C14EE3AED1}] => (Allow) LPort=53
FirewallRules: [{0A5C3C88-7456-465D-A7DB-CF921CC15CA9}] => (Allow) LPort=53
FirewallRules: [{A19EA116-C8DE-40BF-9D5E-558454D163F2}] => (Allow) C:\Users\****\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{61222358-9555-4723-A551-DD5A3405ECAF}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe
FirewallRules: [{72FA58BB-0E8D-4F24-86C5-B0165D21B596}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe
FirewallRules: [{3D697818-7C68-4C83-936C-A36ABD3F23C7}] => (Allow) LPort=54925
FirewallRules: [{13DB271E-7859-4CE5-A035-51928F254133}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4BFB8C8C-A73B-4BC2-8B35-F91C4FFEE22C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D723AEDE-EC48-47A0-80F7-BA74BAFCE11E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{025D115F-7652-4BF3-98BC-70BEC1A0E835}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{77B2F0BB-99D6-4083-8FD0-00FBB0935E59}] => (Allow) C:\Users\****\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{7677F0D7-CF9C-4F25-87B8-AE7F592B7BFB}] => (Allow) C:\Users\****\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{F7D2BA0F-FF55-4D1E-9492-D04EC0FEAE2C}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [{734F709D-903E-4C54-A981-70F5073A7C89}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [TCP Query User{04006E0E-EE37-44E3-B9EC-D6F8ABA32C64}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{0581BE46-CAC5-4295-BD17-E9E98F631FCE}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DC7D3C5C-B1AB-4E9C-8059-B63A7C9D9368}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{16BCFEE7-4BB5-45D5-B58C-87497C9E239E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{098A4410-7845-4D18-B42A-2C1D718627A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F4C96844-29CC-4EA4-B316-98857450EFCC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{16DC1792-12C5-455C-ADCE-B7A7ED744554}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D8EF6ECC-7BFC-445F-94BA-27AFC7088A87}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7B068B35-EC54-4D98-B1AA-25E342981044}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{041D082A-E30B-482D-B934-E6E85046F610}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{68FEA09B-C6B9-4BE9-BD8F-F59F4F2F151C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{62973302-4300-447E-B625-D5D864A17F7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3A586D2C-A263-4CCF-8AF1-4F282BD60054}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{6998A3CB-51AD-4A85-9852-ACFB4A4503E9}C:\program files (x86)\zviewer\zviewer.exe] => (Allow) C:\program files (x86)\zviewer\zviewer.exe
FirewallRules: [UDP Query User{35B25581-8091-42A1-8C61-6ABE2275A680}C:\program files (x86)\zviewer\zviewer.exe] => (Allow) C:\program files (x86)\zviewer\zviewer.exe
FirewallRules: [{C10A8591-73F1-41AF-B156-5E02DD32311C}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{98E8A0E6-EA0A-45D0-ADEE-F3306EDD7480}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{BFDAC5E5-F233-4C4F-8D0B-4FD02A0DC46F}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{89F29098-A933-4A2E-9081-A8A9B7C842A0}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [{A1CE4039-2488-4748-B5C6-AACBA8CDD7B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{6831ACCC-B7A9-417F-8520-DDE447868FAC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{32500C11-D042-4495-A079-2A1150647B50}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{860BEFA8-76B6-481D-B687-CAC20D8A134D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{005D7FF3-BAE4-4E71-88EE-C2CCCADF3BAA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{3C6C500C-8A46-4664-9188-16B4C4993639}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [TCP Query User{6BE6B4C3-2069-4EFD-AFB3-1A79F758F7C4}C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe] => (Allow) C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe
FirewallRules: [UDP Query User{044A80D1-2631-468C-AEA6-973DF140AA2F}C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe] => (Allow) C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe
FirewallRules: [{987FD07D-6DAC-4E81-B014-8474AA6E57FB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/19/2015 08:08:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2454
Startzeit: 01d13a8fc4b9840a
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: d5fd1c73-a683-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 08:01:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1340
Startzeit: 01d13a84caa81e87
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: ef12d22f-a682-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 06:43:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 4ac
Startzeit: 01d13a7ff9a054da
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: f48517c5-a677-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 10:00:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DIEKUCKS)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 10:00:07 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DIEKUCKS)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 06:01:23 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:55:53 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:53:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DIEKUCKS)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 05:09:00 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:08:57 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Systemfehler:
=============
Error: (12/20/2015 02:58:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tib_mounter" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1058
Error: (12/20/2015 02:58:22 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (12/20/2015 02:57:49 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: 1084UsoSvcNicht verfügbar{B91D5831-B1BD-4608-8198-D72E155020F7}
Error: (12/20/2015 02:57:49 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: 1068netprofmNicht verfügbar{A47979D2-C419-11D9-A5B4-001185AD2B89}
Error: (12/20/2015 02:57:49 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (12/20/2015 02:57:49 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NLA (Network Location Awareness)" ist vom Dienst "DHCP-Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (12/20/2015 02:57:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NlaSvc" ist vom Dienst "Dhcp" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (12/20/2015 02:57:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "mrxsmb10" ist vom Dienst "mrxsmb" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (12/20/2015 02:57:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "iphlpsvc" ist vom Dienst "WinHttpAutoProxySvc" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (12/20/2015 02:57:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "WinHttpAutoProxySvc" ist vom Dienst "Dhcp" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
CodeIntegrity:
===================================
Date: 2015-12-20 02:53:48.983
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:48.973
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:42.857
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:42.846
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:36.091
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:36.081
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:52:01.725
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:52:01.716
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:51:56.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:51:56.315
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 16316.68 MB
Verfügbarer physikalischer RAM: 13163.32 MB
Summe virtueller Speicher: 16316.68 MB
Verfügbarer virtueller Speicher: 12869.88 MB
==================== Laufwerke ================================
Drive c: (Windows 10) (Fixed) (Total:111.35 GB) (Free:40.77 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive e: (Backup) (Fixed) (Total:931.51 GB) (Free:434.21 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (Backup) (Fixed) (Total:931.51 GB) (Free:204.8 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 37CB9554)
Partition 2: (Active) - (Size=931.5 GB) - (Type=05)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 017BF7BD)
Partition 1: (Active) - (Size=111.3 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 98E1891F)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
20.12.2015, 03:37
| #5 |
| /// Malwareteam | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runterCode:
ATTFilter Acronis True Image 2015
Adobe Acrobat XI Pro
Darüber hinaus hast du schon TDSSKiller und Malwarebytes ausgeführt. Dazu benötige ich bitte die Logdateien 
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
20.12.2015, 03:42
| #6 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:19-12-2015
durchgeführt von **** (Administrator) auf DIEKUCKS (20-12-2015 03:19:22)
Gestartet von C:\Users\****\Desktop
Geladene Profile: **** & **** & **** & Administrator (Verfügbare Profile: **** & **** & **** & Administrator)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> dwm.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
konnte nicht auf den Prozess zugreifen -> dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
() C:\Windows\SysWOW64\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\WsxService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
konnte nicht auf den Prozess zugreifen -> NvStreamNetworkService.exe
konnte nicht auf den Prozess zugreifen -> WmiPrvSE.exe
konnte nicht auf den Prozess zugreifen -> conhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Salfeld Computer) C:\Windows\SysWOW64\cchservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Salfeld Computer) C:\Windows\SysWOW64\ccsync.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
konnte nicht auf den Prozess zugreifen -> MpCmdRun.exe
(Salfeld Computer) C:\Windows\tray\wintmr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\Nexus.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Spotify Ltd) C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
konnte nicht auf den Prozess zugreifen -> fontdrvhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8522496 2015-12-19] (Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [571192 2014-08-14] (Acronis)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-11-05] (NVIDIA Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5380368 2015-07-20] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [693336 2015-07-19] (Acronis International GmbH)
HKLM-x32\...\Run: [ChicoSys] => C:\WINDOWS\SysWOW64\cc32\webtmr.exe [6692360 2015-07-10] (Salfeld Computer)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-11-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [803200 2015-12-01] (Avira Operations GmbH & Co. KG)
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <===== ACHTUNG
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [NeXuS] => C:\Program Files (x86)\Winstep\Nexus.exe [16993408 2014-11-05] (Winstep Software Technologies)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [CCWinTray] => C:\Windows\tray\wintmr.exe [7117184 2014-11-27] (Salfeld Computer)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [Spotify Web Helper] => C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2345584 2015-12-13] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [232960 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [805888 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Run: [Spotify Web Helper] => C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2015-12-14] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Run: [Spotify] => C:\Users\****\AppData\Roaming\Spotify\Spotify.exe [8387696 2015-12-14] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\RunOnce: [Uninstall C:\Users\****\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\****\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\system: [DisableClock] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1005\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-10-30] (Microsoft Corporation)
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-500\...\Policies\Explorer: [RestrictRun] 0
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{f19dd375-f585-429c-9ac4-41059f25f64c}: [NameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1005 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-12-02] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-02] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Toolbar: HKLM - Kein Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Keine Datei
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default
FF SelectedSearchEngine: Google
FF Homepage: about:newtab
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com')%20%7B%20return%20'PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "ftp", "188.165.43.114"
FF NetworkProxy: "ftp_port", 8118
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "188.165.43.114"
FF NetworkProxy: "socks_port", 8118
FF NetworkProxy: "ssl", "188.165.43.114"
FF NetworkProxy: "ssl_port", 8118
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-19] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-02] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.770\npSurveillancePlugin_x86_64.dll [2015-10-28] (Synology)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-19] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.770\npSurveillancePlugin.dll [2015-10-28] (Synology)
FF Plugin HKU\S-1-5-21-4268369312-20602237-3728962022-1002: SkypePlugin -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\npGatewayNpapi.dll [2015-11-26] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-4268369312-20602237-3728962022-1002: SkypePlugin64 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\npGatewayNpapi-x64.dll [2015-11-26] (Skype Technologies S.A.)
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-04-08] [ist nicht signiert]
FF Extension: Delicious Bookmarks - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\extensions\{2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9} [2014-10-17] [ist nicht signiert]
FF Extension: Adguard AdBlocker - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\adguardadblocker@adguard.com.xpi [2015-12-07]
FF Extension: Hola Better Internet - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-12-19]
FF Extension: New Tab Override (browser.newtab.url replacement) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\newtaboverride@agenedia.com.xpi [2015-11-29]
FF Extension: FT DeepDark - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-12-19]
FF Extension: Kein Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4268369312-20602237-3728962022-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1418560 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [249624 2015-11-23] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\DfSdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany) [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
S2 ksupmgr; C:\Windows\SysWOW64\ksupmgr.exe [1190224 2015-07-10] (Salfeld Computer)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1768912 2015-09-11] (Micro-Star INT'L CO., LTD.)
R2 NMSAccess; C:\WINDOWS\SysWOW64\NMSAccessU.exe [71096 2009-01-12] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-11-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-11-05] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2099720 2015-11-27] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 PelService; C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe [178688 2012-03-13] () [Datei ist nicht signiert]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe [72344 2008-02-17] (SiSoftware) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2014-01-21] (WiseCleaner.com) [Datei ist nicht signiert]
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-05] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-01] (Avira Operations GmbH & Co. KG)
R3 DroidCam; C:\Windows\system32\DRIVERS\droidcam.sys [33592 2015-05-25] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\system32\DRIVERS\droidcamvideo.sys [230712 2015-05-25] (Windows (R) Win 7 DDK provider)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2014-09-18] (Acronis International GmbH)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-03-20] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-12-02] (REALiX(tm))
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185088 2015-12-11] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2015-07-01] (CACE Technologies)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-11-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [889584 2015-12-02] (Realtek )
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2000-01-01] (Synaptics Incorporated)
R2 tib; C:\Windows\system32\DRIVERS\tib.sys [1058632 2015-07-25] (Acronis International GmbH)
S2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [248648 2015-07-25] (Acronis International GmbH)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R1 WiseTDIFw; C:\Windows\WiseTDIFw64.sys [39464 2015-03-20] (WiseCleaner.com) [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-20 03:19 - 2015-12-20 03:19 - 00032320 _____ C:\Users\****\Desktop\FRST.txt
2015-12-20 02:57 - 2015-12-20 02:57 - 00240884 _____ C:\WINDOWS\ntbtlog.txt
2015-12-20 02:56 - 2015-12-20 02:56 - 00001365 _____ C:\Users\****\Desktop\Abgesicherter Modus.lnk
2015-12-19 21:38 - 2015-12-20 03:19 - 00000000 ____D C:\FRST
2015-12-19 21:35 - 2015-12-19 21:38 - 02370048 _____ (Farbar) C:\Users\****\Desktop\FRST64.exe
2015-12-19 10:15 - 2015-12-20 02:59 - 00000000 ___HD C:\ProgramData\Device
2015-12-19 08:18 - 2015-12-19 08:18 - 00000000 ____D C:\Users\****\Documents\ProcAlyzer Dumps
2015-12-19 06:43 - 2015-12-19 06:43 - 06539752 _____ (Tim Kosse) C:\Users\****\Downloads\FileZilla_3.14.1_win64-setup.exe
2015-12-19 05:53 - 2015-12-19 10:00 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-12-19 05:07 - 2015-12-19 06:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-19 05:04 - 2015-12-19 05:57 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-19 05:04 - 2015-12-19 05:07 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-12-19 04:57 - 2015-12-19 04:57 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-19 04:56 - 2015-12-19 10:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-12-19 04:56 - 2015-12-19 10:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-12-19 04:56 - 2015-12-19 04:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-12-19 04:49 - 2015-12-19 06:00 - 00000000 ____D C:\Users\****\AppData\Local\FSDART
2015-12-19 04:48 - 2015-12-19 04:49 - 00000000 ____D C:\ProgramData\F-Secure
2015-12-19 04:48 - 2015-12-19 04:48 - 00000000 ____D C:\Users\****\AppData\Local\F-Secure
2015-12-19 04:44 - 2015-12-19 04:44 - 00000000 ____D C:\KVRT_Data
2015-12-19 04:29 - 2015-12-19 04:29 - 00000000 ____D C:\Users\****\Documents\Simply Super Software
2015-12-19 04:06 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-19 04:06 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-19 04:06 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-19 04:05 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-19 04:05 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-19 04:05 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-19 04:05 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-19 04:05 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-19 04:05 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-19 04:05 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-19 04:05 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-19 04:05 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-19 04:05 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-19 04:05 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-19 04:05 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-19 04:05 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-19 04:05 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-19 04:05 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-19 04:05 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-19 04:05 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-19 04:05 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-19 04:05 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-19 04:05 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-19 04:05 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-19 04:05 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-19 04:05 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-19 04:05 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-19 04:05 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-19 04:05 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-19 04:05 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-19 04:05 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-19 04:05 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-19 04:05 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-19 04:05 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-19 04:05 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-19 04:05 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-19 04:05 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-19 04:05 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-19 04:05 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-19 04:05 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-19 04:05 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-19 04:05 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-19 04:05 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-19 04:05 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-19 04:05 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 37882672 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 22345336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 18389624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 16561320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 15839392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 14844304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 13533416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 12040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 02876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 02496816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01905272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435906.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435906.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01016360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00877872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00689784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00445400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00422752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00177416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-12-19 04:01 - 2015-12-19 04:01 - 72121872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-12-19 04:01 - 2015-12-19 04:01 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 13120760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 12986520 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05775144 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05412880 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05289952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03741396 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-12-19 04:01 - 2015-12-19 04:01 - 03299824 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03278408 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03196455 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-12-19 04:01 - 2015-12-19 04:01 - 02997504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02823280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02711296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-12-19 04:01 - 2015-12-19 04:01 - 02600408 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02531696 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02437136 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02110600 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02050176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01839360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01601952 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01395760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01350456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01334384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01211832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01194352 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01121864 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00998032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00961848 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00952984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00923744 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00888480 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00874728 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00873472 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00749000 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00699064 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00678184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00677672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00645456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00596120 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00569440 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-12-19 04:01 - 2015-12-19 04:01 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00448584 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00362056 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00357520 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00340648 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00258504 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00224264 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00172584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00158696 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00088328 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-12-12 04:56 - 2015-12-12 04:56 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll
2015-12-12 04:56 - 2015-12-12 04:56 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll
2015-12-09 12:02 - 2015-12-09 12:02 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-12-09 01:43 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 01:43 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 01:43 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 01:43 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 01:43 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-09 01:43 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-09 01:43 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-09 01:43 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-09 01:43 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 01:43 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 01:43 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 01:43 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 01:43 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 01:43 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 01:43 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-09 01:43 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 01:43 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 01:43 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 01:43 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 01:43 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 01:43 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 01:43 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 01:43 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 01:43 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 01:43 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 01:43 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 01:43 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 00:08 - 2015-12-09 00:36 - 00000000 ____D C:\Users\****\Desktop\FOTOBUCH & KALENDER
2015-12-08 02:55 - 2015-12-08 02:55 - 00002676 _____ C:\Users\****\AppData\Local\recently-used.xbel
2015-12-05 02:16 - 2015-12-05 02:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-05 01:18 - 2015-12-20 02:58 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-05 01:18 - 2015-12-20 02:23 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-05 01:18 - 2015-12-05 01:18 - 00004194 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 01:18 - 2015-12-05 01:18 - 00003962 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 17:20 - 2015-12-04 17:20 - 00515471 _____ C:\Users\****\Downloads\default_htc_Icons.zip
2015-12-03 00:34 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-03 00:34 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-03 00:34 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-03 00:34 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-12-03 00:34 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-03 00:34 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 00:33 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-12-03 00:33 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-03 00:33 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-03 00:33 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-03 00:33 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-03 00:33 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-03 00:33 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-03 00:33 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-03 00:33 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-03 00:33 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-12-03 00:33 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-12-03 00:33 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-03 00:33 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-03 00:33 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-03 00:33 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-12-03 00:33 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-03 00:33 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-03 00:33 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-03 00:33 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-03 00:33 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-03 00:33 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-03 00:33 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-03 00:33 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-03 00:33 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-03 00:33 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-03 00:33 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-12-03 00:33 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-03 00:33 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2015-12-03 00:33 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2015-12-03 00:33 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-03 00:33 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-03 00:33 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-03 00:33 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-03 00:33 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-12-03 00:33 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-12-03 00:33 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-03 00:33 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-03 00:33 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-12-03 00:33 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-03 00:33 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-12-03 00:33 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-12-03 00:33 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-03 00:33 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-03 00:33 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-03 00:33 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-12-02 23:42 - 2015-12-02 23:42 - 00000000 ____D C:\Users\****\AppData\Local\SkypePlugin
2015-12-02 20:45 - 2015-12-02 20:45 - 00008480 _____ C:\Users\****\Downloads\winmail (1).dat
2015-12-02 20:44 - 2015-12-02 20:44 - 00361472 _____ C:\Users\****\Downloads\winmail_opener.exe
2015-12-02 20:44 - 2015-12-02 20:44 - 00000000 ____D C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winmail Opener
2015-12-02 20:42 - 2015-12-02 20:42 - 00008480 _____ C:\Users\****\Downloads\winmail.dat
2015-12-02 02:19 - 2015-12-20 02:40 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-02 02:19 - 2015-12-19 04:03 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-02 02:13 - 2015-12-19 04:01 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-12-02 02:12 - 2015-12-02 02:12 - 00889584 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-12-02 02:12 - 2015-12-02 02:12 - 00084064 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-12-02 02:11 - 2015-12-11 01:28 - 00185088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-12-02 01:54 - 2015-12-02 01:55 - 00003424 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2015-12-02 01:54 - 2015-12-02 01:55 - 00003070 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (****)
2015-12-02 01:54 - 2015-12-02 01:54 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-12-02 01:54 - 2015-12-02 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-30 22:47 - 2015-11-30 22:47 - 00003640 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-27 23:06 - 2015-11-27 23:06 - 00003041 _____ C:\Users\****\Desktop\Helium.lnk
2015-11-27 20:19 - 2015-11-27 20:23 - 00000000 ____D C:\Users\****\Documents\FIFA 16
2015-11-27 04:03 - 2015-11-27 04:03 - 00001230 _____ C:\Users\Public\Desktop\FIFA 16.lnk
2015-11-27 03:47 - 2015-11-27 03:48 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-11-26 00:33 - 2015-11-26 00:33 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2015-11-25 14:31 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-25 14:31 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-25 14:31 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-25 14:31 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-25 14:31 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-20 03:18 - 2014-09-07 12:20 - 00000601 _____ C:\WINDOWS\SysWOW64\excltmp~.dat
2015-12-20 03:04 - 2015-10-30 19:35 - 00780072 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-20 03:04 - 2015-10-30 19:35 - 00156884 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-20 03:04 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-20 03:04 - 2015-09-14 09:20 - 01811252 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-20 02:59 - 2014-03-23 09:13 - 00000000 ___RD C:\Users\****\Google Drive
2015-12-20 02:59 - 2014-03-16 22:28 - 00000000 ____D C:\Users\****\AppData\Roaming\Skype
2015-12-20 02:58 - 2015-11-14 13:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-20 02:58 - 2015-11-14 13:43 - 00000000 ____D C:\Users\****
2015-12-20 02:57 - 2015-10-30 07:28 - 01310720 ___SH C:\WINDOWS\system32\config\BBI
2015-12-20 02:57 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-20 02:57 - 2015-09-14 15:03 - 00003247 _____ C:\WINDOWS\SysWOW64\cchservice.err
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-19 20:43 - 2015-10-14 15:00 - 00000294 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_****.job
2015-12-19 20:42 - 2015-10-14 15:00 - 00002476 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_****
2015-12-19 19:38 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-19 10:15 - 2014-09-07 12:19 - 00000307 _____ C:\NET.INI
2015-12-19 10:14 - 2015-09-14 09:23 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-19 09:59 - 2015-03-20 17:48 - 00000000 ____D C:\Program Files (x86)\ESET
2015-12-19 08:17 - 2014-03-17 04:53 - 00000000 ____D C:\Users\****\AppData\Roaming\FileZilla
2015-12-19 07:54 - 2014-03-29 18:59 - 00000000 ____D C:\Users\****\AppData\Roaming\vlc
2015-12-19 06:00 - 2014-03-16 16:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-19 05:05 - 2014-05-02 20:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-19 05:04 - 2014-05-02 20:06 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-19 04:26 - 2014-03-17 12:44 - 00000000 ____D C:\ProgramData\TEMP
2015-12-19 04:25 - 2014-03-16 21:32 - 00000000 ____D C:\Users\Public\Documents\Winstep
2015-12-19 04:15 - 2014-11-19 11:28 - 00000000 ____D C:\Users\****\AppData\Roaming\QuickScan
2015-12-19 04:12 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-19 04:12 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-19 04:09 - 2014-05-01 15:56 - 00000000 ____D C:\Users\****\AppData\LocalLow\Company
2015-12-19 04:02 - 2015-11-14 13:42 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-19 04:02 - 2015-11-13 10:01 - 18487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 15933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 12870384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 11228488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-12-19 04:02 - 2015-11-13 10:01 - 03540360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 03126800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 00034494 _____ C:\WINDOWS\system32\nvinfo.pb
2015-12-19 04:01 - 2015-11-14 13:42 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-12-19 04:01 - 2015-09-18 11:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-19 04:01 - 2015-07-03 10:26 - 04592384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-12-19 04:01 - 2015-07-03 10:26 - 03271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 02954224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 00195192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 00023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-12-19 04:01 - 2014-03-16 11:37 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-19 03:48 - 2014-08-20 15:29 - 00000000 ____D C:\ProgramData\ProductData
2015-12-15 01:49 - 2014-03-17 04:08 - 00000000 ____D C:\Users\****\AppData\Roaming\UseNeXT
2015-12-14 18:39 - 2015-06-12 18:48 - 00000000 ____D C:\Users\****\AppData\Local\Spotify
2015-12-14 17:42 - 2015-06-12 18:48 - 00000000 ____D C:\Users\****\AppData\Roaming\Spotify
2015-12-14 17:16 - 2014-08-26 20:19 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A684F971-CF44-4E53-937C-655718D4BBA8}
2015-12-14 17:08 - 2015-09-14 12:46 - 00002393 _____ C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-14 17:08 - 2015-09-14 12:46 - 00000000 ___RD C:\Users\****\OneDrive
2015-12-13 19:12 - 2014-08-16 11:04 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CD8D0312-2F33-4343-80FA-77023AED1586}
2015-12-13 19:12 - 2014-06-06 10:04 - 00000000 ____D C:\Users\****\AppData\Roaming\Skype
2015-12-13 17:33 - 2015-11-14 13:42 - 00408728 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-13 09:14 - 2014-03-16 23:03 - 00000000 ____D C:\Users\****\AppData\Local\Spotify
2015-12-13 08:01 - 2014-03-16 23:03 - 00000000 ____D C:\Users\****\AppData\Roaming\Spotify
2015-12-13 07:48 - 2014-03-26 14:15 - 00163840 _____ (G DATA Software AG) C:\WINDOWS\LgxSetup.exe
2015-12-13 07:32 - 2014-03-16 11:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-13 07:21 - 2015-04-26 08:28 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-12-13 07:13 - 2014-03-16 17:13 - 00000000 ____D C:\Users\****\AppData\Local\VirtualStore
2015-12-13 07:12 - 2014-03-26 14:15 - 00000122 _____ C:\LgxUser.dic
2015-12-13 06:57 - 2014-03-26 14:16 - 00004096 _____ C:\Users\Public\Documents\000016E5.LCS
2015-12-13 06:54 - 2015-11-15 16:52 - 00000000 ____D C:\Program Files (x86)\Zviewer
2015-12-12 04:57 - 2015-11-14 13:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-12-12 04:57 - 2015-03-20 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-12-10 01:31 - 2014-03-16 22:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-10 01:31 - 2014-03-16 22:28 - 00000000 ____D C:\ProgramData\Skype
2015-12-09 13:10 - 2014-08-15 21:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-09 13:10 - 2014-08-15 21:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-09 12:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-09 12:03 - 2014-08-15 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-09 12:03 - 2014-03-19 11:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-09 12:02 - 2014-03-17 12:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 11:55 - 2014-03-17 12:24 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39 - 2015-03-15 12:59 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-09 00:38 - 2015-09-29 18:13 - 00000000 ____D C:\Users\****\AppData\Local\Comms
2015-12-09 00:37 - 2014-03-21 18:36 - 00000000 ____D C:\Users\****\AppData\Local\Packages
2015-12-08 22:00 - 2015-09-29 18:13 - 00002334 _____ C:\Users\****\Desktop\Google Chrome.lnk
2015-12-08 16:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-12-08 02:59 - 2014-03-31 18:27 - 00000000 ____D C:\Users\****\.gimp-2.8
2015-12-08 02:51 - 2014-03-31 18:29 - 00000000 ____D C:\Users\****\AppData\Local\gtk-2.0
2015-12-07 13:08 - 2015-09-13 07:30 - 00002334 _____ C:\Users\****\Desktop\Google Chrome.lnk
2015-12-06 02:51 - 2015-09-14 09:23 - 00002334 _____ C:\Users\****\Desktop\Google Chrome.lnk
2015-12-05 02:16 - 2014-03-16 22:28 - 00000000 ____D C:\Users\****\AppData\Local\Skype
2015-12-03 00:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-02 15:38 - 2014-04-07 11:28 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-02 02:18 - 2015-10-04 20:40 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-12-02 02:18 - 2015-10-04 20:40 - 00000000 ____D C:\Users\****\.oracle_jre_usage
2015-12-02 02:18 - 2015-10-04 20:40 - 00000000 ____D C:\Program Files\Java
2015-12-02 02:18 - 2014-06-06 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-02 02:09 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\Users\****\AppData\Roaming\IObit
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\ProgramData\IObit
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\Program Files (x86)\IObit
2015-12-02 01:03 - 2014-03-23 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-12-01 15:40 - 2015-09-18 11:07 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-30 22:28 - 2014-03-31 18:27 - 00000949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2015-11-27 20:27 - 2014-03-17 04:21 - 00000000 ____D C:\ProgramData\Origin
2015-11-27 20:22 - 2014-03-17 04:21 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-11-27 03:46 - 2014-03-17 04:21 - 00000000 ____D C:\Program Files (x86)\Origin
2015-11-26 16:40 - 2015-09-14 09:26 - 00000000 ___RD C:\Users\****\OneDrive
2015-11-26 00:38 - 2015-10-24 03:35 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-26 00:38 - 2015-09-28 21:11 - 00001449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2015-11-26 00:38 - 2015-09-28 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2015-11-26 00:33 - 2014-10-29 02:25 - 00000000 ____D C:\Users\****\AppData\LocalLow\IObit
2015-11-24 20:32 - 2015-11-14 13:42 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 02983032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 02554672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-24 20:32 - 2015-11-14 13:42 - 00523384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00385328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-23 22:02 - 2015-11-14 13:43 - 00000000 ____D C:\Users\****
2015-11-23 21:35 - 2015-11-14 13:42 - 06049858 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-23 21:01 - 2014-03-16 11:33 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-22 07:33 - 2014-03-16 22:23 - 00000000 ____D C:\Users\****\AppData\Local\ElevatedDiagnostics
2015-11-22 07:30 - 2014-04-11 20:09 - 00001089 _____ C:\Users\****\Desktop\Google _Drive.lnk
2015-11-22 07:30 - 2014-03-23 09:13 - 00001776 _____ C:\Users\****\Desktop\Google Drive.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-06-04 09:46 - 2005-12-09 03:52 - 0000060 ____R () C:\Program Files (x86)\BRINST.INI
2014-03-20 12:53 - 2014-03-20 12:53 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2014-03-17 05:09 - 2014-10-30 01:06 - 14098432 _____ () C:\Users\****\AppData\Roaming\Sandra.mdb
2015-03-21 01:20 - 2015-03-21 01:20 - 0226172 _____ () C:\Users\****\AppData\Local\ars.cache
2015-03-21 01:20 - 2015-03-21 01:20 - 1810385 _____ () C:\Users\****\AppData\Local\census.cache
2015-01-09 16:31 - 2015-01-09 16:36 - 4230199 _____ () C:\Users\****\AppData\Local\HDGraph.log
2015-03-20 16:30 - 2015-03-20 16:30 - 0000036 _____ () C:\Users\****\AppData\Local\housecall.guid.cache
2015-12-08 02:55 - 2015-12-08 02:55 - 0002676 _____ () C:\Users\****\AppData\Local\recently-used.xbel
2015-11-14 13:43 - 2015-11-14 13:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-24 12:58 - 2014-12-14 04:26 - 0000031 _____ () C:\ProgramData\droidcam-settings
Einige Dateien in TEMP:
====================
C:\Users\****\AppData\Local\Temp\avgnt.exe
C:\Users\****\AppData\Local\Temp\BeliryS.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\cdei.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\cDfIQ.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\Hola-Setup-Plugin-x64-1.10.994.exe
C:\Users\****\AppData\Local\Temp\KI2J.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\lBXaSYz.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\nrxDDS.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\pZ2ue63T.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\sqlite3.dll
C:\Users\****\AppData\Local\Temp\TmX5wtn.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\v3FaEqQ.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\Zhdus.proxy_util_ia64.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-12 23:12
==================== Ende von FRST.txt ============================
Besitze die Software rechtmäßig und unterbinde nur das nach Hause Telefonieren per Hosts Eintrag... |
|
20.12.2015, 03:48
| #7 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runterCode:
ATTFilter
04:41:58.0136 0x0e20 SetPrivileges failed!
04:41:58.0136 0x0e20 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
04:42:02.0345 0x0e20 ============================================================
04:42:02.0346 0x0e20 Current date / time: 2015/12/19 04:42:02.0345
04:42:02.0346 0x0e20 SystemInfo:
04:42:02.0346 0x0e20
04:42:02.0346 0x0e20 OS Version: 10.0.10586 ServicePack: 0.0
04:42:02.0346 0x0e20 Product type: Workstation
04:42:02.0346 0x0e20 ComputerName: ****
04:42:02.0346 0x0e20 UserName: ****
04:42:02.0346 0x0e20 Windows directory: C:\WINDOWS
04:42:02.0346 0x0e20 System windows directory: C:\WINDOWS
04:42:02.0346 0x0e20 Running under WOW64
04:42:02.0346 0x0e20 Processor architecture: Intel x64
04:42:02.0346 0x0e20 Number of processors: 4
04:42:02.0346 0x0e20 Page size: 0x1000
04:42:02.0346 0x0e20 Boot type: Normal boot
04:42:02.0346 0x0e20 ============================================================
04:42:02.0516 0x0e20 KLMD registered as C:\WINDOWS\system32\drivers\80614090.sys
04:42:03.0237 0x0e20 System UUID: {8285D75C-B2EE-4BB5-C824-EAF3612A090A}
04:42:04.0125 0x0e20 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:42:04.0125 0x0e20 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:42:04.0126 0x0e20 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:42:04.0129 0x0e20 ============================================================
04:42:04.0129 0x0e20 \Device\Harddisk0\DR0:
04:42:04.0129 0x0e20 MBR partitions:
04:42:04.0130 0x0e20 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1000, BlocksNum 0x74705800
04:42:04.0130 0x0e20 \Device\Harddisk1\DR1:
04:42:04.0130 0x0e20 MBR partitions:
04:42:04.0130 0x0e20 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDEB3000
04:42:04.0130 0x0e20 \Device\Harddisk2\DR2:
04:42:04.0130 0x0e20 MBR partitions:
04:42:04.0130 0x0e20 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74706000
04:42:04.0130 0x0e20 ============================================================
04:42:04.0132 0x0e20 C: <-> \Device\Harddisk1\DR1\Partition1
04:42:04.0156 0x0e20 E: <-> \Device\Harddisk2\DR2\Partition1
04:42:04.0178 0x0e20 F: <-> \Device\Harddisk0\DR0\Partition1
04:42:04.0178 0x0e20 ============================================================
04:42:04.0179 0x0e20 Initialize success
04:42:04.0179 0x0e20 ============================================================
04:42:10.0674 0x175c ============================================================
04:42:10.0674 0x175c Scan started
04:42:10.0674 0x175c Mode: Manual;
04:42:10.0674 0x175c ============================================================
04:42:10.0674 0x175c KSN ping started
04:42:12.0990 0x175c KSN ping finished: true
04:42:13.0731 0x175c ================ Scan system memory ========================
04:42:13.0731 0x175c System memory - ok
04:42:13.0731 0x175c ================ Scan services =============================
04:42:13.0789 0x175c 1394ohci - ok
04:42:13.0791 0x175c 3ware - ok
04:42:13.0794 0x175c ACPI - ok
04:42:13.0798 0x175c acpiex - ok
04:42:13.0801 0x175c acpipagr - ok
04:42:13.0805 0x175c AcpiPmi - ok
04:42:13.0808 0x175c acpitime - ok
04:42:13.0836 0x175c [ 8EEC0269D86CFADD292C9B05F59F23ED, 779F863563F9F31B102EB7A7C1580281D73F083213B0DD17A82A9EF2886DFD79 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
04:42:13.0888 0x175c AcrSch2Svc - ok
04:42:13.0898 0x175c [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
04:42:13.0899 0x175c AdobeARMservice - ok
04:42:13.0934 0x175c [ F54564025D2284AE498E51D7C139F971, AAA48F38B81DB894854E8C84DB2E1F5C8447AA982D27C0BB78FF2786D9F80F83 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
04:42:13.0937 0x175c AdobeFlashPlayerUpdateSvc - ok
04:42:13.0943 0x175c ADP80XX - ok
04:42:14.0018 0x175c [ 3B0908381A28DEFD42F42DBA9F06D39B, 3179AC9F26338D684CB806F29CD37EA75BE7F4553834F682E65ECE6D6D797FD4 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
04:42:14.0135 0x175c afcdpsrv - ok
04:42:14.0142 0x175c AFD - ok
04:42:14.0145 0x175c agp440 - ok
04:42:14.0147 0x175c ahcache - ok
04:42:14.0150 0x175c AJRouter - ok
04:42:14.0152 0x175c ALG - ok
04:42:14.0155 0x175c AmdK8 - ok
04:42:14.0157 0x175c AmdPPM - ok
04:42:14.0159 0x175c amdsata - ok
04:42:14.0162 0x175c amdsbs - ok
04:42:14.0164 0x175c amdxata - ok
04:42:14.0189 0x175c [ 81E02299B534F61E104C1235519C37B3, B389458C13A0E0717365B7CE371A6B768EB2F98C4CDBAA6DCBBBDE3A2B1D8B14 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
04:42:14.0254 0x175c AntiVirMailService - ok
04:42:14.0266 0x175c [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
04:42:14.0307 0x175c AntiVirSchedulerService - ok
04:42:14.0319 0x175c [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
04:42:14.0325 0x175c AntiVirService - ok
04:42:14.0352 0x175c [ CAA9D66CA6D21AF0AE7DA01D5AC6CC2F, 827400CFB53026757B3D75B6C5AC7BBECE7E62B335160C18CBF6A41047F4A400 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
04:42:14.0421 0x175c AntiVirWebService - ok
04:42:14.0426 0x175c AppID - ok
04:42:14.0429 0x175c AppIDSvc - ok
04:42:14.0432 0x175c Appinfo - ok
04:42:14.0438 0x175c [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
04:42:14.0439 0x175c Apple Mobile Device Service - ok
04:42:14.0442 0x175c AppMgmt - ok
04:42:14.0445 0x175c AppReadiness - ok
04:42:14.0448 0x175c AppXSvc - ok
04:42:14.0451 0x175c arcsas - ok
04:42:14.0455 0x175c [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
04:42:14.0456 0x175c aswHwid - ok
04:42:14.0458 0x175c AsyncMac - ok
04:42:14.0462 0x175c atapi - ok
04:42:14.0465 0x175c AudioEndpointBuilder - ok
04:42:14.0468 0x175c Audiosrv - ok
04:42:14.0473 0x175c [ CF233C89DEFF6BCA1F65BE3DA0C1A306, B718A59CFC0E3A9ED4E8C690390F54C96828C5A4C2790C2E98075DB4484240D6 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
04:42:14.0486 0x175c avgntflt - ok
04:42:14.0491 0x175c [ 4764D299855174D6B5C7DA853B490029, 6E2C8E25DC3C38EEAAA1221E515AC06C2EDC0A71CF2F7762E8DFCC55938D59B3 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
04:42:14.0503 0x175c avipbb - ok
04:42:14.0511 0x175c [ 2027E82463B6F6BB4D2A5BAF09202BA8, 7E61DEAC45F710F62C388177B43D99F3C39B89CEFCEFCC581DF12201C8CDB23C ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
04:42:14.0541 0x175c Avira.ServiceHost - ok
04:42:14.0545 0x175c [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
04:42:14.0554 0x175c avkmgr - ok
04:42:14.0559 0x175c [ E477AF94ACCCF99A0E56D71D450DCCCB, C97756A4E82EC7EF8268967B10DEBAAEDB746B2846CA2BFD68E1B7DBBAE7901A ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
04:42:14.0570 0x175c avnetflt - ok
04:42:14.0573 0x175c AxInstSV - ok
04:42:14.0576 0x175c b06bdrv - ok
04:42:14.0579 0x175c BasicDisplay - ok
04:42:14.0583 0x175c BasicRender - ok
04:42:14.0587 0x175c bcmfn - ok
04:42:14.0589 0x175c bcmfn2 - ok
04:42:14.0592 0x175c BDESVC - ok
04:42:14.0594 0x175c Beep - ok
04:42:14.0597 0x175c BFE - ok
04:42:14.0601 0x175c BITS - ok
04:42:14.0612 0x175c [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
04:42:14.0618 0x175c Bonjour Service - ok
04:42:14.0621 0x175c bowser - ok
04:42:14.0624 0x175c BrokerInfrastructure - ok
04:42:14.0627 0x175c Browser - ok
04:42:14.0630 0x175c BthAvrcpTg - ok
04:42:14.0633 0x175c BthEnum - ok
04:42:14.0636 0x175c BthHFEnum - ok
04:42:14.0638 0x175c bthhfhid - ok
04:42:14.0641 0x175c BthHFSrv - ok
04:42:14.0644 0x175c BTHMODEM - ok
04:42:14.0647 0x175c BthPan - ok
04:42:14.0650 0x175c BTHPORT - ok
04:42:14.0653 0x175c bthserv - ok
04:42:14.0655 0x175c BTHUSB - ok
04:42:14.0658 0x175c buttonconverter - ok
04:42:14.0687 0x175c [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
04:42:14.0707 0x175c c2cautoupdatesvc - ok
04:42:14.0742 0x175c [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
04:42:14.0768 0x175c c2cpnrsvc - ok
04:42:14.0773 0x175c CapImg - ok
04:42:14.0775 0x175c cdfs - ok
04:42:14.0779 0x175c CDPSvc - ok
04:42:14.0782 0x175c cdrom - ok
04:42:14.0785 0x175c CertPropSvc - ok
04:42:14.0788 0x175c circlass - ok
04:42:14.0790 0x175c CLFS - ok
04:42:14.0793 0x175c ClipSVC - ok
04:42:14.0800 0x175c CmBatt - ok
04:42:14.0803 0x175c CNG - ok
04:42:14.0806 0x175c cnghwassist - ok
04:42:14.0810 0x175c [ 81F2B52C47B8AD32CC4FF967FC8D73DA, 13D84B4096E0F9AB9D04F6CD9E9C0DE4B6DF6F11D63C797266D719FD2429A655 ] CompFilter64 C:\WINDOWS\System32\drivers\lvbflt64.sys
04:42:14.0820 0x175c CompFilter64 - ok
04:42:14.0838 0x175c CompositeBus - ok
04:42:14.0842 0x175c COMSysApp - ok
04:42:14.0845 0x175c condrv - ok
04:42:14.0848 0x175c CoreMessagingRegistrar - ok
04:42:14.0853 0x175c CryptSvc - ok
04:42:14.0856 0x175c CSC - ok
04:42:14.0859 0x175c CscService - ok
04:42:14.0862 0x175c dam - ok
04:42:14.0866 0x175c DcomLaunch - ok
04:42:14.0869 0x175c DcpSvc - ok
04:42:14.0872 0x175c defragsvc - ok
04:42:14.0875 0x175c DeviceAssociationService - ok
04:42:14.0878 0x175c DeviceInstall - ok
04:42:14.0945 0x175c [ 0B24043732807EE3AA25389356F4DE7C, 6A9A65B38968FF704C3938BEF5E6C1226447FF4F78997473B1694EA8D3D519DF ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
04:42:15.0222 0x175c DevoloNetworkService - ok
04:42:15.0229 0x175c DevQueryBroker - ok
04:42:15.0232 0x175c Dfsc - ok
04:42:15.0245 0x175c [ D51B32BA3897F630D99713B74B40D6A2, 5EB136A8248E6FA1316CFA273D9DC8F9C8E8CCB9AC00AE23C1337FBF5F6FDBEC ] DfSdkS C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\DfSdkS64.exe
04:42:15.0277 0x175c DfSdkS - ok
04:42:15.0283 0x175c [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
04:42:15.0301 0x175c dg_ssudbus - ok
04:42:15.0304 0x175c Dhcp - ok
04:42:15.0307 0x175c diagnosticshub.standardcollector.service - ok
04:42:15.0310 0x175c DiagTrack - ok
04:42:15.0313 0x175c disk - ok
04:42:15.0317 0x175c DmEnrollmentSvc - ok
04:42:15.0320 0x175c dmvsc - ok
04:42:15.0323 0x175c dmwappushservice - ok
04:42:15.0325 0x175c Dnscache - ok
04:42:15.0329 0x175c dot3svc - ok
04:42:15.0332 0x175c DPS - ok
04:42:15.0335 0x175c drmkaud - ok
04:42:15.0339 0x175c [ 2C3CED9C50C6FE3DF7C41BCFABB63307, EA302ABAFCA2A1F70C9723BB1F7457E80DF493D66C90D385C25F9E95DE44C4C0 ] DroidCam C:\WINDOWS\system32\DRIVERS\droidcam.sys
04:42:15.0349 0x175c DroidCam - ok
04:42:15.0357 0x175c [ B0A1D79628D07193EE240678824064FA, B89761F8B47B1811B50B409A9FC38C1939381C33DC351333FDC19ED5F0FAB49E ] DroidCamVideo C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys
04:42:15.0371 0x175c DroidCamVideo - ok
04:42:15.0374 0x175c DsmSvc - ok
04:42:15.0377 0x175c DsSvc - ok
04:42:15.0380 0x175c DXGKrnl - ok
04:42:15.0382 0x175c Eaphost - ok
04:42:15.0385 0x175c ebdrv - ok
04:42:15.0388 0x175c EFS - ok
04:42:15.0391 0x175c EhStorClass - ok
04:42:15.0394 0x175c EhStorTcgDrv - ok
04:42:15.0397 0x175c embeddedmode - ok
04:42:15.0400 0x175c EntAppSvc - ok
04:42:15.0402 0x175c ErrDev - ok
04:42:15.0408 0x175c EventSystem - ok
04:42:15.0410 0x175c exfat - ok
04:42:15.0414 0x175c fastfat - ok
04:42:15.0418 0x175c Fax - ok
04:42:15.0421 0x175c fdc - ok
04:42:15.0424 0x175c fdPHost - ok
04:42:15.0427 0x175c FDResPub - ok
04:42:15.0430 0x175c fhsvc - ok
04:42:15.0433 0x175c FileCrypt - ok
04:42:15.0436 0x175c FileInfo - ok
04:42:15.0439 0x175c Filetrace - ok
04:42:15.0447 0x175c [ 72CC30F0D6DF8D3FBD5CD728259A8F69, F7774D35B38F35E31A8EEE37FF2F203C1CED433FF84EC265CD92B38CBFE3AB8F ] file_tracker C:\WINDOWS\system32\DRIVERS\file_tracker.sys
04:42:15.0464 0x175c file_tracker - ok
04:42:15.0467 0x175c flpydisk - ok
04:42:15.0469 0x175c FltMgr - ok
04:42:15.0475 0x175c [ 9BD0273A5B650CC16E8A54AD9B312BEB, 1AA219C4CC29E8301075537A330CC7FB677CD884AABD8FB3D99CFBEA1AB4CDF2 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys
04:42:15.0489 0x175c fltsrv - ok
04:42:15.0492 0x175c FontCache - ok
04:42:15.0494 0x175c FontCache3.0.0.0 - ok
04:42:15.0497 0x175c FsDepends - ok
04:42:15.0500 0x175c Fs_Rec - ok
04:42:15.0503 0x175c fvevol - ok
04:42:15.0506 0x175c gagp30kx - ok
04:42:15.0510 0x175c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
04:42:15.0511 0x175c GEARAspiWDM - ok
04:42:15.0515 0x175c gencounter - ok
04:42:15.0518 0x175c genericusbfn - ok
04:42:15.0542 0x175c [ 21931B9C5FDE6087F47F710AC1BE16E9, A727A8922A9769AAC77F5D85ED3475853655E9483C8DA091653D0B1F3D479398 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
04:42:15.0588 0x175c GfExperienceService - ok
04:42:15.0593 0x175c GPIOClx0101 - ok
04:42:15.0596 0x175c gpsvc - ok
04:42:15.0598 0x175c GpuEnergyDrv - ok
04:42:15.0602 0x175c [ 0636745A40DEA06283D45885C228AF01, 514EF6F912CB9BF552AE109739BC02A2BC46B4784C65BC3C0B03DB6F60BBF380 ] GUBootStartup C:\Windows\System32\drivers\GUBootStartup.sys
04:42:15.0602 0x175c GUBootStartup - ok
04:42:15.0608 0x175c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:42:15.0610 0x175c gupdate - ok
04:42:15.0615 0x175c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:42:15.0617 0x175c gupdatem - ok
04:42:15.0623 0x175c [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
04:42:15.0658 0x175c gusvc - ok
04:42:15.0661 0x175c HDAudBus - ok
04:42:15.0664 0x175c HidBatt - ok
04:42:15.0667 0x175c HidBth - ok
04:42:15.0670 0x175c hidi2c - ok
04:42:15.0673 0x175c hidinterrupt - ok
04:42:15.0675 0x175c HidIr - ok
04:42:15.0678 0x175c hidserv - ok
04:42:15.0681 0x175c HidUsb - ok
04:42:15.0685 0x175c HomeGroupListener - ok
04:42:15.0688 0x175c HomeGroupProvider - ok
04:42:15.0690 0x175c HpSAMD - ok
04:42:15.0694 0x175c [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64 C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
04:42:15.0695 0x175c HTCAND64 - ok
04:42:15.0699 0x175c [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot C:\WINDOWS\system32\DRIVERS\htcnprot.sys
04:42:15.0711 0x175c htcnprot - ok
04:42:15.0714 0x175c HTTP - ok
04:42:15.0739 0x175c [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS
04:42:15.0749 0x175c HWiNFO32 - ok
04:42:15.0752 0x175c hwpolicy - ok
04:42:15.0754 0x175c hyperkbd - ok
04:42:15.0757 0x175c i8042prt - ok
04:42:15.0760 0x175c iai2c - ok
04:42:15.0763 0x175c iaLPSS2i_I2C - ok
04:42:15.0766 0x175c iaLPSSi_GPIO - ok
04:42:15.0769 0x175c iaLPSSi_I2C - ok
04:42:15.0783 0x175c [ 25555186E4FBDF0E30A5DBFC9B9A73F9, 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
04:42:15.0791 0x175c iaStorA - ok
04:42:15.0794 0x175c iaStorAV - ok
04:42:15.0798 0x175c [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
04:42:15.0799 0x175c IAStorDataMgrSvc - ok
04:42:15.0802 0x175c iaStorV - ok
04:42:15.0804 0x175c ibbus - ok
04:42:15.0810 0x175c [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
04:42:15.0840 0x175c ICCS - ok
04:42:15.0843 0x175c icssvc - ok
04:42:15.0846 0x175c IEEtwCollectorService - ok
04:42:15.0849 0x175c IKEEXT - ok
04:42:15.0932 0x175c [ 71EDE424B930F50B46C684D71C1C1CDE, 932E18114563E652DE0B64ECC6CDABE7144D5EF7BB065A7B4ACFB020B89D1BE7 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
04:42:16.0007 0x175c IntcAzAudAddService - ok
04:42:16.0029 0x175c [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
04:42:16.0766 0x175c Intel(R) Capability Licensing Service Interface - ok
04:42:16.0784 0x175c [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
04:42:17.0559 0x175c Intel(R) Capability Licensing Service TCP IP Interface - ok
04:42:17.0562 0x175c intelide - ok
04:42:17.0565 0x175c intelpep - ok
04:42:17.0568 0x175c intelppm - ok
04:42:17.0571 0x175c IoQos - ok
04:42:17.0574 0x175c IpFilterDriver - ok
04:42:17.0577 0x175c iphlpsvc - ok
04:42:17.0580 0x175c IPMIDRV - ok
04:42:17.0583 0x175c IPNAT - ok
04:42:17.0596 0x175c [ 043A93A498B3C4A88CACA3BCBC9B54C7, C08C5A03940806C6CB75ADDCBE6183145AD2AFE84D77BC85E620E7C1542F0893 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
04:42:17.0607 0x175c iPod Service - ok
04:42:17.0611 0x175c IRENUM - ok
04:42:17.0614 0x175c isapnp - ok
04:42:17.0617 0x175c iScsiPrt - ok
04:42:17.0624 0x175c [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
04:42:17.0626 0x175c jhi_service - ok
04:42:17.0629 0x175c kbdclass - ok
04:42:17.0632 0x175c kbdhid - ok
04:42:17.0634 0x175c kdnic - ok
04:42:17.0637 0x175c KeyIso - ok
04:42:17.0639 0x175c KSecDD - ok
04:42:17.0642 0x175c KSecPkg - ok
04:42:17.0644 0x175c ksthunk - ok
04:42:17.0667 0x175c [ D1C2E109284976A3DFE768E8E1268101, FDBFC98EBF33237BC0FFD6CC125F8BD937C271BC50529214C44E2B1AC04AF0D9 ] ksupmgr C:\Windows\SysWOW64\ksupmgr.exe
04:42:17.0686 0x175c ksupmgr - ok
04:42:17.0690 0x175c KtmRm - ok
04:42:17.0692 0x175c LanmanServer - ok
04:42:17.0695 0x175c LanmanWorkstation - ok
04:42:17.0698 0x175c lfsvc - ok
04:42:17.0702 0x175c LicenseManager - ok
04:42:17.0755 0x175c [ 5100AE7C075C9436E9DD45F96A4A74FC, 1301B7DABAEBBF3134C459BE2DC359BC2CAF6AA59C86A1030D0B28CAFA950F5B ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
04:42:17.0792 0x175c LiveUpdateSvc - ok
04:42:17.0798 0x175c lltdio - ok
04:42:17.0801 0x175c lltdsvc - ok
04:42:17.0805 0x175c lmhosts - ok
04:42:17.0815 0x175c [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
04:42:17.0820 0x175c LMS - ok
04:42:17.0824 0x175c LSI_SAS - ok
04:42:17.0827 0x175c LSI_SAS2i - ok
04:42:17.0830 0x175c LSI_SAS3i - ok
04:42:17.0833 0x175c LSI_SSS - ok
04:42:17.0836 0x175c LSM - ok
04:42:17.0839 0x175c luafv - ok
04:42:17.0848 0x175c [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64 C:\WINDOWS\system32\DRIVERS\lvrs64.sys
04:42:17.0873 0x175c LVRS64 - ok
04:42:17.0926 0x19f8 Object required for P2P: [ 81E02299B534F61E104C1235519C37B3 ] AntiVirMailService
04:42:17.0966 0x175c [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys
04:42:18.0062 0x175c LVUVC64 - ok
04:42:18.0070 0x175c MapsBroker - ok
04:42:18.0074 0x175c [ D7F57860E779B84AB982E8F4F23E30D1, 118E98F8999A2CBA469FBFF8C776BFC9D92D0445AE30060EA4028731224C68B8 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
04:42:18.0075 0x175c massfilter_hs - ok
04:42:18.0084 0x175c [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
04:42:18.0086 0x175c MBAMSwissArmy - ok
04:42:18.0090 0x175c megasas - ok
04:42:18.0092 0x175c megasr - ok
04:42:18.0099 0x175c [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
04:42:18.0115 0x175c MEIx64 - ok
04:42:18.0118 0x175c MessagingService - ok
04:42:18.0132 0x175c [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
04:42:18.0134 0x175c Microsoft Office Groove Audit Service - ok
04:42:18.0137 0x175c mlx4_bus - ok
04:42:18.0139 0x175c MMCSS - ok
04:42:18.0142 0x175c Modem - ok
04:42:18.0145 0x175c monitor - ok
04:42:18.0148 0x175c mouclass - ok
04:42:18.0151 0x175c mouhid - ok
04:42:18.0155 0x175c mountmgr - ok
04:42:18.0160 0x175c [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
04:42:18.0162 0x175c MozillaMaintenance - ok
04:42:18.0166 0x175c mpsdrv - ok
04:42:18.0169 0x175c MpsSvc - ok
04:42:18.0172 0x175c MRxDAV - ok
04:42:18.0175 0x175c mrxsmb - ok
04:42:18.0178 0x175c mrxsmb10 - ok
04:42:18.0182 0x175c mrxsmb20 - ok
04:42:18.0185 0x175c MsBridge - ok
04:42:18.0188 0x175c MSDTC - ok
04:42:18.0193 0x175c Msfs - ok
04:42:18.0197 0x175c msgpiowin32 - ok
04:42:18.0200 0x175c mshidkmdf - ok
04:42:18.0203 0x175c mshidumdf - ok
04:42:18.0205 0x175c msisadrv - ok
04:42:18.0208 0x175c MSiSCSI - ok
04:42:18.0211 0x175c msiserver - ok
04:42:18.0244 0x175c [ 591591EFF4B05FEC751148BA1FF8B595, 49516EAF3132DD8DB1D0C531E8106BCB585C64A3442A4C6660BE0135C0DC33EC ] MSI_LiveUpdate_Service C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
04:42:18.0369 0x175c MSI_LiveUpdate_Service - ok
04:42:18.0375 0x175c MSKSSRV - ok
04:42:18.0378 0x175c MsLldp - ok
04:42:18.0381 0x175c MSPCLOCK - ok
04:42:18.0384 0x175c MSPQM - ok
04:42:18.0387 0x175c MsRPC - ok
04:42:18.0391 0x175c mssmbios - ok
04:42:18.0394 0x175c MSTEE - ok
04:42:18.0397 0x175c MTConfig - ok
04:42:18.0400 0x175c Mup - ok
04:42:18.0402 0x175c mvumis - ok
04:42:18.0407 0x175c NativeWifiP - ok
04:42:18.0409 0x175c NcaSvc - ok
04:42:18.0412 0x175c NcbService - ok
04:42:18.0415 0x175c NcdAutoSetup - ok
04:42:18.0418 0x175c ndfltr - ok
04:42:18.0421 0x175c NDIS - ok
04:42:18.0423 0x175c NdisCap - ok
04:42:18.0426 0x175c NdisImPlatform - ok
04:42:18.0429 0x175c NdisTapi - ok
04:42:18.0432 0x175c Ndisuio - ok
04:42:18.0435 0x175c NdisVirtualBus - ok
04:42:18.0438 0x175c NdisWan - ok
04:42:18.0441 0x175c ndiswanlegacy - ok
04:42:18.0443 0x175c ndproxy - ok
04:42:18.0446 0x175c Ndu - ok
04:42:18.0449 0x175c NetBIOS - ok
04:42:18.0453 0x175c NetBT - ok
04:42:18.0456 0x175c Netlogon - ok
04:42:18.0459 0x175c Netman - ok
04:42:18.0461 0x175c netprofm - ok
04:42:18.0464 0x175c NetSetupSvc - ok
04:42:18.0471 0x175c NetTcpPortSharing - ok
04:42:18.0475 0x175c NgcCtnrSvc - ok
04:42:18.0478 0x175c NgcSvc - ok
04:42:18.0480 0x175c NlaSvc - ok
04:42:18.0506 0x175c [ 7AEA4DF1CA68FD45DD4BBE1F0243CE7F, 4CCE820F455512C41E4F98109FA6F048907DD3452D5A00D5F885C77F93C9C105 ] NMSAccess C:\WINDOWS\SysWOW64\NMSAccessU.exe
04:42:18.0510 0x175c NMSAccess - ok
04:42:18.0514 0x175c [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf C:\WINDOWS\system32\drivers\npf.sys
04:42:18.0516 0x175c npf - ok
04:42:18.0519 0x175c Npfs - ok
04:42:18.0522 0x175c [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys
04:42:18.0532 0x175c NPF_devolo - ok
04:42:18.0536 0x175c npsvctrig - ok
04:42:18.0539 0x175c nsi - ok
04:42:18.0541 0x175c nsiproxy - ok
04:42:18.0545 0x175c NTFS - ok
04:42:18.0550 0x175c [ 2DA209DDE8188076A9579BD256DC90D0, 984A77E5424C6D099051441005F2938AE92B31B5AD8F6521C6B001932862ADD7 ] NTIOLib_MSISMB_CC C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys
04:42:18.0561 0x175c NTIOLib_MSISMB_CC - ok
04:42:18.0564 0x175c Null - ok
04:42:18.0571 0x175c [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
04:42:18.0586 0x175c NVHDA - ok
04:42:18.0783 0x175c [ 4D1C57D613F277B432188A10DFF85C2C, 04F451468BBFB417F0214CCC1EB99F5F0DBD74A438845E2F4D10934681DD229A ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
04:42:18.0981 0x175c nvlddmkm - ok
04:42:19.0028 0x175c [ C2909BD26906E1D05D77B1D48B48E94A, 5642571FFDBDC63F0E3B1477337103517ABF7C50EBEDA63EF8E162E44C7B2538 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
04:42:19.0515 0x175c NvNetworkService - ok
04:42:19.0520 0x175c [ 15B7C86DCFF1B9FB6680465D03603793, 5E224772C6E134A14B52F9BE2CEB711578B67805433E60BEF52139D10D797344 ] nvpciflt C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
04:42:19.0534 0x175c nvpciflt - ok
04:42:19.0537 0x175c nvraid - ok
04:42:19.0539 0x175c nvstor - ok
04:42:19.0543 0x175c [ 60C9EC53F9CFBFBE38E9C79B88A6B19F, D89D6C62AB0A3224D850B639E4D7D7265BF183BEE0C60F27FEDDF0194504B078 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
04:42:19.0554 0x175c NvStreamKms - ok
04:42:19.0656 0x175c [ 5A773713C332F8760ABB915C24675E8F, DA453D341529B34188D5B235B17BD0FDAE84129539FC212F34B9FCC42DC0549C ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
04:42:19.0739 0x175c NvStreamSvc - ok
04:42:19.0765 0x175c [ 44C787E5661B40B78D59E0EB8B73C412, F88E919190C1ADB9AB266DE41C71DFC87F5AAE407783EDB70001D18B15D1052A ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
04:42:19.0832 0x175c nvsvc - ok
04:42:19.0837 0x175c [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
04:42:19.0850 0x175c nvvad_WaveExtensible - ok
04:42:19.0852 0x175c nv_agp - ok
04:42:19.0864 0x175c [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
04:42:19.0872 0x175c odserv - ok
04:42:19.0875 0x175c OneSyncSvc - ok
04:42:19.0920 0x175c [ F34655869378762CEEF159E82BE95C3E, 346211DEB3D9C1D4C0688F737BF154A75C986921465FAF04E8CFED48385E64E8 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
04:42:20.0006 0x175c Origin Client Service - ok
04:42:20.0014 0x175c [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
04:42:20.0016 0x175c ose - ok
04:42:20.0021 0x175c p2pimsvc - ok
04:42:20.0024 0x175c p2psvc - ok
04:42:20.0028 0x175c Parport - ok
04:42:20.0031 0x175c partmgr - ok
04:42:20.0037 0x175c [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
04:42:20.0065 0x175c PassThru Service - ok
04:42:20.0068 0x175c PcaSvc - ok
04:42:20.0071 0x175c pci - ok
04:42:20.0074 0x175c pciide - ok
04:42:20.0078 0x175c pcmcia - ok
04:42:20.0080 0x175c pcw - ok
04:42:20.0084 0x175c pdc - ok
04:42:20.0087 0x175c PEAUTH - ok
04:42:20.0090 0x175c PeerDistSvc - ok
04:42:20.0096 0x175c [ 9590E5FAFB67C9842F5EEDD41348F16F, 67E5F18D0B36604C580B54D7463927746309D9ABC6AC1F81E3FD3B4F17009157 ] PelService C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
04:42:20.0116 0x175c PelService - ok
04:42:20.0119 0x175c percsas2i - ok
04:42:20.0122 0x175c percsas3i - ok
04:42:20.0147 0x175c PerfHost - ok
04:42:20.0155 0x175c PhoneSvc - ok
04:42:20.0157 0x175c PimIndexMaintenanceSvc - ok
04:42:20.0167 0x175c pla - ok
04:42:20.0170 0x175c PlugPlay - ok
04:42:20.0173 0x175c [ A010F13D27C1033A8BE09D5FA9BF348B, 5536A233554C469F270046ADEE12A158F70E2D8BE776BAD0925235B015567D46 ] pneteth C:\WINDOWS\system32\DRIVERS\pneteth.sys
04:42:20.0174 0x175c pneteth - ok
04:42:20.0177 0x175c PNRPAutoReg - ok
04:42:20.0180 0x175c PNRPsvc - ok
04:42:20.0184 0x175c PolicyAgent - ok
04:42:20.0188 0x175c Power - ok
04:42:20.0191 0x175c PptpMiniport - ok
04:42:20.0254 0x175c [ 959F94AD1255BC749884EDDD14EC29C4, 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
04:42:20.0309 0x175c PrintNotify - ok
04:42:20.0316 0x175c Processor - ok
04:42:20.0320 0x175c ProfSvc - ok
04:42:20.0322 0x175c Psched - ok
04:42:20.0326 0x175c QWAVE - ok
04:42:20.0329 0x175c QWAVEdrv - ok
04:42:20.0332 0x175c RasAcd - ok
04:42:20.0335 0x175c RasAgileVpn - ok
04:42:20.0338 0x175c RasAuto - ok
04:42:20.0340 0x175c Rasl2tp - ok
04:42:20.0344 0x175c RasMan - ok
04:42:20.0346 0x175c RasPppoe - ok
04:42:20.0350 0x175c RasSstp - ok
04:42:20.0353 0x175c rdbss - ok
04:42:20.0356 0x175c rdpbus - ok
04:42:20.0359 0x175c RDPDR - ok
04:42:20.0364 0x175c RdpVideoMiniport - ok
04:42:20.0367 0x175c rdyboost - ok
04:42:20.0370 0x19f8 Object send P2P result: true
04:42:20.0370 0x19f8 Object required for P2P: [ 3CBE5047BB08BD363420D68364F9E829 ] AntiVirSchedulerService
04:42:20.0370 0x175c ReFSv1 - ok
04:42:20.0375 0x175c RemoteAccess - ok
04:42:20.0378 0x175c RemoteRegistry - ok
04:42:20.0381 0x175c RetailDemo - ok
04:42:20.0384 0x175c RFCOMM - ok
04:42:20.0387 0x175c RpcEptMapper - ok
04:42:20.0390 0x175c RpcLocator - ok
04:42:20.0393 0x175c RpcSs - ok
04:42:20.0395 0x175c rspndr - ok
04:42:20.0414 0x175c [ 8D8F0EF89B2904EAE89C3734E4EF613F, 0E99C31C4FDAA2549F6B41496F3052FA83B0A05327F5580F8766817A05F28112 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
04:42:20.0429 0x175c rt640x64 - ok
04:42:20.0433 0x175c s3cap - ok
04:42:20.0436 0x175c SamSs - ok
04:42:20.0440 0x175c [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\WNt500x64\Sandra.sys
04:42:20.0451 0x175c SANDRA - ok
04:42:20.0454 0x175c [ 1879374E0B4296763F3D4D0D230F867B, 93FA69CDD0CD3C81E7A9104D7BB9C99729C7EBF0257CDD4FA984C3ADFA43A4E3 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe
04:42:20.0471 0x175c SandraAgentSrv - ok
04:42:20.0474 0x175c sbp2port - ok
04:42:20.0477 0x175c SCardSvr - ok
04:42:20.0480 0x175c ScDeviceEnum - ok
04:42:20.0484 0x175c scfilter - ok
04:42:20.0487 0x175c Schedule - ok
04:42:20.0490 0x175c SCPolicySvc - ok
04:42:20.0493 0x175c sdbus - ok
04:42:20.0496 0x175c SDRSVC - ok
04:42:20.0498 0x175c sdstor - ok
04:42:20.0501 0x175c seclogon - ok
04:42:20.0504 0x175c SENS - ok
04:42:20.0506 0x175c SensorDataService - ok
04:42:20.0509 0x175c SensorService - ok
04:42:20.0512 0x175c SensrSvc - ok
04:42:20.0515 0x175c SerCx - ok
04:42:20.0518 0x175c SerCx2 - ok
04:42:20.0521 0x175c Serenum - ok
04:42:20.0525 0x175c Serial - ok
04:42:20.0528 0x175c sermouse - ok
04:42:20.0536 0x175c SessionEnv - ok
04:42:20.0539 0x175c sfloppy - ok
04:42:20.0542 0x175c SharedAccess - ok
04:42:20.0546 0x175c ShellHWDetection - ok
04:42:20.0549 0x175c SiSRaid2 - ok
04:42:20.0551 0x175c SiSRaid4 - ok
04:42:20.0561 0x175c [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
04:42:20.0566 0x175c SkypeUpdate - ok
04:42:20.0570 0x175c [ 0A760D02223FC2446012AE1192117DF1, 3EEF05CAD32C0113967B2B001870E3C39B9A3804399F25D0D9CBCA2B53569592 ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
04:42:20.0582 0x175c SmbDrvI - ok
04:42:20.0586 0x175c smphost - ok
04:42:20.0589 0x175c SmsRouter - ok
04:42:20.0600 0x175c [ 2F7A6F88A9516EB47B0BF13024434244, 5FC5635D077AAA42853F78306C941995B56E939015CC3F27D376CBD9395C7410 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
04:42:20.0617 0x175c snapman - ok
04:42:20.0620 0x175c SNMPTRAP - ok
04:42:20.0623 0x175c spaceport - ok
04:42:20.0626 0x175c SpbCx - ok
04:42:20.0629 0x175c Spooler - ok
04:42:20.0632 0x175c sppsvc - ok
04:42:20.0635 0x175c srv - ok
04:42:20.0637 0x175c srv2 - ok
04:42:20.0640 0x175c srvnet - ok
04:42:20.0644 0x175c SSDPSRV - ok
04:42:20.0646 0x175c SstpSvc - ok
04:42:20.0653 0x175c [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
04:42:20.0671 0x175c ssudmdm - ok
04:42:20.0674 0x175c StateRepository - ok
04:42:20.0677 0x175c stexstor - ok
04:42:20.0680 0x175c [ 2834415C4EDD6CE35CB3CFEC50E08469, 28426616C709457DF38B5E2B4B9666C1255B81D2097589A95AAABD1BFACD302A ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
04:42:20.0682 0x175c StillCam - ok
04:42:20.0685 0x175c stisvc - ok
04:42:20.0688 0x175c storahci - ok
04:42:20.0692 0x175c storflt - ok
04:42:20.0695 0x175c stornvme - ok
04:42:20.0698 0x175c storqosflt - ok
04:42:20.0701 0x175c StorSvc - ok
04:42:20.0703 0x175c storufs - ok
04:42:20.0706 0x175c storvsc - ok
04:42:20.0710 0x175c svsvc - ok
04:42:20.0713 0x175c swenum - ok
04:42:20.0715 0x175c swprv - ok
04:42:20.0837 0x175c [ 06A5A15C89E5F2C08D0C595C1DA776AF, EEFC5803E3C76115DF24B00A4BD6F3196D6CD87049802EF58BE6CF2CCB758FBF ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
04:42:20.0944 0x175c syncagentsrv - ok
04:42:20.0955 0x175c Synth3dVsc - ok
04:42:20.0958 0x175c SysMain - ok
04:42:20.0961 0x175c SystemEventsBroker - ok
04:42:20.0964 0x175c TabletInputService - ok
04:42:20.0968 0x175c TapiSrv - ok
04:42:20.0971 0x175c Tcpip - ok
04:42:20.0973 0x175c Tcpip6 - ok
04:42:20.0978 0x175c tcpipreg - ok
04:42:20.0982 0x175c tdx - ok
04:42:21.0082 0x175c [ 8305FB462C325A67628E0556DF244B8B, 4ABD5D14E64BE07DD9332E39C3B902A40BD1E763A075F68F0048A7FAEB3019D5 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
04:42:21.0356 0x175c TeamViewer - ok
04:42:21.0366 0x175c [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys
04:42:21.0368 0x175c teamviewervpn - ok
04:42:21.0371 0x175c terminpt - ok
04:42:21.0374 0x175c TermService - ok
04:42:21.0377 0x175c Themes - ok
04:42:21.0398 0x175c [ AEEEB1EE424A8D6F17B3A6461E0FC7E6, 3A5FD27DF6132E84DC03366FB684B31A454C0805A5E4EA0C67B0CE85FF446B93 ] tib C:\WINDOWS\system32\DRIVERS\tib.sys
04:42:21.0432 0x175c tib - ok
04:42:21.0441 0x175c [ 3813F93D8A69EDE68913CC3050640FE3, 4931BC6DA6FD0808C985CD6202FB759F6B8DE8957FB44E6AD8844EA58C891AC1 ] tib_mounter C:\WINDOWS\system32\DRIVERS\tib_mounter.sys
04:42:21.0459 0x175c tib_mounter - ok
04:42:21.0462 0x175c TieringEngineService - ok
04:42:21.0464 0x175c tiledatamodelsvc - ok
04:42:21.0467 0x175c TimeBroker - ok
04:42:21.0470 0x175c TPM - ok
04:42:21.0473 0x175c TrkWks - ok
04:42:21.0476 0x175c TrustedInstaller - ok
04:42:21.0480 0x175c tsusbflt - ok
04:42:21.0483 0x175c TsUsbGD - ok
04:42:21.0486 0x175c tunnel - ok
04:42:21.0489 0x175c tzautoupdate - ok
04:42:21.0491 0x175c uagp35 - ok
04:42:21.0494 0x175c UASPStor - ok
04:42:21.0497 0x175c UcmCx0101 - ok
04:42:21.0500 0x175c UcmUcsi - ok
04:42:21.0503 0x175c Ucx01000 - ok
04:42:21.0506 0x175c UdeCx - ok
04:42:21.0509 0x175c udfs - ok
04:42:21.0512 0x175c UEFI - ok
04:42:21.0515 0x175c Ufx01000 - ok
04:42:21.0518 0x175c UfxChipidea - ok
04:42:21.0522 0x175c ufxsynopsys - ok
04:42:21.0527 0x175c UI0Detect - ok
04:42:21.0530 0x175c uliagpkx - ok
04:42:21.0533 0x175c umbus - ok
04:42:21.0535 0x175c UmPass - ok
04:42:21.0539 0x175c UmRdpService - ok
04:42:21.0542 0x175c UnistoreSvc - ok
04:42:21.0552 0x175c upnphost - ok
04:42:21.0555 0x175c UrsChipidea - ok
04:42:21.0559 0x175c UrsCx01000 - ok
04:42:21.0562 0x175c UrsSynopsys - ok
04:42:21.0566 0x175c [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
04:42:21.0581 0x175c USBAAPL64 - ok
04:42:21.0584 0x175c usbccgp - ok
04:42:21.0587 0x175c usbcir - ok
04:42:21.0590 0x175c usbehci - ok
04:42:21.0593 0x175c usbhub - ok
04:42:21.0596 0x175c USBHUB3 - ok
04:42:21.0599 0x175c usbohci - ok
04:42:21.0602 0x175c usbprint - ok
04:42:21.0605 0x175c usbser - ok
04:42:21.0607 0x175c USBSTOR - ok
04:42:21.0610 0x175c usbuhci - ok
04:42:21.0613 0x175c USBXHCI - ok
04:42:21.0616 0x175c UserDataSvc - ok
04:42:21.0626 0x175c UserManager - ok
04:42:21.0629 0x175c UsoSvc - ok
04:42:21.0632 0x175c VaultSvc - ok
04:42:21.0634 0x175c vdrvroot - ok
04:42:21.0638 0x175c vds - ok
04:42:21.0640 0x175c VerifierExt - ok
04:42:21.0644 0x175c vhdmp - ok
04:42:21.0646 0x175c vhf - ok
04:42:21.0650 0x175c vmbus - ok
04:42:21.0653 0x175c VMBusHID - ok
04:42:21.0656 0x175c vmicguestinterface - ok
04:42:21.0659 0x175c vmicheartbeat - ok
04:42:21.0662 0x175c vmickvpexchange - ok
04:42:21.0666 0x175c vmicrdv - ok
04:42:21.0669 0x175c vmicshutdown - ok
04:42:21.0673 0x175c vmictimesync - ok
04:42:21.0676 0x175c vmicvmsession - ok
04:42:21.0679 0x175c vmicvss - ok
04:42:21.0683 0x175c volmgr - ok
04:42:21.0686 0x175c volmgrx - ok
04:42:21.0689 0x175c volsnap - ok
04:42:21.0694 0x175c vpci - ok
04:42:21.0697 0x175c vsmraid - ok
04:42:21.0700 0x175c VSS - ok
04:42:21.0703 0x175c VSTXRAID - ok
04:42:21.0707 0x175c vwifibus - ok
04:42:21.0710 0x175c vwififlt - ok
04:42:21.0713 0x175c W32Time - ok
04:42:21.0717 0x175c WacomPen - ok
04:42:21.0720 0x175c WalletService - ok
04:42:21.0722 0x175c wanarp - ok
04:42:21.0725 0x175c wanarpv6 - ok
04:42:21.0729 0x175c wbengine - ok
04:42:21.0732 0x175c WbioSrvc - ok
04:42:21.0735 0x175c Wcmsvc - ok
04:42:21.0739 0x175c wcncsvc - ok
04:42:21.0742 0x175c WcsPlugInService - ok
04:42:21.0745 0x175c WdBoot - ok
04:42:21.0748 0x175c Wdf01000 - ok
04:42:21.0752 0x175c WdFilter - ok
04:42:21.0755 0x175c WdiServiceHost - ok
04:42:21.0758 0x175c WdiSystemHost - ok
04:42:21.0761 0x175c wdiwifi - ok
04:42:21.0764 0x175c WdNisDrv - ok
04:42:21.0767 0x175c WdNisSvc - ok
04:42:21.0771 0x175c WebClient - ok
04:42:21.0774 0x175c Wecsvc - ok
04:42:21.0777 0x175c WEPHOSTSVC - ok
04:42:21.0780 0x175c wercplsupport - ok
04:42:21.0784 0x175c WerSvc - ok
04:42:21.0787 0x175c WFPLWFS - ok
04:42:21.0791 0x175c WiaRpc - ok
04:42:21.0794 0x175c WIMMount - ok
04:42:21.0796 0x175c WinDefend - ok
04:42:21.0803 0x175c WindowsTrustedRT - ok
04:42:21.0806 0x175c WindowsTrustedRTProxy - ok
04:42:21.0809 0x175c WinHttpAutoProxySvc - ok
04:42:21.0812 0x175c WinMad - ok
04:42:21.0819 0x175c Winmgmt - ok
04:42:21.0822 0x175c WinRM - ok
04:42:21.0828 0x175c Winstep Xtreme Service - ok
04:42:21.0831 0x175c WINUSB - ok
04:42:21.0835 0x175c WinVerbs - ok
04:42:21.0848 0x175c [ A7C993F86BE5AF035DE06DF9160D7008, 9890293AD584C846C5F2444BEF8E6130C6EE450EFF0387FCECDE056CD7D0C02C ] WiseBootAssistant C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
04:42:22.0015 0x175c WiseBootAssistant - ok
04:42:22.0020 0x175c [ F2DA528D38516EA3DCB065B8C9E2203F, 662F25DDD6B6468F85177F8CE3D5604F295FE0B33FE6DED07BD5847442153EE3 ] WiseTDIFw C:\Windows\WiseTDIFw64.sys
04:42:22.0040 0x175c WiseTDIFw - ok
04:42:22.0044 0x175c WlanSvc - ok
04:42:22.0047 0x175c wlidsvc - ok
04:42:22.0050 0x175c [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum C:\WINDOWS\system32\drivers\WmBEnum.sys
04:42:22.0052 0x175c WmBEnum - ok
04:42:22.0056 0x175c [ 14C35BA8189C6F65D839163AA285E954, 8981AA488320C75E26E1ABDF884B721A4065F5D28F54782598B03F21B8CDC020 ] WmFilter C:\WINDOWS\system32\drivers\WmFilter.sys
04:42:22.0058 0x175c WmFilter - ok
04:42:22.0061 0x175c WmiAcpi - ok
04:42:22.0065 0x175c wmiApSrv - ok
04:42:22.0068 0x175c WMPNetworkSvc - ok
04:42:22.0072 0x175c [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore C:\WINDOWS\system32\drivers\WmXlCore.sys
04:42:22.0075 0x175c WmXlCore - ok
04:42:22.0082 0x175c [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof C:\WINDOWS\system32\drivers\Wof.sys
04:42:22.0086 0x175c Wof - ok
04:42:22.0091 0x175c workfolderssvc - ok
04:42:22.0094 0x175c wpcfltr - ok
04:42:22.0097 0x175c WPDBusEnum - ok
04:42:22.0100 0x175c WpdUpFltr - ok
04:42:22.0103 0x175c WpnService - ok
04:42:22.0106 0x175c ws2ifsl - ok
04:42:22.0109 0x175c wscsvc - ok
04:42:22.0112 0x175c WSDPrintDevice - ok
04:42:22.0116 0x175c WSearch - ok
04:42:22.0120 0x175c WSService - ok
04:42:22.0124 0x175c wuauserv - ok
04:42:22.0126 0x175c WudfPf - ok
04:42:22.0130 0x175c WUDFRd - ok
04:42:22.0134 0x175c wudfsvc - ok
04:42:22.0136 0x175c WUDFWpdFs - ok
04:42:22.0140 0x175c WUDFWpdMtp - ok
04:42:22.0143 0x175c WwanSvc - ok
04:42:22.0146 0x175c XblAuthManager - ok
04:42:22.0150 0x175c XblGameSave - ok
04:42:22.0153 0x175c xboxgip - ok
04:42:22.0157 0x175c XboxNetApiSvc - ok
04:42:22.0160 0x175c xinputhid - ok
04:42:22.0166 0x175c [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\WINDOWS\system32\DRIVERS\xusb21.sys
04:42:22.0169 0x175c xusb21 - ok
04:42:22.0172 0x175c xusb22 - ok
04:42:22.0172 0x175c ================ Scan global ===============================
04:42:22.0184 0x175c [ Global ] - ok
04:42:22.0184 0x175c ================ Scan MBR ==================================
04:42:22.0199 0x175c [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
04:42:22.0209 0x175c \Device\Harddisk0\DR0 - ok
04:42:22.0211 0x175c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
04:42:22.0311 0x175c \Device\Harddisk1\DR1 - ok
04:42:22.0313 0x175c [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2
04:42:22.0400 0x175c \Device\Harddisk2\DR2 - ok
04:42:22.0400 0x175c ================ Scan VBR ==================================
04:42:22.0402 0x175c [ ABF04A6BA467B3CB264D7917A766EC71 ] \Device\Harddisk0\DR0\Partition1
04:42:22.0466 0x175c \Device\Harddisk0\DR0\Partition1 - ok
04:42:22.0468 0x175c [ 7B21D2C46022CA576307A51A7153D5C3 ] \Device\Harddisk1\DR1\Partition1
04:42:22.0469 0x175c \Device\Harddisk1\DR1\Partition1 - ok
04:42:22.0471 0x175c [ C68EEA91898F3034AD0926E331E3D8EC ] \Device\Harddisk2\DR2\Partition1
04:42:22.0520 0x175c \Device\Harddisk2\DR2\Partition1 - ok
04:42:22.0520 0x175c ================ Scan generic autorun ======================
04:42:22.0675 0x175c [ 30264853A73D5C930DFF05F526C05718, B7454F4828BF6E39B2F5D46CBBB40C4DDB767784FD5A3010E6DC306C3BB36B64 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
04:42:22.0790 0x19f8 Object send P2P result: true
04:42:22.0790 0x19f8 Object required for P2P: [ 3CBE5047BB08BD363420D68364F9E829 ] AntiVirService
04:42:22.0807 0x175c RTHDVCPL - ok
04:42:22.0827 0x175c [ F06F76C6D57022CF30D5B8853A8D873D, 4F373451A9D8CD16D2B4B339C730531936A993BDC819703C737E53384B79A289 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
04:42:22.0866 0x175c Acronis Scheduler2 Service - ok
04:42:22.0916 0x175c [ 6BE70A935DFD72F47C29757305B50B1E, 6E76D7CA8C417750C2AFAD45344F5863CEA7798A2993716E21DE1997789D1746 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
04:42:22.0952 0x175c NvBackend - ok
04:42:22.0980 0x175c OneDriveSetup - ok
04:42:22.0983 0x175c OneDriveSetup - ok
04:42:23.0302 0x175c [ 50E1118882643FBEFB7B9C28BC89F098, 1DAD598BF595019CC090B4C8BABB2E1017EE832D5815C4797533DEB0BAF59B72 ] C:\Program Files (x86)\Winstep\Nexus.exe
04:42:23.0508 0x175c NeXuS - ok
04:42:23.0524 0x175c GoogleDriveSync - ok
04:42:23.0553 0x175c [ 64A9C234D0EC8AB1A87C46C4F9BB5075, BA1A8EB97460B532B506304124C30CEC344C9917A972D6804DF4CDF5946C9A51 ] C:\Program Files\Windows Sidebar\sidebar.exe
04:42:23.0572 0x175c Sidebar - ok
04:42:23.0701 0x175c [ D521CE4130B2C4E689A4CD5C23CE69BE, AC1B14DEAD8E2A614693E784335D4C367740B1836A7255A197DA276CC51A3F7F ] C:\Windows\tray\wintmr.exe
04:42:23.0803 0x175c CCWinTray - ok
04:42:23.0857 0x175c [ A1BAEE2F2AA71318D08A81EB1AE60F1F, 8CEE7310553205E2047B2168CA7C578FBD80B403D644EC3E2DE7E4CECC9717FC ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:42:23.0888 0x175c Spotify Web Helper - ok
04:42:23.0892 0x175c Skype - ok
04:42:23.0895 0x175c Skype - ok
04:42:24.0051 0x175c [ 40335C8877B6B84842AF03A40E1BB206, 33433ED8961B1AEEBD30F8DD53A541C711C403D019F1074406FF9C9D1E9F4113 ] C:\Program Files\CCleaner\CCleaner64.exe
04:42:24.0244 0x175c CCleaner Monitoring - ok
04:42:24.0266 0x175c [ 9F2ECA252720B25E8FEC1CAB2984B98D, 476EE2929901CD43F15869B763376393AA0942A3B934532055E037C6DCE3CD2D ] C:\Users\****\AppData\Local\Microsoft\OneDrive\OneDrive.exe
04:42:24.0276 0x175c OneDrive - ok
04:42:24.0322 0x175c [ 8D33759428539564CBF7008CA9FC5DA8, 5AC7B7554C21EC9A3D763E8E109549CF8999E4C04F2460F2DB56B0D84051D9B9 ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:42:24.0476 0x175c Spotify Web Helper - ok
04:42:24.0490 0x175c [ 2010CA459E5EC8F9D5FC8B000D130294, 058FF215A3AAD04F2A4CF23B2CC62A5EA28F5A705EFA689DCE9126720CF33229 ] C:\Users\****\AppData\Local\Microsoft\OneDrive\OneDrive.exe
04:42:24.0500 0x175c OneDrive - ok
04:42:24.0655 0x175c [ 7A75780AF331526FCA6C0BDB503EFD3F, 1C94B57557F629B8692D0544C3A61860FD932DAA803E8F03BE8BF7319286BB37 ] C:\Users\****\AppData\Roaming\Spotify\Spotify.exe
04:42:25.0201 0x19f8 Object send P2P result: true
04:42:25.0201 0x19f8 Object required for P2P: [ CAA9D66CA6D21AF0AE7DA01D5AC6CC2F ] AntiVirWebService
04:42:27.0629 0x19f8 Object send P2P result: true
04:42:27.0630 0x19f8 Object required for P2P: [ 4764D299855174D6B5C7DA853B490029 ] avipbb
04:42:28.0130 0x175c Spotify - ok
04:42:28.0189 0x175c Uninstall C:\Users\****\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64 - ok
04:42:28.0215 0x175c OneDriveSetup - ok
04:42:28.0216 0x175c WAB Migrate - ok
04:42:28.0217 0x175c Waiting for KSN requests completion. In queue: 67
04:42:29.0218 0x175c Waiting for KSN requests completion. In queue: 67
04:42:30.0040 0x19f8 Object send P2P result: true
04:42:30.0040 0x19f8 Object required for P2P: [ 2027E82463B6F6BB4D2A5BAF09202BA8 ] Avira.ServiceHost
04:42:30.0219 0x175c Waiting for KSN requests completion. In queue: 66
04:42:30.0221 0x0d08 Object required for P2P: [ 44C787E5661B40B78D59E0EB8B73C412 ] nvsvc
04:42:30.0529 0x0bb0 Object required for P2P: [ 7A75780AF331526FCA6C0BDB503EFD3F ] C:\Users\****\AppData\Roaming\Spotify\Spotify.exe
04:42:31.0219 0x175c Waiting for KSN requests completion. In queue: 58
04:42:32.0220 0x175c Waiting for KSN requests completion. In queue: 58
04:42:32.0453 0x19f8 Object send P2P result: true
04:42:32.0453 0x19f8 Object required for P2P: [ E477AF94ACCCF99A0E56D71D450DCCCB ] avnetflt
04:42:32.0622 0x0d08 Object send P2P result: true
04:42:32.0622 0x0d08 Object required for P2P: [ F34655869378762CEEF159E82BE95C3E ] Origin Client Service
04:42:32.0956 0x0bb0 Object send P2P result: true
04:42:33.0220 0x175c Waiting for KSN requests completion. In queue: 52
04:42:34.0221 0x175c Waiting for KSN requests completion. In queue: 52
04:42:34.0856 0x19f8 Object send P2P result: true
04:42:35.0034 0x0d08 Object send P2P result: true
04:42:35.0037 0x0d08 Object required for P2P: [ 8305FB462C325A67628E0556DF244B8B ] TeamViewer
04:42:35.0221 0x175c Waiting for KSN requests completion. In queue: 23
04:42:36.0222 0x175c Waiting for KSN requests completion. In queue: 23
04:42:37.0223 0x175c Waiting for KSN requests completion. In queue: 23
04:42:37.0463 0x0d08 Object send P2P result: true
04:42:37.0465 0x0d08 Object required for P2P: [ A1BAEE2F2AA71318D08A81EB1AE60F1F ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:42:38.0224 0x175c Waiting for KSN requests completion. In queue: 5
04:42:39.0225 0x175c Waiting for KSN requests completion. In queue: 5
04:42:39.0869 0x0d08 Object send P2P result: true
04:42:39.0869 0x0d08 Object required for P2P: [ 8D33759428539564CBF7008CA9FC5DA8 ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:42:40.0226 0x175c Waiting for KSN requests completion. In queue: 2
04:42:41.0226 0x175c Waiting for KSN requests completion. In queue: 2
04:42:42.0228 0x175c Waiting for KSN requests completion. In queue: 2
04:42:42.0274 0x0d08 Object send P2P result: true
04:42:42.0275 0x0d08 Object required for P2P: [ 2010CA459E5EC8F9D5FC8B000D130294 ] C:\Users\****\AppData\Local\Microsoft\OneDrive\OneDrive.exe
04:42:43.0228 0x175c Waiting for KSN requests completion. In queue: 1
04:42:44.0229 0x175c Waiting for KSN requests completion. In queue: 1
04:42:44.0689 0x0d08 Object send P2P result: true
04:42:45.0239 0x175c AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.15.106 ), 0x40000 ( disabled : updated )
04:42:45.0253 0x175c AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x61100 ( enabled : updated )
04:42:45.0264 0x175c Win FW state via NFP2: enabled ( trusted )
04:42:47.0620 0x175c ============================================================
04:42:47.0620 0x175c Scan finished
04:42:47.0620 0x175c ============================================================
04:42:47.0626 0x2360 Detected object count: 0
04:42:47.0626 0x2360 Actual detected object count: 0
04:43:04.0128 0x073c ============================================================
04:43:04.0128 0x073c Scan started
04:43:04.0128 0x073c Mode: Manual; TDLFS;
04:43:04.0128 0x073c ============================================================
04:43:04.0128 0x073c KSN ping started
04:43:06.0418 0x073c KSN ping finished: true
04:43:07.0039 0x073c ================ Scan system memory ========================
04:43:07.0039 0x073c System memory - ok
04:43:07.0039 0x073c ================ Scan services =============================
04:43:07.0093 0x073c 1394ohci - ok
04:43:07.0095 0x073c 3ware - ok
04:43:07.0098 0x073c ACPI - ok
04:43:07.0102 0x073c acpiex - ok
04:43:07.0104 0x073c acpipagr - ok
04:43:07.0107 0x073c AcpiPmi - ok
04:43:07.0110 0x073c acpitime - ok
04:43:07.0137 0x073c [ 8EEC0269D86CFADD292C9B05F59F23ED, 779F863563F9F31B102EB7A7C1580281D73F083213B0DD17A82A9EF2886DFD79 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
04:43:07.0153 0x073c AcrSch2Svc - ok
04:43:07.0159 0x073c [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
04:43:07.0161 0x073c AdobeARMservice - ok
04:43:07.0191 0x073c [ F54564025D2284AE498E51D7C139F971, AAA48F38B81DB894854E8C84DB2E1F5C8447AA982D27C0BB78FF2786D9F80F83 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
04:43:07.0195 0x073c AdobeFlashPlayerUpdateSvc - ok
04:43:07.0200 0x073c ADP80XX - ok
04:43:07.0275 0x073c [ 3B0908381A28DEFD42F42DBA9F06D39B, 3179AC9F26338D684CB806F29CD37EA75BE7F4553834F682E65ECE6D6D797FD4 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
04:43:07.0324 0x073c afcdpsrv - ok
04:43:07.0333 0x073c AFD - ok
04:43:07.0336 0x073c agp440 - ok
04:43:07.0339 0x073c ahcache - ok
04:43:07.0341 0x073c AJRouter - ok
04:43:07.0344 0x073c ALG - ok
04:43:07.0347 0x073c AmdK8 - ok
04:43:07.0350 0x073c AmdPPM - ok
04:43:07.0353 0x073c amdsata - ok
04:43:07.0356 0x073c amdsbs - ok
04:43:07.0359 0x073c amdxata - ok
04:43:07.0387 0x073c [ 81E02299B534F61E104C1235519C37B3, B389458C13A0E0717365B7CE371A6B768EB2F98C4CDBAA6DCBBBDE3A2B1D8B14 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
04:43:07.0399 0x073c AntiVirMailService - ok
04:43:07.0400 0x073c Object required for P2P: [ 81E02299B534F61E104C1235519C37B3 ] AntiVirMailService
04:43:09.0816 0x073c Object send P2P result: true
04:43:09.0827 0x073c [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
04:43:09.0833 0x073c AntiVirSchedulerService - ok
04:43:09.0833 0x073c Object required for P2P: [ 3CBE5047BB08BD363420D68364F9E829 ] AntiVirSchedulerService
04:43:12.0234 0x073c Object send P2P result: true
04:43:12.0245 0x073c [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
04:43:12.0251 0x073c AntiVirService - ok
04:43:12.0251 0x073c Object required for P2P: [ 3CBE5047BB08BD363420D68364F9E829 ] AntiVirService
04:43:14.0649 0x073c Object send P2P result: true
04:43:14.0702 0x073c [ CAA9D66CA6D21AF0AE7DA01D5AC6CC2F, 827400CFB53026757B3D75B6C5AC7BBECE7E62B335160C18CBF6A41047F4A400 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
04:43:14.0720 0x073c AntiVirWebService - ok
04:43:14.0721 0x073c Object required for P2P: [ CAA9D66CA6D21AF0AE7DA01D5AC6CC2F ] AntiVirWebService
04:43:17.0137 0x073c Object send P2P result: true
04:43:17.0140 0x073c AppID - ok
04:43:17.0145 0x073c AppIDSvc - ok
04:43:17.0148 0x073c Appinfo - ok
04:43:17.0161 0x073c [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
04:43:17.0162 0x073c Apple Mobile Device Service - ok
04:43:17.0169 0x073c AppMgmt - ok
04:43:17.0174 0x073c AppReadiness - ok
04:43:17.0179 0x073c AppXSvc - ok
04:43:17.0182 0x073c arcsas - ok
04:43:17.0189 0x073c [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
04:43:17.0190 0x073c aswHwid - ok
04:43:17.0193 0x073c AsyncMac - ok
04:43:17.0198 0x073c atapi - ok
04:43:17.0203 0x073c AudioEndpointBuilder - ok
04:43:17.0207 0x073c Audiosrv - ok
04:43:17.0219 0x073c [ CF233C89DEFF6BCA1F65BE3DA0C1A306, B718A59CFC0E3A9ED4E8C690390F54C96828C5A4C2790C2E98075DB4484240D6 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
04:43:17.0221 0x073c avgntflt - ok
04:43:17.0234 0x073c [ 4764D299855174D6B5C7DA853B490029, 6E2C8E25DC3C38EEAAA1221E515AC06C2EDC0A71CF2F7762E8DFCC55938D59B3 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
04:43:17.0236 0x073c avipbb - ok
04:43:17.0236 0x073c Object required for P2P: [ 4764D299855174D6B5C7DA853B490029 ] avipbb
04:43:19.0639 0x073c Object send P2P result: true
04:43:19.0657 0x073c [ 2027E82463B6F6BB4D2A5BAF09202BA8, 7E61DEAC45F710F62C388177B43D99F3C39B89CEFCEFCC581DF12201C8CDB23C ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
04:43:19.0661 0x073c Avira.ServiceHost - ok
04:43:19.0661 0x073c Object required for P2P: [ 2027E82463B6F6BB4D2A5BAF09202BA8 ] Avira.ServiceHost
04:43:22.0069 0x073c Object send P2P result: true
04:43:22.0073 0x073c [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
04:43:22.0074 0x073c avkmgr - ok
04:43:22.0078 0x073c [ E477AF94ACCCF99A0E56D71D450DCCCB, C97756A4E82EC7EF8268967B10DEBAAEDB746B2846CA2BFD68E1B7DBBAE7901A ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
04:43:22.0079 0x073c avnetflt - ok
04:43:22.0080 0x073c Object required for P2P: [ E477AF94ACCCF99A0E56D71D450DCCCB ] avnetflt
04:43:24.0486 0x073c Object send P2P result: true
04:43:24.0490 0x073c AxInstSV - ok
04:43:24.0492 0x073c b06bdrv - ok
04:43:24.0495 0x073c BasicDisplay - ok
04:43:24.0498 0x073c BasicRender - ok
04:43:24.0502 0x073c bcmfn - ok
04:43:24.0504 0x073c bcmfn2 - ok
04:43:24.0507 0x073c BDESVC - ok
04:43:24.0509 0x073c Beep - ok
04:43:24.0512 0x073c BFE - ok
04:43:24.0514 0x073c BITS - ok
04:43:24.0524 0x073c [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
04:43:24.0531 0x073c Bonjour Service - ok
04:43:24.0535 0x073c bowser - ok
04:43:24.0537 0x073c BrokerInfrastructure - ok
04:43:24.0539 0x073c Browser - ok
04:43:24.0542 0x073c BthAvrcpTg - ok
04:43:24.0544 0x073c BthEnum - ok
04:43:24.0547 0x073c BthHFEnum - ok
04:43:24.0550 0x073c bthhfhid - ok
04:43:24.0553 0x073c BthHFSrv - ok
04:43:24.0555 0x073c BTHMODEM - ok
04:43:24.0557 0x073c BthPan - ok
04:43:24.0560 0x073c BTHPORT - ok
04:43:24.0562 0x073c bthserv - ok
04:43:24.0565 0x073c BTHUSB - ok
04:43:24.0568 0x073c buttonconverter - ok
04:43:24.0596 0x073c [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
04:43:24.0614 0x073c c2cautoupdatesvc - ok
04:43:24.0648 0x073c [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
04:43:24.0670 0x073c c2cpnrsvc - ok
04:43:24.0675 0x073c CapImg - ok
04:43:24.0678 0x073c cdfs - ok
04:43:24.0681 0x073c CDPSvc - ok
04:43:24.0684 0x073c cdrom - ok
04:43:24.0686 0x073c CertPropSvc - ok
04:43:24.0689 0x073c circlass - ok
04:43:24.0692 0x073c CLFS - ok
04:43:24.0695 0x073c ClipSVC - ok
04:43:24.0702 0x073c CmBatt - ok
04:43:24.0705 0x073c CNG - ok
04:43:24.0707 0x073c cnghwassist - ok
04:43:24.0716 0x073c [ 81F2B52C47B8AD32CC4FF967FC8D73DA, 13D84B4096E0F9AB9D04F6CD9E9C0DE4B6DF6F11D63C797266D719FD2429A655 ] CompFilter64 C:\WINDOWS\System32\drivers\lvbflt64.sys
04:43:24.0717 0x073c CompFilter64 - ok
04:43:24.0734 0x073c CompositeBus - ok
04:43:24.0737 0x073c COMSysApp - ok
04:43:24.0739 0x073c condrv - ok
04:43:24.0742 0x073c CoreMessagingRegistrar - ok
04:43:24.0748 0x073c CryptSvc - ok
04:43:24.0751 0x073c CSC - ok
04:43:24.0753 0x073c CscService - ok
04:43:24.0755 0x073c dam - ok
04:43:24.0759 0x073c DcomLaunch - ok
04:43:24.0761 0x073c DcpSvc - ok
04:43:24.0763 0x073c defragsvc - ok
04:43:24.0766 0x073c DeviceAssociationService - ok
04:43:24.0769 0x073c DeviceInstall - ok
04:43:24.0835 0x073c [ 0B24043732807EE3AA25389356F4DE7C, 6A9A65B38968FF704C3938BEF5E6C1226447FF4F78997473B1694EA8D3D519DF ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
04:43:24.0882 0x073c DevoloNetworkService - ok
04:43:24.0890 0x073c DevQueryBroker - ok
04:43:24.0893 0x073c Dfsc - ok
04:43:24.0905 0x073c [ D51B32BA3897F630D99713B74B40D6A2, 5EB136A8248E6FA1316CFA273D9DC8F9C8E8CCB9AC00AE23C1337FBF5F6FDBEC ] DfSdkS C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\DfSdkS64.exe
04:43:24.0912 0x073c DfSdkS - ok
04:43:24.0918 0x073c [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
04:43:24.0920 0x073c dg_ssudbus - ok
04:43:24.0924 0x073c Dhcp - ok
04:43:24.0928 0x073c diagnosticshub.standardcollector.service - ok
04:43:24.0930 0x073c DiagTrack - ok
04:43:24.0933 0x073c disk - ok
04:43:24.0936 0x073c DmEnrollmentSvc - ok
04:43:24.0939 0x073c dmvsc - ok
04:43:24.0942 0x073c dmwappushservice - ok
04:43:24.0945 0x073c Dnscache - ok
04:43:24.0949 0x073c dot3svc - ok
04:43:24.0951 0x073c DPS - ok
04:43:24.0954 0x073c drmkaud - ok
04:43:24.0957 0x073c [ 2C3CED9C50C6FE3DF7C41BCFABB63307, EA302ABAFCA2A1F70C9723BB1F7457E80DF493D66C90D385C25F9E95DE44C4C0 ] DroidCam C:\WINDOWS\system32\DRIVERS\droidcam.sys
04:43:24.0957 0x073c DroidCam - ok
04:43:24.0965 0x073c [ B0A1D79628D07193EE240678824064FA, B89761F8B47B1811B50B409A9FC38C1939381C33DC351333FDC19ED5F0FAB49E ] DroidCamVideo C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys
04:43:24.0968 0x073c DroidCamVideo - ok
04:43:24.0971 0x073c DsmSvc - ok
04:43:24.0975 0x073c DsSvc - ok
04:43:24.0977 0x073c DXGKrnl - ok
04:43:24.0980 0x073c Eaphost - ok
04:43:24.0983 0x073c ebdrv - ok
04:43:24.0985 0x073c EFS - ok
04:43:24.0988 0x073c EhStorClass - ok
04:43:24.0991 0x073c EhStorTcgDrv - ok
04:43:24.0994 0x073c embeddedmode - ok
04:43:24.0996 0x073c EntAppSvc - ok
04:43:24.0999 0x073c ErrDev - ok
04:43:25.0004 0x073c EventSystem - ok
04:43:25.0006 0x073c exfat - ok
04:43:25.0009 0x073c fastfat - ok
04:43:25.0012 0x073c Fax - ok
04:43:25.0015 0x073c fdc - ok
04:43:25.0018 0x073c fdPHost - ok
04:43:25.0020 0x073c FDResPub - ok
04:43:25.0023 0x073c fhsvc - ok
04:43:25.0025 0x073c FileCrypt - ok
04:43:25.0027 0x073c FileInfo - ok
04:43:25.0030 0x073c Filetrace - ok
04:43:25.0037 0x073c [ 72CC30F0D6DF8D3FBD5CD728259A8F69, F7774D35B38F35E31A8EEE37FF2F203C1CED433FF84EC265CD92B38CBFE3AB8F ] file_tracker C:\WINDOWS\system32\DRIVERS\file_tracker.sys
04:43:25.0042 0x073c file_tracker - ok
04:43:25.0046 0x073c flpydisk - ok
04:43:25.0050 0x073c FltMgr - ok
04:43:25.0056 0x073c [ 9BD0273A5B650CC16E8A54AD9B312BEB, 1AA219C4CC29E8301075537A330CC7FB677CD884AABD8FB3D99CFBEA1AB4CDF2 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys
04:43:25.0058 0x073c fltsrv - ok
04:43:25.0061 0x073c FontCache - ok
04:43:25.0064 0x073c FontCache3.0.0.0 - ok
04:43:25.0067 0x073c FsDepends - ok
04:43:25.0070 0x073c Fs_Rec - ok
04:43:25.0072 0x073c fvevol - ok
04:43:25.0075 0x073c gagp30kx - ok
04:43:25.0078 0x073c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
04:43:25.0079 0x073c GEARAspiWDM - ok
04:43:25.0083 0x073c gencounter - ok
04:43:25.0086 0x073c genericusbfn - ok
04:43:25.0108 0x073c [ 21931B9C5FDE6087F47F710AC1BE16E9, A727A8922A9769AAC77F5D85ED3475853655E9483C8DA091653D0B1F3D479398 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
04:43:25.0123 0x073c GfExperienceService - ok
04:43:25.0127 0x073c GPIOClx0101 - ok
04:43:25.0130 0x073c gpsvc - ok
04:43:25.0132 0x073c GpuEnergyDrv - ok
04:43:25.0136 0x073c [ 0636745A40DEA06283D45885C228AF01, 514EF6F912CB9BF552AE109739BC02A2BC46B4784C65BC3C0B03DB6F60BBF380 ] GUBootStartup C:\Windows\System32\drivers\GUBootStartup.sys
04:43:25.0136 0x073c GUBootStartup - ok
04:43:25.0142 0x073c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:43:25.0144 0x073c gupdate - ok
04:43:25.0148 0x073c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:43:25.0150 0x073c gupdatem - ok
04:43:25.0156 0x073c [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
04:43:25.0159 0x073c gusvc - ok
04:43:25.0162 0x073c HDAudBus - ok
04:43:25.0165 0x073c HidBatt - ok
04:43:25.0168 0x073c HidBth - ok
04:43:25.0170 0x073c hidi2c - ok
04:43:25.0173 0x073c hidinterrupt - ok
04:43:25.0176 0x073c HidIr - ok
04:43:25.0178 0x073c hidserv - ok
04:43:25.0181 0x073c HidUsb - ok
04:43:25.0184 0x073c HomeGroupListener - ok
04:43:25.0187 0x073c HomeGroupProvider - ok
04:43:25.0189 0x073c HpSAMD - ok
04:43:25.0192 0x073c [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64 C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
04:43:25.0193 0x073c HTCAND64 - ok
04:43:25.0197 0x073c [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot C:\WINDOWS\system32\DRIVERS\htcnprot.sys
04:43:25.0198 0x073c htcnprot - ok
04:43:25.0200 0x073c HTTP - ok
04:43:25.0225 0x073c [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS
04:43:25.0225 0x073c HWiNFO32 - ok
04:43:25.0228 0x073c hwpolicy - ok
04:43:25.0231 0x073c hyperkbd - ok
04:43:25.0234 0x073c i8042prt - ok
04:43:25.0236 0x073c iai2c - ok
04:43:25.0239 0x073c iaLPSS2i_I2C - ok
04:43:25.0241 0x073c iaLPSSi_GPIO - ok
04:43:25.0244 0x073c iaLPSSi_I2C - ok
04:43:25.0257 0x073c [ 25555186E4FBDF0E30A5DBFC9B9A73F9, 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
04:43:25.0265 0x073c iaStorA - ok
04:43:25.0269 0x073c iaStorAV - ok
04:43:25.0273 0x073c [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
04:43:25.0273 0x073c IAStorDataMgrSvc - ok
04:43:25.0276 0x073c iaStorV - ok
04:43:25.0278 0x073c ibbus - ok
04:43:25.0284 0x073c [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
04:43:25.0286 0x073c ICCS - ok
04:43:25.0290 0x073c icssvc - ok
04:43:25.0293 0x073c IEEtwCollectorService - ok
04:43:25.0295 0x073c IKEEXT - ok
04:43:25.0379 0x073c [ 71EDE424B930F50B46C684D71C1C1CDE, 932E18114563E652DE0B64ECC6CDABE7144D5EF7BB065A7B4ACFB020B89D1BE7 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
04:43:25.0437 0x073c IntcAzAudAddService - ok
04:43:25.0458 0x073c [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
04:43:25.0468 0x073c Intel(R) Capability Licensing Service Interface - ok
04:43:25.0485 0x073c [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
04:43:25.0495 0x073c Intel(R) Capability Licensing Service TCP IP Interface - ok
04:43:25.0499 0x073c intelide - ok
04:43:25.0501 0x073c intelpep - ok
04:43:25.0504 0x073c intelppm - ok
04:43:25.0506 0x073c IoQos - ok
04:43:25.0509 0x073c IpFilterDriver - ok
04:43:25.0511 0x073c iphlpsvc - ok
04:43:25.0514 0x073c IPMIDRV - ok
04:43:25.0516 0x073c IPNAT - ok
04:43:25.0529 0x073c [ 043A93A498B3C4A88CACA3BCBC9B54C7, C08C5A03940806C6CB75ADDCBE6183145AD2AFE84D77BC85E620E7C1542F0893 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
04:43:25.0538 0x073c iPod Service - ok
04:43:25.0541 0x073c IRENUM - ok
04:43:25.0544 0x073c isapnp - ok
04:43:25.0546 0x073c iScsiPrt - ok
04:43:25.0552 0x073c [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
04:43:25.0554 0x073c jhi_service - ok
04:43:25.0557 0x073c kbdclass - ok
04:43:25.0560 0x073c kbdhid - ok
04:43:25.0562 0x073c kdnic - ok
04:43:25.0565 0x073c KeyIso - ok
04:43:25.0567 0x073c KSecDD - ok
04:43:25.0569 0x073c KSecPkg - ok
04:43:25.0572 0x073c ksthunk - ok
04:43:25.0595 0x073c [ D1C2E109284976A3DFE768E8E1268101, FDBFC98EBF33237BC0FFD6CC125F8BD937C271BC50529214C44E2B1AC04AF0D9 ] ksupmgr C:\Windows\SysWOW64\ksupmgr.exe
04:43:25.0612 0x073c ksupmgr - ok
04:43:25.0617 0x073c KtmRm - ok
04:43:25.0619 0x073c LanmanServer - ok
04:43:25.0622 0x073c LanmanWorkstation - ok
04:43:25.0625 0x073c lfsvc - ok
04:43:25.0628 0x073c LicenseManager - ok
04:43:25.0681 0x073c [ 5100AE7C075C9436E9DD45F96A4A74FC, 1301B7DABAEBBF3134C459BE2DC359BC2CAF6AA59C86A1030D0B28CAFA950F5B ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
04:43:25.0718 0x073c LiveUpdateSvc - ok
04:43:25.0724 0x073c lltdio - ok
04:43:25.0727 0x073c lltdsvc - ok
04:43:25.0730 0x073c lmhosts - ok
04:43:25.0739 0x073c [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
04:43:25.0744 0x073c LMS - ok
04:43:25.0749 0x073c LSI_SAS - ok
04:43:25.0751 0x073c LSI_SAS2i - ok
04:43:25.0754 0x073c LSI_SAS3i - ok
04:43:25.0756 0x073c LSI_SSS - ok
04:43:25.0759 0x073c LSM - ok
04:43:25.0761 0x073c luafv - ok
04:43:25.0770 0x073c [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64 C:\WINDOWS\system32\DRIVERS\lvrs64.sys
04:43:25.0775 0x073c LVRS64 - ok
04:43:25.0861 0x073c [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys
04:43:25.0923 0x073c LVUVC64 - ok
04:43:25.0932 0x073c MapsBroker - ok
04:43:25.0936 0x073c [ D7F57860E779B84AB982E8F4F23E30D1, 118E98F8999A2CBA469FBFF8C776BFC9D92D0445AE30060EA4028731224C68B8 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
04:43:25.0937 0x073c massfilter_hs - ok
04:43:25.0946 0x073c [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
04:43:25.0948 0x073c MBAMSwissArmy - ok
04:43:25.0951 0x073c megasas - ok
04:43:25.0954 0x073c megasr - ok
04:43:25.0960 0x073c [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
04:43:25.0963 0x073c MEIx64 - ok
04:43:25.0967 0x073c MessagingService - ok
04:43:25.0980 0x073c [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
04:43:25.0981 0x073c Microsoft Office Groove Audit Service - ok
04:43:25.0984 0x073c mlx4_bus - ok
04:43:25.0987 0x073c MMCSS - ok
04:43:25.0990 0x073c Modem - ok
04:43:25.0993 0x073c monitor - ok
04:43:25.0996 0x073c mouclass - ok
04:43:25.0999 0x073c mouhid - ok
04:43:26.0002 0x073c mountmgr - ok
04:43:26.0007 0x073c [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
04:43:26.0009 0x073c MozillaMaintenance - ok
04:43:26.0012 0x073c mpsdrv - ok
04:43:26.0015 0x073c MpsSvc - ok
04:43:26.0018 0x073c MRxDAV - ok
04:43:26.0021 0x073c mrxsmb - ok
04:43:26.0024 0x073c mrxsmb10 - ok
04:43:26.0028 0x073c mrxsmb20 - ok
04:43:26.0031 0x073c MsBridge - ok
04:43:26.0034 0x073c MSDTC - ok
04:43:26.0039 0x073c Msfs - ok
04:43:26.0043 0x073c msgpiowin32 - ok
04:43:26.0046 0x073c mshidkmdf - ok
04:43:26.0049 0x073c mshidumdf - ok
04:43:26.0052 0x073c msisadrv - ok
04:43:26.0056 0x073c MSiSCSI - ok
04:43:26.0058 0x073c msiserver - ok
04:43:26.0092 0x073c [ 591591EFF4B05FEC751148BA1FF8B595, 49516EAF3132DD8DB1D0C531E8106BCB585C64A3442A4C6660BE0135C0DC33EC ] MSI_LiveUpdate_Service C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
04:43:26.0114 0x073c MSI_LiveUpdate_Service - ok
04:43:26.0119 0x073c MSKSSRV - ok
04:43:26.0122 0x073c MsLldp - ok
04:43:26.0125 0x073c MSPCLOCK - ok
04:43:26.0129 0x073c MSPQM - ok
04:43:26.0132 0x073c MsRPC - ok
04:43:26.0137 0x073c mssmbios - ok
04:43:26.0140 0x073c MSTEE - ok
04:43:26.0144 0x073c MTConfig - ok
04:43:26.0147 0x073c Mup - ok
04:43:26.0151 0x073c mvumis - ok
04:43:26.0156 0x073c NativeWifiP - ok
04:43:26.0159 0x073c NcaSvc - ok
04:43:26.0162 0x073c NcbService - ok
04:43:26.0166 0x073c NcdAutoSetup - ok
04:43:26.0170 0x073c ndfltr - ok
04:43:26.0173 0x073c NDIS - ok
04:43:26.0176 0x073c NdisCap - ok
04:43:26.0179 0x073c NdisImPlatform - ok
04:43:26.0182 0x073c NdisTapi - ok
04:43:26.0185 0x073c Ndisuio - ok
04:43:26.0188 0x073c NdisVirtualBus - ok
04:43:26.0190 0x073c NdisWan - ok
04:43:26.0193 0x073c ndiswanlegacy - ok
04:43:26.0197 0x073c ndproxy - ok
04:43:26.0200 0x073c Ndu - ok
04:43:26.0203 0x073c NetBIOS - ok
04:43:26.0207 0x073c NetBT - ok
04:43:26.0210 0x073c Netlogon - ok
04:43:26.0213 0x073c Netman - ok
04:43:26.0216 0x073c netprofm - ok
04:43:26.0219 0x073c NetSetupSvc - ok
04:43:26.0225 0x073c NetTcpPortSharing - ok
04:43:26.0229 0x073c NgcCtnrSvc - ok
04:43:26.0232 0x073c NgcSvc - ok
04:43:26.0235 0x073c NlaSvc - ok
04:43:26.0261 0x073c [ 7AEA4DF1CA68FD45DD4BBE1F0243CE7F, 4CCE820F455512C41E4F98109FA6F048907DD3452D5A00D5F885C77F93C9C105 ] NMSAccess C:\WINDOWS\SysWOW64\NMSAccessU.exe
04:43:26.0265 0x073c NMSAccess - ok
04:43:26.0269 0x073c [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf C:\WINDOWS\system32\drivers\npf.sys
04:43:26.0270 0x073c npf - ok
04:43:26.0273 0x073c Npfs - ok
04:43:26.0277 0x073c [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys
04:43:26.0278 0x073c NPF_devolo - ok
04:43:26.0282 0x073c npsvctrig - ok
04:43:26.0285 0x073c nsi - ok
04:43:26.0287 0x073c nsiproxy - ok
04:43:26.0291 0x073c NTFS - ok
04:43:26.0297 0x073c [ 2DA209DDE8188076A9579BD256DC90D0, 984A77E5424C6D099051441005F2938AE92B31B5AD8F6521C6B001932862ADD7 ] NTIOLib_MSISMB_CC C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys
04:43:26.0297 0x073c NTIOLib_MSISMB_CC - ok
04:43:26.0301 0x073c Null - ok
04:43:26.0307 0x073c [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
04:43:26.0310 0x073c NVHDA - ok
04:43:26.0513 0x073c [ 4D1C57D613F277B432188A10DFF85C2C, 04F451468BBFB417F0214CCC1EB99F5F0DBD74A438845E2F4D10934681DD229A ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
04:43:26.0655 0x073c nvlddmkm - ok
04:43:26.0703 0x073c [ C2909BD26906E1D05D77B1D48B48E94A, 5642571FFDBDC63F0E3B1477337103517ABF7C50EBEDA63EF8E162E44C7B2538 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
04:43:26.0727 0x073c NvNetworkService - ok
04:43:26.0733 0x073c [ 15B7C86DCFF1B9FB6680465D03603793, 5E224772C6E134A14B52F9BE2CEB711578B67805433E60BEF52139D10D797344 ] nvpciflt C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
04:43:26.0734 0x073c nvpciflt - ok
04:43:26.0737 0x073c nvraid - ok
04:43:26.0740 0x073c nvstor - ok
04:43:26.0744 0x073c [ 60C9EC53F9CFBFBE38E9C79B88A6B19F, D89D6C62AB0A3224D850B639E4D7D7265BF183BEE0C60F27FEDDF0194504B078 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
04:43:26.0745 0x073c NvStreamKms - ok
04:43:26.0845 0x073c [ 5A773713C332F8760ABB915C24675E8F, DA453D341529B34188D5B235B17BD0FDAE84129539FC212F34B9FCC42DC0549C ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
04:43:26.0918 0x073c NvStreamSvc - ok
04:43:26.0947 0x073c [ 44C787E5661B40B78D59E0EB8B73C412, F88E919190C1ADB9AB266DE41C71DFC87F5AAE407783EDB70001D18B15D1052A ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
04:43:26.0965 0x073c nvsvc - ok
04:43:26.0965 0x073c Object required for P2P: [ 44C787E5661B40B78D59E0EB8B73C412 ] nvsvc
04:43:29.0364 0x073c Object send P2P result: true
04:43:29.0368 0x073c [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
04:43:29.0370 0x073c nvvad_WaveExtensible - ok
04:43:29.0373 0x073c nv_agp - ok
04:43:29.0385 0x073c [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
04:43:29.0391 0x073c odserv - ok
04:43:29.0394 0x073c OneSyncSvc - ok
04:43:29.0441 0x073c [ F34655869378762CEEF159E82BE95C3E, 346211DEB3D9C1D4C0688F737BF154A75C986921465FAF04E8CFED48385E64E8 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
04:43:29.0468 0x073c Origin Client Service - ok
04:43:29.0470 0x073c Object required for P2P: [ F34655869378762CEEF159E82BE95C3E ] Origin Client Service
04:43:31.0941 0x073c Object send P2P result: true
04:43:31.0947 0x073c [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
04:43:31.0949 0x073c ose - ok
04:43:31.0954 0x073c p2pimsvc - ok
04:43:31.0958 0x073c p2psvc - ok
04:43:31.0962 0x073c Parport - ok
04:43:31.0966 0x073c partmgr - ok
04:43:31.0972 0x073c [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
04:43:31.0975 0x073c PassThru Service - ok
04:43:31.0978 0x073c PcaSvc - ok
04:43:31.0981 0x073c pci - ok
04:43:31.0985 0x073c pciide - ok
04:43:31.0989 0x073c pcmcia - ok
04:43:31.0991 0x073c pcw - ok
04:43:31.0994 0x073c pdc - ok
04:43:31.0997 0x073c PEAUTH - ok
04:43:32.0001 0x073c PeerDistSvc - ok
04:43:32.0006 0x073c [ 9590E5FAFB67C9842F5EEDD41348F16F, 67E5F18D0B36604C580B54D7463927746309D9ABC6AC1F81E3FD3B4F17009157 ] PelService C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
04:43:32.0009 0x073c PelService - ok
04:43:32.0012 0x073c percsas2i - ok
04:43:32.0016 0x073c percsas3i - ok
04:43:32.0042 0x073c PerfHost - ok
04:43:32.0050 0x073c PhoneSvc - ok
04:43:32.0052 0x073c PimIndexMaintenanceSvc - ok
04:43:32.0061 0x073c pla - ok
04:43:32.0064 0x073c PlugPlay - ok
04:43:32.0068 0x073c [ A010F13D27C1033A8BE09D5FA9BF348B, 5536A233554C469F270046ADEE12A158F70E2D8BE776BAD0925235B015567D46 ] pneteth C:\WINDOWS\system32\DRIVERS\pneteth.sys
04:43:32.0069 0x073c pneteth - ok
04:43:32.0072 0x073c PNRPAutoReg - ok
04:43:32.0076 0x073c PNRPsvc - ok
04:43:32.0079 0x073c PolicyAgent - ok
04:43:32.0084 0x073c Power - ok
04:43:32.0086 0x073c PptpMiniport - ok
04:43:32.0149 0x073c [ 959F94AD1255BC749884EDDD14EC29C4, 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
04:43:32.0192 0x073c PrintNotify - ok
04:43:32.0199 0x073c Processor - ok
04:43:32.0202 0x073c ProfSvc - ok
04:43:32.0205 0x073c Psched - ok
04:43:32.0208 0x073c QWAVE - ok
04:43:32.0211 0x073c QWAVEdrv - ok
04:43:32.0214 0x073c RasAcd - ok
04:43:32.0217 0x073c RasAgileVpn - ok
04:43:32.0220 0x073c RasAuto - ok
04:43:32.0223 0x073c Rasl2tp - ok
04:43:32.0226 0x073c RasMan - ok
04:43:32.0228 0x073c RasPppoe - ok
04:43:32.0232 0x073c RasSstp - ok
04:43:32.0235 0x073c rdbss - ok
04:43:32.0239 0x073c rdpbus - ok
04:43:32.0242 0x073c RDPDR - ok
04:43:32.0248 0x073c RdpVideoMiniport - ok
04:43:32.0251 0x073c rdyboost - ok
04:43:32.0254 0x073c ReFSv1 - ok
04:43:32.0258 0x073c RemoteAccess - ok
04:43:32.0260 0x073c RemoteRegistry - ok
04:43:32.0262 0x073c RetailDemo - ok
04:43:32.0265 0x073c RFCOMM - ok
04:43:32.0268 0x073c RpcEptMapper - ok
04:43:32.0271 0x073c RpcLocator - ok
04:43:32.0274 0x073c RpcSs - ok
04:43:32.0277 0x073c rspndr - ok
04:43:32.0295 0x073c [ 8D8F0EF89B2904EAE89C3734E4EF613F, 0E99C31C4FDAA2549F6B41496F3052FA83B0A05327F5580F8766817A05F28112 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
04:43:32.0307 0x073c rt640x64 - ok
04:43:32.0312 0x073c s3cap - ok
04:43:32.0315 0x073c SamSs - ok
04:43:32.0320 0x073c [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\WNt500x64\Sandra.sys
04:43:32.0321 0x073c SANDRA - ok
04:43:32.0324 0x073c [ 1879374E0B4296763F3D4D0D230F867B, 93FA69CDD0CD3C81E7A9104D7BB9C99729C7EBF0257CDD4FA984C3ADFA43A4E3 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe
04:43:32.0325 0x073c SandraAgentSrv - ok
04:43:32.0329 0x073c sbp2port - ok
04:43:32.0332 0x073c SCardSvr - ok
04:43:32.0335 0x073c ScDeviceEnum - ok
04:43:32.0338 0x073c scfilter - ok
04:43:32.0341 0x073c Schedule - ok
04:43:32.0344 0x073c SCPolicySvc - ok
04:43:32.0346 0x073c sdbus - ok
04:43:32.0350 0x073c SDRSVC - ok
04:43:32.0353 0x073c sdstor - ok
04:43:32.0356 0x073c seclogon - ok
04:43:32.0359 0x073c SENS - ok
04:43:32.0361 0x073c SensorDataService - ok
04:43:32.0364 0x073c SensorService - ok
04:43:32.0367 0x073c SensrSvc - ok
04:43:32.0370 0x073c SerCx - ok
04:43:32.0373 0x073c SerCx2 - ok
04:43:32.0376 0x073c Serenum - ok
04:43:32.0378 0x073c Serial - ok
04:43:32.0382 0x073c sermouse - ok
04:43:32.0388 0x073c SessionEnv - ok
04:43:32.0391 0x073c sfloppy - ok
04:43:32.0394 0x073c SharedAccess - ok
04:43:32.0398 0x073c ShellHWDetection - ok
04:43:32.0401 0x073c SiSRaid2 - ok
04:43:32.0404 0x073c SiSRaid4 - ok
04:43:32.0414 0x073c [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
04:43:32.0418 0x073c SkypeUpdate - ok
04:43:32.0422 0x073c [ 0A760D02223FC2446012AE1192117DF1, 3EEF05CAD32C0113967B2B001870E3C39B9A3804399F25D0D9CBCA2B53569592 ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
04:43:32.0423 0x073c SmbDrvI - ok
04:43:32.0426 0x073c smphost - ok
04:43:32.0430 0x073c SmsRouter - ok
04:43:32.0442 0x073c [ 2F7A6F88A9516EB47B0BF13024434244, 5FC5635D077AAA42853F78306C941995B56E939015CC3F27D376CBD9395C7410 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
04:43:32.0446 0x073c snapman - ok
04:43:32.0450 0x073c SNMPTRAP - ok
04:43:32.0453 0x073c spaceport - ok
04:43:32.0456 0x073c SpbCx - ok
04:43:32.0459 0x073c Spooler - ok
04:43:32.0462 0x073c sppsvc - ok
04:43:32.0465 0x073c srv - ok
04:43:32.0468 0x073c srv2 - ok
04:43:32.0471 0x073c srvnet - ok
04:43:32.0474 0x073c SSDPSRV - ok
04:43:32.0477 0x073c SstpSvc - ok
04:43:32.0484 0x073c [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
04:43:32.0487 0x073c ssudmdm - ok
04:43:32.0491 0x073c StateRepository - ok
04:43:32.0493 0x073c stexstor - ok
04:43:32.0497 0x073c [ 2834415C4EDD6CE35CB3CFEC50E08469, 28426616C709457DF38B5E2B4B9666C1255B81D2097589A95AAABD1BFACD302A ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
04:43:32.0498 0x073c StillCam - ok
04:43:32.0501 0x073c stisvc - ok
04:43:32.0503 0x073c storahci - ok
04:43:32.0506 0x073c storflt - ok
04:43:32.0509 0x073c stornvme - ok
04:43:32.0512 0x073c storqosflt - ok
04:43:32.0516 0x073c StorSvc - ok
04:43:32.0518 0x073c storufs - ok
04:43:32.0521 0x073c storvsc - ok
04:43:32.0524 0x073c svsvc - ok
04:43:32.0526 0x073c swenum - ok
04:43:32.0529 0x073c swprv - ok
04:43:32.0652 0x073c [ 06A5A15C89E5F2C08D0C595C1DA776AF, EEFC5803E3C76115DF24B00A4BD6F3196D6CD87049802EF58BE6CF2CCB758FBF ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
04:43:32.0738 0x073c syncagentsrv - ok
04:43:32.0750 0x073c Synth3dVsc - ok
04:43:32.0753 0x073c SysMain - ok
04:43:32.0756 0x073c SystemEventsBroker - ok
04:43:32.0759 0x073c TabletInputService - ok
04:43:32.0762 0x073c TapiSrv - ok
04:43:32.0765 0x073c Tcpip - ok
04:43:32.0768 0x073c Tcpip6 - ok
04:43:32.0772 0x073c tcpipreg - ok
04:43:32.0777 0x073c tdx - ok
04:43:32.0883 0x073c [ 8305FB462C325A67628E0556DF244B8B, 4ABD5D14E64BE07DD9332E39C3B902A40BD1E763A075F68F0048A7FAEB3019D5 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
04:43:32.0959 0x073c TeamViewer - ok
04:43:32.0964 0x073c Object required for P2P: [ 8305FB462C325A67628E0556DF244B8B ] TeamViewer
04:43:35.0591 0x073c Object send P2P result: true
04:43:35.0597 0x073c [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys
04:43:35.0598 0x073c teamviewervpn - ok
04:43:35.0601 0x073c terminpt - ok
04:43:35.0605 0x073c TermService - ok
04:43:35.0608 0x073c Themes - ok
04:43:35.0630 0x073c [ AEEEB1EE424A8D6F17B3A6461E0FC7E6, 3A5FD27DF6132E84DC03366FB684B31A454C0805A5E4EA0C67B0CE85FF446B93 ] tib C:\WINDOWS\system32\DRIVERS\tib.sys
04:43:35.0644 0x073c tib - ok
04:43:35.0653 0x073c [ 3813F93D8A69EDE68913CC3050640FE3, 4931BC6DA6FD0808C985CD6202FB759F6B8DE8957FB44E6AD8844EA58C891AC1 ] tib_mounter C:\WINDOWS\system32\DRIVERS\tib_mounter.sys
04:43:35.0657 0x073c tib_mounter - ok
04:43:35.0660 0x073c TieringEngineService - ok
04:43:35.0664 0x073c tiledatamodelsvc - ok
04:43:35.0666 0x073c TimeBroker - ok
04:43:35.0671 0x073c TPM - ok
04:43:35.0674 0x073c TrkWks - ok
04:43:35.0676 0x073c TrustedInstaller - ok
04:43:35.0682 0x073c tsusbflt - ok
04:43:35.0685 0x073c TsUsbGD - ok
04:43:35.0688 0x073c tunnel - ok
04:43:35.0692 0x073c tzautoupdate - ok
04:43:35.0694 0x073c uagp35 - ok
04:43:35.0698 0x073c UASPStor - ok
04:43:35.0701 0x073c UcmCx0101 - ok
04:43:35.0704 0x073c UcmUcsi - ok
04:43:35.0707 0x073c Ucx01000 - ok
04:43:35.0710 0x073c UdeCx - ok
04:43:35.0713 0x073c udfs - ok
04:43:35.0717 0x073c UEFI - ok
04:43:35.0720 0x073c Ufx01000 - ok
04:43:35.0724 0x073c UfxChipidea - ok
04:43:35.0727 0x073c ufxsynopsys - ok
04:43:35.0734 0x073c UI0Detect - ok
04:43:35.0737 0x073c uliagpkx - ok
04:43:35.0740 0x073c umbus - ok
04:43:35.0743 0x073c UmPass - ok
04:43:35.0747 0x073c UmRdpService - ok
04:43:35.0751 0x073c UnistoreSvc - ok
04:43:35.0762 0x073c upnphost - ok
04:43:35.0765 0x073c UrsChipidea - ok
04:43:35.0768 0x073c UrsCx01000 - ok
04:43:35.0771 0x073c UrsSynopsys - ok
04:43:35.0775 0x073c [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
04:43:35.0777 0x073c USBAAPL64 - ok
04:43:35.0781 0x073c usbccgp - ok
04:43:35.0784 0x073c usbcir - ok
04:43:35.0787 0x073c usbehci - ok
04:43:35.0790 0x073c usbhub - ok
04:43:35.0794 0x073c USBHUB3 - ok
04:43:35.0797 0x073c usbohci - ok
04:43:35.0801 0x073c usbprint - ok
04:43:35.0804 0x073c usbser - ok
04:43:35.0807 0x073c USBSTOR - ok
04:43:35.0810 0x073c usbuhci - ok
04:43:35.0813 0x073c USBXHCI - ok
04:43:35.0816 0x073c UserDataSvc - ok
04:43:35.0826 0x073c UserManager - ok
04:43:35.0829 0x073c UsoSvc - ok
04:43:35.0832 0x073c VaultSvc - ok
04:43:35.0835 0x073c vdrvroot - ok
04:43:35.0838 0x073c vds - ok
04:43:35.0841 0x073c VerifierExt - ok
04:43:35.0844 0x073c vhdmp - ok
04:43:35.0847 0x073c vhf - ok
04:43:35.0850 0x073c vmbus - ok
04:43:35.0853 0x073c VMBusHID - ok
04:43:35.0856 0x073c vmicguestinterface - ok
04:43:35.0859 0x073c vmicheartbeat - ok
04:43:35.0862 0x073c vmickvpexchange - ok
04:43:35.0866 0x073c vmicrdv - ok
04:43:35.0870 0x073c vmicshutdown - ok
04:43:35.0873 0x073c vmictimesync - ok
04:43:35.0876 0x073c vmicvmsession - ok
04:43:35.0879 0x073c vmicvss - ok
04:43:35.0882 0x073c volmgr - ok
04:43:35.0886 0x073c volmgrx - ok
04:43:35.0890 0x073c volsnap - ok
04:43:35.0893 0x073c vpci - ok
04:43:35.0896 0x073c vsmraid - ok
04:43:35.0900 0x073c VSS - ok
04:43:35.0903 0x073c VSTXRAID - ok
04:43:35.0907 0x073c vwifibus - ok
04:43:35.0910 0x073c vwififlt - ok
04:43:35.0913 0x073c W32Time - ok
04:43:35.0917 0x073c WacomPen - ok
04:43:35.0920 0x073c WalletService - ok
04:43:35.0923 0x073c wanarp - ok
04:43:35.0926 0x073c wanarpv6 - ok
04:43:35.0930 0x073c wbengine - ok
04:43:35.0934 0x073c WbioSrvc - ok
04:43:35.0937 0x073c Wcmsvc - ok
04:43:35.0942 0x073c wcncsvc - ok
04:43:35.0945 0x073c WcsPlugInService - ok
04:43:35.0949 0x073c WdBoot - ok
04:43:35.0951 0x073c Wdf01000 - ok
04:43:35.0955 0x073c WdFilter - ok
04:43:35.0959 0x073c WdiServiceHost - ok
04:43:35.0962 0x073c WdiSystemHost - ok
04:43:35.0966 0x073c wdiwifi - ok
04:43:35.0969 0x073c WdNisDrv - ok
04:43:35.0972 0x073c WdNisSvc - ok
04:43:35.0977 0x073c WebClient - ok
04:43:35.0981 0x073c Wecsvc - ok
04:43:35.0984 0x073c WEPHOSTSVC - ok
04:43:35.0987 0x073c wercplsupport - ok
04:43:35.0991 0x073c WerSvc - ok
04:43:35.0994 0x073c WFPLWFS - ok
04:43:35.0998 0x073c WiaRpc - ok
04:43:36.0002 0x073c WIMMount - ok
04:43:36.0004 0x073c WinDefend - ok
04:43:36.0010 0x073c WindowsTrustedRT - ok
04:43:36.0014 0x073c WindowsTrustedRTProxy - ok
04:43:36.0017 0x073c WinHttpAutoProxySvc - ok
04:43:36.0021 0x073c WinMad - ok
04:43:36.0028 0x073c Winmgmt - ok
04:43:36.0032 0x073c WinRM - ok
04:43:36.0038 0x073c Winstep Xtreme Service - ok
04:43:36.0041 0x073c WINUSB - ok
04:43:36.0044 0x073c WinVerbs - ok
04:43:36.0057 0x073c [ A7C993F86BE5AF035DE06DF9160D7008, 9890293AD584C846C5F2444BEF8E6130C6EE450EFF0387FCECDE056CD7D0C02C ] WiseBootAssistant C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe
04:43:36.0065 0x073c WiseBootAssistant - ok
04:43:36.0069 0x073c [ F2DA528D38516EA3DCB065B8C9E2203F, 662F25DDD6B6468F85177F8CE3D5604F295FE0B33FE6DED07BD5847442153EE3 ] WiseTDIFw C:\Windows\WiseTDIFw64.sys
04:43:36.0069 0x073c WiseTDIFw - ok
04:43:36.0073 0x073c WlanSvc - ok
04:43:36.0076 0x073c wlidsvc - ok
04:43:36.0081 0x073c [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum C:\WINDOWS\system32\drivers\WmBEnum.sys
04:43:36.0082 0x073c WmBEnum - ok
04:43:36.0089 0x073c [ 14C35BA8189C6F65D839163AA285E954, 8981AA488320C75E26E1ABDF884B721A4065F5D28F54782598B03F21B8CDC020 ] WmFilter C:\WINDOWS\system32\drivers\WmFilter.sys
04:43:36.0090 0x073c WmFilter - ok
04:43:36.0093 0x073c WmiAcpi - ok
04:43:36.0099 0x073c wmiApSrv - ok
04:43:36.0102 0x073c WMPNetworkSvc - ok
04:43:36.0108 0x073c [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore C:\WINDOWS\system32\drivers\WmXlCore.sys
04:43:36.0110 0x073c WmXlCore - ok
04:43:36.0117 0x073c [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof C:\WINDOWS\system32\drivers\Wof.sys
04:43:36.0121 0x073c Wof - ok
04:43:36.0126 0x073c workfolderssvc - ok
04:43:36.0130 0x073c wpcfltr - ok
04:43:36.0133 0x073c WPDBusEnum - ok
04:43:36.0136 0x073c WpdUpFltr - ok
04:43:36.0140 0x073c WpnService - ok
04:43:36.0143 0x073c ws2ifsl - ok
04:43:36.0147 0x073c wscsvc - ok
04:43:36.0150 0x073c WSDPrintDevice - ok
04:43:36.0153 0x073c WSearch - ok
04:43:36.0158 0x073c WSService - ok
04:43:36.0161 0x073c wuauserv - ok
04:43:36.0164 0x073c WudfPf - ok
04:43:36.0167 0x073c WUDFRd - ok
04:43:36.0171 0x073c wudfsvc - ok
04:43:36.0175 0x073c WUDFWpdFs - ok
04:43:36.0178 0x073c WUDFWpdMtp - ok
04:43:36.0182 0x073c WwanSvc - ok
04:43:36.0186 0x073c XblAuthManager - ok
04:43:36.0189 0x073c XblGameSave - ok
04:43:36.0192 0x073c xboxgip - ok
04:43:36.0195 0x073c XboxNetApiSvc - ok
04:43:36.0199 0x073c xinputhid - ok
04:43:36.0205 0x073c [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\WINDOWS\system32\DRIVERS\xusb21.sys
04:43:36.0206 0x073c xusb21 - ok
04:43:36.0210 0x073c xusb22 - ok
04:43:36.0211 0x073c ================ Scan global ===============================
04:43:36.0222 0x073c [ Global ] - ok
04:43:36.0222 0x073c ================ Scan MBR ==================================
04:43:36.0241 0x073c [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
04:43:36.0292 0x073c \Device\Harddisk0\DR0 - ok
04:43:36.0294 0x073c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
04:43:36.0401 0x073c \Device\Harddisk1\DR1 - ok
04:43:36.0403 0x073c [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2
04:43:36.0660 0x073c \Device\Harddisk2\DR2 - ok
04:43:36.0660 0x073c ================ Scan VBR ==================================
04:43:36.0694 0x073c [ ABF04A6BA467B3CB264D7917A766EC71 ] \Device\Harddisk0\DR0\Partition1
04:43:36.0751 0x073c \Device\Harddisk0\DR0\Partition1 - ok
04:43:36.0753 0x073c [ 7B21D2C46022CA576307A51A7153D5C3 ] \Device\Harddisk1\DR1\Partition1
04:43:36.0755 0x073c \Device\Harddisk1\DR1\Partition1 - ok
04:43:36.0757 0x073c [ C68EEA91898F3034AD0926E331E3D8EC ] \Device\Harddisk2\DR2\Partition1
04:43:36.0758 0x073c \Device\Harddisk2\DR2\Partition1 - ok
04:43:36.0759 0x073c ================ Scan generic autorun ======================
04:43:36.0912 0x073c [ 30264853A73D5C930DFF05F526C05718, B7454F4828BF6E39B2F5D46CBBB40C4DDB767784FD5A3010E6DC306C3BB36B64 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
04:43:37.0017 0x073c RTHDVCPL - ok
04:43:37.0036 0x073c [ F06F76C6D57022CF30D5B8853A8D873D, 4F373451A9D8CD16D2B4B339C730531936A993BDC819703C737E53384B79A289 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
04:43:37.0043 0x073c Acronis Scheduler2 Service - ok
04:43:37.0093 0x073c [ 6BE70A935DFD72F47C29757305B50B1E, 6E76D7CA8C417750C2AFAD45344F5863CEA7798A2993716E21DE1997789D1746 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
04:43:37.0125 0x073c NvBackend - ok
04:43:37.0151 0x073c OneDriveSetup - ok
04:43:37.0152 0x073c OneDriveSetup - ok
04:43:37.0456 0x073c [ 50E1118882643FBEFB7B9C28BC89F098, 1DAD598BF595019CC090B4C8BABB2E1017EE832D5815C4797533DEB0BAF59B72 ] C:\Program Files (x86)\Winstep\Nexus.exe
04:43:37.0667 0x073c NeXuS - ok
04:43:37.0683 0x073c GoogleDriveSync - ok
04:43:37.0712 0x073c [ 64A9C234D0EC8AB1A87C46C4F9BB5075, BA1A8EB97460B532B506304124C30CEC344C9917A972D6804DF4CDF5946C9A51 ] C:\Program Files\Windows Sidebar\sidebar.exe
04:43:37.0730 0x073c Sidebar - ok
04:43:37.0859 0x073c [ D521CE4130B2C4E689A4CD5C23CE69BE, AC1B14DEAD8E2A614693E784335D4C367740B1836A7255A197DA276CC51A3F7F ] C:\Windows\tray\wintmr.exe
04:43:37.0948 0x073c CCWinTray - ok
04:43:38.0000 0x073c [ A1BAEE2F2AA71318D08A81EB1AE60F1F, 8CEE7310553205E2047B2168CA7C578FBD80B403D644EC3E2DE7E4CECC9717FC ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:43:38.0029 0x073c Spotify Web Helper - ok
04:43:38.0032 0x073c Object required for P2P: [ A1BAEE2F2AA71318D08A81EB1AE60F1F ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:43:40.0438 0x073c Object send P2P result: true
04:43:40.0440 0x073c Skype - ok
04:43:40.0442 0x073c Skype - ok
04:43:40.0598 0x073c [ 40335C8877B6B84842AF03A40E1BB206, 33433ED8961B1AEEBD30F8DD53A541C711C403D019F1074406FF9C9D1E9F4113 ] C:\Program Files\CCleaner\CCleaner64.exe
04:43:40.0702 0x073c CCleaner Monitoring - ok
04:43:40.0722 0x073c [ 9F2ECA252720B25E8FEC1CAB2984B98D, 476EE2929901CD43F15869B763376393AA0942A3B934532055E037C6DCE3CD2D ] C:\Users\****\AppData\Local\Microsoft\OneDrive\OneDrive.exe
04:43:40.0729 0x073c OneDrive - ok
04:43:40.0775 0x073c [ 8D33759428539564CBF7008CA9FC5DA8, 5AC7B7554C21EC9A3D763E8E109549CF8999E4C04F2460F2DB56B0D84051D9B9 ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:43:40.0804 0x073c Spotify Web Helper - ok
04:43:40.0806 0x073c Object required for P2P: [ 8D33759428539564CBF7008CA9FC5DA8 ] C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
04:43:43.0219 0x073c Object send P2P result: true
04:43:43.0231 0x073c [ 2010CA459E5EC8F9D5FC8B000D130294, 058FF215A3AAD04F2A4CF23B2CC62A5EA28F5A705EFA689DCE9126720CF33229 ] C:\Users\****\AppData\Local\Microsoft\OneDrive\OneDrive.exe
04:43:43.0238 0x073c OneDrive - ok
04:43:43.0239 0x073c Object required for P2P: [ 2010CA459E5EC8F9D5FC8B000D130294 ] C:\Users\****\AppData\Local\Microsoft\OneDrive\OneDrive.exe
04:43:45.0647 0x073c Object send P2P result: true
04:43:45.0797 0x073c [ 7A75780AF331526FCA6C0BDB503EFD3F, 1C94B57557F629B8692D0544C3A61860FD932DAA803E8F03BE8BF7319286BB37 ] C:\Users\****\AppData\Roaming\Spotify\Spotify.exe
04:43:45.0900 0x073c Spotify - ok
04:43:45.0908 0x073c Object required for P2P: [ 7A75780AF331526FCA6C0BDB503EFD3F ] C:\Users\****\AppData\Roaming\Spotify\Spotify.exe
04:43:48.0330 0x073c Object send P2P result: true
04:43:48.0375 0x073c Uninstall C:\Users\****\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64 - ok
04:43:48.0400 0x073c OneDriveSetup - ok
04:43:48.0401 0x073c WAB Migrate - ok
04:43:48.0405 0x073c AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.15.106 ), 0x40000 ( disabled : updated )
04:43:48.0406 0x073c AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x61100 ( enabled : updated )
04:43:48.0407 0x073c Win FW state via NFP2: enabled ( trusted )
04:43:50.0747 0x073c ============================================================
04:43:50.0747 0x073c Scan finished
04:43:50.0747 0x073c ============================================================
04:43:50.0753 0x1c84 Detected object count: 0
04:43:50.0753 0x1c84 Actual detected object count: 0
04:44:10.0578 0x15a0 Deinitialize success
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.12.19.01
rootkit: v2015.12.18.01
Windows 10 x64 NTFS
Internet Explorer 11.20.10586.0
**** :: **** [administrator]
19.12.2015 05:05:16
mbar-log-2015-12-19 (05-05-16).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 498171
Time elapsed: 2 minute(s), 20 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
20.12.2015, 03:49
| #8 |
| /// Malwareteam | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter Abgesehen davon, dass im ersten Beitrag sowieso deine Benutzernamen erkenntlich sind, wirken deine beiden geposteten Logs von FRST nicht konsistent. Bedenke bezüglich der Privatsphäre bitte diesen Beitrag: http://www.trojaner-board.de/108422-...-anfragen.html Schritt 1 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
20.12.2015, 04:20
| #9 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runterFRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:19-12-2015
durchgeführt von **** (Administrator) auf **** (20-12-2015 04:13:02)
Gestartet von C:\Users\****\Desktop
Geladene Profile: **** (Verfügbare Profile: **** & **** & **** & Administrator)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> dwm.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
konnte nicht auf den Prozess zugreifen -> dasHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
() C:\Windows\SysWOW64\NMSAccessU.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\WsxService.exe
konnte nicht auf den Prozess zugreifen -> NvStreamNetworkService.exe
konnte nicht auf den Prozess zugreifen -> conhost.exe
konnte nicht auf den Prozess zugreifen -> WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Salfeld Computer) C:\Windows\SysWOW64\cchservice.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Salfeld Computer) C:\Windows\SysWOW64\ccsync.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
konnte nicht auf den Prozess zugreifen -> MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Salfeld Computer) C:\Windows\tray\wintmr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\Nexus.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Spotify Ltd) C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
konnte nicht auf den Prozess zugreifen -> fontdrvhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8522496 2015-12-19] (Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [571192 2014-08-14] (Acronis)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-11-05] (NVIDIA Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5380368 2015-07-20] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [693336 2015-07-19] (Acronis International GmbH)
HKLM-x32\...\Run: [ChicoSys] => C:\WINDOWS\SysWOW64\cc32\webtmr.exe [6692360 2015-07-10] (Salfeld Computer)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-11-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [803200 2015-12-01] (Avira Operations GmbH & Co. KG)
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <===== ACHTUNG
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [NeXuS] => C:\Program Files (x86)\Winstep\Nexus.exe [16993408 2014-11-05] (Winstep Software Technologies)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [CCWinTray] => C:\Windows\tray\wintmr.exe [7117184 2014-11-27] (Salfeld Computer)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [Spotify Web Helper] => C:\Users\****\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2345584 2015-12-13] (Spotify Ltd)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [232960 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{f19dd375-f585-429c-9ac4-41059f25f64c}: [NameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4268369312-20602237-3728962022-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-12-02] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-02] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
Toolbar: HKLM - Kein Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Keine Datei
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default
FF SelectedSearchEngine: Google
FF Homepage: about:newtab
FF NetworkProxy: "autoconfig_url", "data:text/javascript,function%20FindProxyForURL(url%2C%20host)%20%7Bif%20(url.indexOf('play.google.com')%20!%3D%20-1%20%7C%7C%20(url.indexOf('youtube.com%2Fvideoplayback')%20!%3D%20-1%20%26%26%20url.indexOf('%26gcr%3Dus')%20!%3D%20-1%20%26%26%20url.indexOf('%26ptchn')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fpiki.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fsongza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fnew.songza.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.mtv.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fmedia.mtvnservices.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.iheart.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.last.fm*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fext.last.fm*')%20%7C%7C%20url.indexOf('southparkstudios.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.daisuki.net*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.crunchyroll.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.rdio.com*')%20%7C%7C%20host%20%3D%3D%20'www.pandora.com'%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fgrooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fretro.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fhtml5.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Flisten.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.grooveshark.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fpreview.grooveshark.com*')%20%7C%7C%20(url.indexOf('proxmate%3Dactive')%20!%3D%20-1%20%26%26%20url.indexOf('amazonaws.com')%20%3D%3D%20-1)%20%7C%7C%20(url.indexOf('proxmate%3Dus')%20!%3D%20-1)%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.funimation.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fsecure.funimation.com*')%20%7C%7C%20url.indexOf('vevo.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fplay.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.spotify.com*')%20%7C%7C%20shExpMatch(url%2C%20'https%3A%2F%2Faccount.beatsmusic.com*')%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fwww.beatsmusic.com*')%20%7C%7C%20url.indexOf('discoverymedia.com')%20!%3D%20-1%20%7C%7C%20shExpMatch(url%2C%20'http%3A%2F%2Fdsc.discovery.com%2F*')%20%7C%7C%20host%20%3D%3D%20's.hulu.com')%20%7B%20return%20'PROXY%20us09.sq.proxmate.me%3A8000%3B%20PROXY%20us07.sq.proxmate.me%3A8000%3B%20PROXY%20us03.sq.proxmate.me%3A8000%3B%20PROXY%20us11.sq.proxmate.me%3A8000%3B%20PROXY%20us01.sq.proxmate.me%3A8000%3B%20PROXY%20us08.sq.proxmate.me%3A8000%3B%20PROXY%20us05.sq.proxmate.me%3A8000%3B%20PROXY%20us04.sq.proxmate.me%3A8000%3B%20PROXY%20us06.sq.proxmate.me%3A8000%3B%20PROXY%20us02.sq.proxmate.me%3A8000%3B%20PROXY%20us10.sq.proxmate.me%3A8000'%3B%7D%20%20else%20%7B%20return%20'DIRECT'%3B%20%7D%7D"
FF NetworkProxy: "ftp", "188.165.43.114"
FF NetworkProxy: "ftp_port", 8118
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "188.165.43.114"
FF NetworkProxy: "socks_port", 8118
FF NetworkProxy: "ssl", "188.165.43.114"
FF NetworkProxy: "ssl_port", 8118
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-19] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-02] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.770\npSurveillancePlugin_x86_64.dll [2015-10-28] (Synology)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-19] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.770\npSurveillancePlugin.dll [2015-10-28] (Synology)
FF Plugin HKU\S-1-5-21-4268369312-20602237-3728962022-1002: SkypePlugin -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\npGatewayNpapi.dll [2015-11-26] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-4268369312-20602237-3728962022-1002: SkypePlugin64 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\npGatewayNpapi-x64.dll [2015-11-26] (Skype Technologies S.A.)
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-04-08] [ist nicht signiert]
FF Extension: Delicious Bookmarks - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\extensions\{2fa4ed95-0317-4c6a-a74c-5f3e3912c1f9} [2014-10-17] [ist nicht signiert]
FF Extension: Adguard AdBlocker - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\adguardadblocker@adguard.com.xpi [2015-12-07]
FF Extension: Hola Better Internet - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-12-19]
FF Extension: New Tab Override (browser.newtab.url replacement) - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\newtaboverride@agenedia.com.xpi [2015-12-20]
FF Extension: FT DeepDark - C:\Users\****\AppData\Roaming\Mozilla\Firefox\Profiles\4wsbm1yy.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-12-19]
FF Extension: Kein Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4268369312-20602237-3728962022-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1418560 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [249624 2015-11-23] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\DfSdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany) [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
S2 ksupmgr; C:\Windows\SysWOW64\ksupmgr.exe [1190224 2015-07-10] (Salfeld Computer)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1768912 2015-09-11] (Micro-Star INT'L CO., LTD.)
R2 NMSAccess; C:\WINDOWS\SysWOW64\NMSAccessU.exe [71096 2009-01-12] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-11-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-11-05] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2099720 2015-11-27] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Datei ist nicht signiert]
R2 PelService; C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe [178688 2012-03-13] () [Datei ist nicht signiert]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe [72344 2008-02-17] (SiSoftware) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5613328 2015-07-29] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2014-01-21] (WiseCleaner.com) [Datei ist nicht signiert]
R2 Winstep Xtreme Service; C:\Program Files (x86)\Winstep\WsxService [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-05] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-01] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146696 2015-12-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-01] (Avira Operations GmbH & Co. KG)
R3 DroidCam; C:\Windows\system32\DRIVERS\droidcam.sys [33592 2015-05-25] (Dev47Apps)
R3 DroidCamVideo; C:\Windows\system32\DRIVERS\droidcamvideo.sys [230712 2015-05-25] (Windows (R) Win 7 DDK provider)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [296736 2014-09-18] (Acronis International GmbH)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-03-20] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-12-02] (REALiX(tm))
S3 massfilter_hs; C:\Windows\system32\drivers\massfilter_hs.sys [20232 2012-06-20] (HandSet Incorporated)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185088 2015-12-11] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2015-07-01] (CACE Technologies)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-11-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [889584 2015-12-02] (Realtek )
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31400 2000-01-01] (Synaptics Incorporated)
R2 tib; C:\Windows\system32\DRIVERS\tib.sys [1058632 2015-07-25] (Acronis International GmbH)
S2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [248648 2015-07-25] (Acronis International GmbH)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Datei ist nicht signiert]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R1 WiseTDIFw; C:\Windows\WiseTDIFw64.sys [39464 2015-03-20] (WiseCleaner.com) [Datei ist nicht signiert]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-20 04:13 - 2015-12-20 04:13 - 00029443 _____ C:\Users\****\Desktop\FRST.txt
2015-12-20 03:59 - 2015-12-20 03:59 - 00000075 _____ C:\Users\****\Desktop\test.txt
2015-12-20 02:57 - 2015-12-20 02:57 - 00240884 _____ C:\WINDOWS\ntbtlog.txt
2015-12-20 02:56 - 2015-12-20 02:56 - 00001365 _____ C:\Users\****\Desktop\Abgesicherter Modus.lnk
2015-12-19 21:38 - 2015-12-20 04:13 - 00000000 ____D C:\FRST
2015-12-19 21:35 - 2015-12-19 21:38 - 02370048 _____ (Farbar) C:\Users\****\Desktop\FRST64.exe
2015-12-19 10:15 - 2015-12-20 02:59 - 00000000 ___HD C:\ProgramData\Device
2015-12-19 08:18 - 2015-12-19 08:18 - 00000000 ____D C:\Users\****\Documents\ProcAlyzer Dumps
2015-12-19 06:43 - 2015-12-19 06:43 - 06539752 _____ (Tim Kosse) C:\Users\****\Downloads\FileZilla_3.14.1_win64-setup.exe
2015-12-19 05:53 - 2015-12-19 10:00 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-12-19 05:07 - 2015-12-19 06:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-19 05:04 - 2015-12-19 05:57 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-19 05:04 - 2015-12-19 05:07 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-12-19 04:57 - 2015-12-19 04:57 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-19 04:56 - 2015-12-19 10:00 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-12-19 04:56 - 2015-12-19 10:00 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-12-19 04:56 - 2015-12-19 04:56 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-12-19 04:49 - 2015-12-19 06:00 - 00000000 ____D C:\Users\****\AppData\Local\FSDART
2015-12-19 04:48 - 2015-12-19 04:49 - 00000000 ____D C:\ProgramData\F-Secure
2015-12-19 04:48 - 2015-12-19 04:48 - 00000000 ____D C:\Users\****\AppData\Local\F-Secure
2015-12-19 04:44 - 2015-12-19 04:44 - 00000000 ____D C:\KVRT_Data
2015-12-19 04:29 - 2015-12-19 04:29 - 00000000 ____D C:\Users\****\Documents\Simply Super Software
2015-12-19 04:06 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-12-19 04:06 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-19 04:06 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-19 04:05 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-12-19 04:05 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-19 04:05 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2015-12-19 04:05 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2015-12-19 04:05 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-12-19 04:05 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2015-12-19 04:05 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-19 04:05 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-19 04:05 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-19 04:05 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-19 04:05 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-19 04:05 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-19 04:05 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2015-12-19 04:05 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-12-19 04:05 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-12-19 04:05 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-12-19 04:05 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-19 04:05 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-19 04:05 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-12-19 04:05 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-19 04:05 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2015-12-19 04:05 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-12-19 04:05 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-12-19 04:05 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-12-19 04:05 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-12-19 04:05 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2015-12-19 04:05 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2015-12-19 04:05 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-19 04:05 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-19 04:05 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-12-19 04:05 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-19 04:05 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-12-19 04:05 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-12-19 04:05 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-19 04:05 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2015-12-19 04:05 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-19 04:05 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2015-12-19 04:05 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-12-19 04:05 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-19 04:05 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-19 04:05 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-12-19 04:05 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-19 04:05 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-19 04:05 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-12-19 04:05 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-19 04:05 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-19 04:05 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2015-12-19 04:05 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-12-19 04:05 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-12-19 04:05 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-12-19 04:05 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 37882672 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 22345336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 18389624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 16561320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 15839392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 14844304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 13533416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 12040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 02876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 02496816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01905272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435906.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435906.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 01016360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00877872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00689784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00445400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00422752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00177416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-12-19 04:02 - 2015-12-19 04:02 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-12-19 04:01 - 2015-12-19 04:01 - 72121872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-12-19 04:01 - 2015-12-19 04:01 - 14057256 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 13120760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 12986520 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO4064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 06264640 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05775144 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICV2apo.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05412880 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSSTAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 05289952 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03741396 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-12-19 04:01 - 2015-12-19 04:01 - 03299824 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03278408 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 03196455 _____ C:\WINDOWS\system32\Drivers\rtkSSTsetting.dat
2015-12-19 04:01 - 2015-12-19 04:01 - 02997504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02823280 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO7064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02711296 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-12-19 04:01 - 2015-12-19 04:01 - 02600408 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02531696 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02437136 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02190992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02110600 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 02050176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01959608 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01839360 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01601952 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01435144 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01395760 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01382240 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01350456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01334384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01211832 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01194352 _____ (Intel Corporation) C:\WINDOWS\system32\IntelSstCApoPropPage.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01121864 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 01003864 _____ (Nahimic Inc) C:\WINDOWS\system32\NahimicAPONSControl.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00998032 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00965032 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00961848 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00952984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00931624 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00923744 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00888480 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00874728 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00873472 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00749000 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00699064 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00678184 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00677672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00645456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00618192 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00596120 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00574760 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00569440 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.DLL
2015-12-19 04:01 - 2015-12-19 04:01 - 00532384 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00514528 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00500560 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00467160 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00448584 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00428232 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00387320 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00381416 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00362056 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00357520 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00341152 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00341152 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00340648 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00330568 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00321720 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00310424 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00258504 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00231920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00224264 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaemaxapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00221968 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00172584 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00166208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00158696 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00118600 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00090920 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00088352 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00088328 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-12-19 04:01 - 2015-12-19 04:01 - 00075544 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2015-12-12 04:56 - 2015-12-12 04:56 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll
2015-12-12 04:56 - 2015-12-12 04:56 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll
2015-12-09 12:02 - 2015-12-09 12:02 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-12-09 01:43 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 01:43 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 01:43 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 01:43 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 01:43 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-09 01:43 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-09 01:43 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-09 01:43 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-09 01:43 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 01:43 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 01:43 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 01:43 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 01:43 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 01:43 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 01:43 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-12-09 01:43 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 01:43 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 01:43 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 01:43 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 01:43 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 01:43 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 01:43 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 01:43 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 01:43 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 01:43 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 01:43 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 01:43 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 00:08 - 2015-12-09 00:36 - 00000000 ____D C:\Users\****\Desktop\FOTOBUCH & KALENDER
2015-12-08 02:55 - 2015-12-08 02:55 - 00002676 _____ C:\Users\****\AppData\Local\recently-used.xbel
2015-12-05 02:16 - 2015-12-05 02:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-05 01:18 - 2015-12-20 04:02 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-05 01:18 - 2015-12-20 03:23 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-05 01:18 - 2015-12-05 01:18 - 00004194 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 01:18 - 2015-12-05 01:18 - 00003962 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 17:20 - 2015-12-04 17:20 - 00515471 _____ C:\Users\****\Downloads\default_htc_Icons.zip
2015-12-03 00:34 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-03 00:34 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-03 00:34 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-03 00:34 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2015-12-03 00:34 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-03 00:34 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 00:33 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-12-03 00:33 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-03 00:33 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-03 00:33 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-03 00:33 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-03 00:33 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-03 00:33 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-03 00:33 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-03 00:33 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-03 00:33 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-12-03 00:33 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2015-12-03 00:33 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-03 00:33 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-03 00:33 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-03 00:33 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-12-03 00:33 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-03 00:33 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-03 00:33 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-03 00:33 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-03 00:33 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-03 00:33 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-03 00:33 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-03 00:33 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-03 00:33 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-03 00:33 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-03 00:33 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-03 00:33 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-03 00:33 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-03 00:33 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-03 00:33 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-03 00:33 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2015-12-03 00:33 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-03 00:33 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCoreRes.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2015-12-03 00:33 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2015-12-03 00:33 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-03 00:33 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthManagerProxy.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ETWCoreUIComponentsResources.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2015-12-03 00:33 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2015-12-03 00:33 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-03 00:33 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2015-12-03 00:33 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-03 00:33 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2015-12-03 00:33 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-03 00:33 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssign32.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-03 00:33 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-03 00:33 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-03 00:33 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-03 00:33 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\SysWOW64\NmaDirect.dll
2015-12-03 00:33 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-12-03 00:33 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-12-03 00:33 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-03 00:33 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-12-03 00:33 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-12-03 00:33 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2015-12-03 00:33 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2015-12-03 00:33 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-12-03 00:33 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-03 00:33 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2015-12-03 00:33 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2015-12-03 00:33 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-12-03 00:33 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-03 00:33 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-03 00:33 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-12-03 00:33 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-12-03 00:33 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-12-02 23:42 - 2015-12-02 23:42 - 00000000 ____D C:\Users\****\AppData\Local\SkypePlugin
2015-12-02 20:45 - 2015-12-02 20:45 - 00008480 _____ C:\Users\****\Downloads\winmail (1).dat
2015-12-02 20:44 - 2015-12-02 20:44 - 00361472 _____ C:\Users\****\Downloads\winmail_opener.exe
2015-12-02 20:44 - 2015-12-02 20:44 - 00000000 ____D C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winmail Opener
2015-12-02 20:42 - 2015-12-02 20:42 - 00008480 _____ C:\Users\****\Downloads\winmail.dat
2015-12-02 02:19 - 2015-12-20 03:40 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-02 02:19 - 2015-12-19 04:03 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-12-02 02:13 - 2015-12-19 04:01 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-12-02 02:12 - 2015-12-02 02:12 - 00889584 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-12-02 02:12 - 2015-12-02 02:12 - 00084064 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-12-02 02:11 - 2015-12-11 01:28 - 00185088 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-12-02 01:54 - 2015-12-02 01:55 - 00003424 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2015-12-02 01:54 - 2015-12-02 01:55 - 00003070 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (****)
2015-12-02 01:54 - 2015-12-02 01:54 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-12-02 01:54 - 2015-12-02 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-30 22:47 - 2015-11-30 22:47 - 00003640 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-27 23:06 - 2015-11-27 23:06 - 00003041 _____ C:\Users\****\Desktop\Helium.lnk
2015-11-27 20:19 - 2015-11-27 20:23 - 00000000 ____D C:\Users\****\Documents\FIFA 16
2015-11-27 04:03 - 2015-11-27 04:03 - 00001230 _____ C:\Users\Public\Desktop\FIFA 16.lnk
2015-11-27 03:47 - 2015-11-27 03:48 - 00000000 ____D C:\Program Files (x86)\Origin Games
2015-11-26 00:33 - 2015-11-26 00:33 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2015-11-25 14:31 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-25 14:31 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-11-25 14:31 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-25 14:31 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-25 14:31 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-20 04:12 - 2014-09-07 12:20 - 00000601 _____ C:\WINDOWS\SysWOW64\excltmp~.dat
2015-12-20 04:08 - 2015-10-30 19:35 - 00780072 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-20 04:08 - 2015-10-30 19:35 - 00156884 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-20 04:08 - 2015-10-30 08:21 - 00000000 ____D C:\WINDOWS\INF
2015-12-20 04:08 - 2015-09-14 09:20 - 01811252 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-20 04:04 - 2014-03-16 22:28 - 00000000 ____D C:\Users\****\AppData\Roaming\Skype
2015-12-20 04:03 - 2014-03-23 09:13 - 00000000 ___RD C:\Users\****\Google Drive
2015-12-20 04:02 - 2015-11-14 13:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-20 04:02 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-20 04:02 - 2015-09-14 15:03 - 00003348 _____ C:\WINDOWS\SysWOW64\cchservice.err
2015-12-20 04:00 - 2015-11-14 13:43 - 00000000 ____D C:\Users\****
2015-12-20 03:21 - 2015-10-30 07:28 - 00000000 ____D C:\Windows
2015-12-20 02:57 - 2015-10-30 07:28 - 01310720 ___SH C:\WINDOWS\system32\config\BBI
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\Provisioning
2015-12-19 20:50 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2015-12-19 20:43 - 2015-10-14 15:00 - 00000294 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_****.job
2015-12-19 20:42 - 2015-10-14 15:00 - 00002476 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_****
2015-12-19 19:38 - 2015-10-30 08:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-19 10:15 - 2014-09-07 12:19 - 00000307 _____ C:\NET.INI
2015-12-19 10:14 - 2015-09-14 09:23 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-19 09:59 - 2015-03-20 17:48 - 00000000 ____D C:\Program Files (x86)\ESET
2015-12-19 08:17 - 2014-03-17 04:53 - 00000000 ____D C:\Users\****\AppData\Roaming\FileZilla
2015-12-19 07:54 - 2014-03-29 18:59 - 00000000 ____D C:\Users\****\AppData\Roaming\vlc
2015-12-19 06:00 - 2014-03-16 16:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-19 05:05 - 2014-05-02 20:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-19 05:04 - 2014-05-02 20:06 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-19 04:26 - 2014-03-17 12:44 - 00000000 ____D C:\ProgramData\TEMP
2015-12-19 04:25 - 2014-03-16 21:32 - 00000000 ____D C:\Users\Public\Documents\Winstep
2015-12-19 04:15 - 2014-11-19 11:28 - 00000000 ____D C:\Users\****\AppData\Roaming\QuickScan
2015-12-19 04:12 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-19 04:09 - 2014-05-01 15:56 - 00000000 ____D C:\Users\****\AppData\LocalLow\Company
2015-12-19 04:02 - 2015-11-14 13:42 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-19 04:02 - 2015-11-13 10:01 - 18487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 15933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 12870384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 11228488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-12-19 04:02 - 2015-11-13 10:01 - 03540360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 03126800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-12-19 04:02 - 2015-11-13 10:01 - 00034494 _____ C:\WINDOWS\system32\nvinfo.pb
2015-12-19 04:01 - 2015-11-14 13:42 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-12-19 04:01 - 2015-09-18 11:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-12-19 04:01 - 2015-07-03 10:26 - 04592384 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-12-19 04:01 - 2015-07-03 10:26 - 03271912 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 02954224 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 00195192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-12-19 04:01 - 2015-07-03 10:26 - 00023696 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-12-19 04:01 - 2014-03-16 11:37 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-19 03:48 - 2014-08-20 15:29 - 00000000 ____D C:\ProgramData\ProductData
2015-12-15 01:49 - 2014-03-17 04:08 - 00000000 ____D C:\Users\****\AppData\Roaming\UseNeXT
2015-12-14 18:39 - 2015-06-12 18:48 - 00000000 ____D C:\Users\****\AppData\Local\Spotify
2015-12-14 17:42 - 2015-06-12 18:48 - 00000000 ____D C:\Users\****\AppData\Roaming\Spotify
2015-12-14 17:16 - 2014-08-26 20:19 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A684F971-CF44-4E53-937C-655718D4BBA8}
2015-12-14 17:08 - 2015-09-14 12:46 - 00002393 _____ C:\Users\****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-14 17:08 - 2015-09-14 12:46 - 00000000 ___RD C:\Users\****\OneDrive
2015-12-13 19:12 - 2014-08-16 11:04 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CD8D0312-2F33-4343-80FA-77023AED1586}
2015-12-13 19:12 - 2014-06-06 10:04 - 00000000 ____D C:\Users\****\AppData\Roaming\Skype
2015-12-13 17:33 - 2015-11-14 13:42 - 00408728 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-13 09:14 - 2014-03-16 23:03 - 00000000 ____D C:\Users\****\AppData\Local\Spotify
2015-12-13 08:01 - 2014-03-16 23:03 - 00000000 ____D C:\Users\****\AppData\Roaming\Spotify
2015-12-13 07:48 - 2014-03-26 14:15 - 00163840 _____ (G DATA Software AG) C:\WINDOWS\LgxSetup.exe
2015-12-13 07:32 - 2014-03-16 11:37 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-13 07:21 - 2015-04-26 08:28 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-12-13 07:13 - 2014-03-16 17:13 - 00000000 ____D C:\Users\****\AppData\Local\VirtualStore
2015-12-13 07:12 - 2014-03-26 14:15 - 00000122 _____ C:\LgxUser.dic
2015-12-13 06:57 - 2014-03-26 14:16 - 00004096 _____ C:\Users\Public\Documents\000016E5.LCS
2015-12-13 06:54 - 2015-11-15 16:52 - 00000000 ____D C:\Program Files (x86)\Zviewer
2015-12-12 04:57 - 2015-11-14 13:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-12-12 04:57 - 2015-03-20 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-12-10 01:31 - 2014-03-16 22:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-10 01:31 - 2014-03-16 22:28 - 00000000 ____D C:\ProgramData\Skype
2015-12-09 13:10 - 2014-08-15 21:59 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-09 13:10 - 2014-08-15 21:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-09 12:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-09 12:03 - 2014-08-15 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-09 12:03 - 2014-03-19 11:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-09 12:02 - 2014-03-17 12:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 11:55 - 2014-03-17 12:24 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-09 04:39 - 2015-03-15 12:59 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-09 00:38 - 2015-09-29 18:13 - 00000000 ____D C:\Users\****\AppData\Local\Comms
2015-12-09 00:37 - 2014-03-21 18:36 - 00000000 ____D C:\Users\****\AppData\Local\Packages
2015-12-08 22:00 - 2015-09-29 18:13 - 00002334 _____ C:\Users\****\Desktop\Google Chrome.lnk
2015-12-08 16:01 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\rescache
2015-12-08 02:59 - 2014-03-31 18:27 - 00000000 ____D C:\Users\****\.gimp-2.8
2015-12-08 02:51 - 2014-03-31 18:29 - 00000000 ____D C:\Users\****\AppData\Local\gtk-2.0
2015-12-07 13:08 - 2015-09-13 07:30 - 00002334 _____ C:\Users\****\Desktop\Google Chrome.lnk
2015-12-06 02:51 - 2015-09-14 09:23 - 00002334 _____ C:\Users\****\Desktop\Google Chrome.lnk
2015-12-05 02:16 - 2014-03-16 22:28 - 00000000 ____D C:\Users\****\AppData\Local\Skype
2015-12-03 00:42 - 2015-10-30 08:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-02 15:38 - 2014-04-07 11:28 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-02 02:18 - 2015-10-04 20:40 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-12-02 02:18 - 2015-10-04 20:40 - 00000000 ____D C:\Users\****\.oracle_jre_usage
2015-12-02 02:18 - 2015-10-04 20:40 - 00000000 ____D C:\Program Files\Java
2015-12-02 02:18 - 2014-06-06 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-02 02:09 - 2015-10-30 07:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\Users\****\AppData\Roaming\IObit
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\ProgramData\IObit
2015-12-02 01:54 - 2014-08-20 15:29 - 00000000 ____D C:\Program Files (x86)\IObit
2015-12-02 01:03 - 2014-03-23 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-12-01 15:40 - 2015-09-18 11:07 - 00146696 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-12-01 15:40 - 2015-09-18 11:07 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-30 22:28 - 2014-03-31 18:27 - 00000949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2015-11-27 20:27 - 2014-03-17 04:21 - 00000000 ____D C:\ProgramData\Origin
2015-11-27 20:22 - 2014-03-17 04:21 - 00000000 ____D C:\ProgramData\Electronic Arts
2015-11-27 03:46 - 2014-03-17 04:21 - 00000000 ____D C:\Program Files (x86)\Origin
2015-11-26 16:40 - 2015-09-14 09:26 - 00000000 ___RD C:\Users\****\OneDrive
2015-11-26 00:38 - 2015-10-24 03:35 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-26 00:38 - 2015-09-28 21:11 - 00001449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2015-11-26 00:38 - 2015-09-28 21:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2015-11-26 00:33 - 2014-10-29 02:25 - 00000000 ____D C:\Users\****\AppData\LocalLow\IObit
2015-11-24 20:32 - 2015-11-14 13:42 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 02983032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 02554672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-24 20:32 - 2015-11-14 13:42 - 00523384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00385328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-11-24 20:32 - 2015-11-14 13:42 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-23 22:02 - 2015-11-14 13:43 - 00000000 ____D C:\Users\****
2015-11-23 21:35 - 2015-11-14 13:42 - 06049858 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-23 21:01 - 2014-03-16 11:33 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-22 07:33 - 2014-03-16 22:23 - 00000000 ____D C:\Users\****\AppData\Local\ElevatedDiagnostics
2015-11-22 07:30 - 2014-04-11 20:09 - 00001089 _____ C:\Users\****\Desktop\Google _Drive.lnk
2015-11-22 07:30 - 2014-03-23 09:13 - 00001776 _____ C:\Users\****\Desktop\Google Drive.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-06-04 09:46 - 2005-12-09 03:52 - 0000060 ____R () C:\Program Files (x86)\BRINST.INI
2014-03-20 12:53 - 2014-03-20 12:53 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2014-03-17 05:09 - 2014-10-30 01:06 - 14098432 _____ () C:\Users\****\AppData\Roaming\Sandra.mdb
2015-03-21 01:20 - 2015-03-21 01:20 - 0226172 _____ () C:\Users\****\AppData\Local\ars.cache
2015-03-21 01:20 - 2015-03-21 01:20 - 1810385 _____ () C:\Users\****\AppData\Local\census.cache
2015-01-09 16:31 - 2015-01-09 16:36 - 4230199 _____ () C:\Users\****\AppData\Local\HDGraph.log
2015-03-20 16:30 - 2015-03-20 16:30 - 0000036 _____ () C:\Users\****\AppData\Local\housecall.guid.cache
2015-12-08 02:55 - 2015-12-08 02:55 - 0002676 _____ () C:\Users\****\AppData\Local\recently-used.xbel
2015-11-14 13:43 - 2015-11-14 13:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-24 12:58 - 2014-12-14 04:26 - 0000031 _____ () C:\ProgramData\droidcam-settings
Einige Dateien in TEMP:
====================
C:\Users\****\AppData\Local\Temp\avgnt.exe
C:\Users\****\AppData\Local\Temp\BeliryS.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\cdei.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\cDfIQ.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\Hola-Setup-Plugin-x64-1.10.994.exe
C:\Users\****\AppData\Local\Temp\KI2J.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\lBXaSYz.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\nrxDDS.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\pZ2ue63T.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\sqlite3.dll
C:\Users\****\AppData\Local\Temp\TmX5wtn.jnidispatch.dll
C:\Users\****\AppData\Local\Temp\v3FaEqQ.proxy_util_ia64.dll
C:\Users\****\AppData\Local\Temp\Zhdus.proxy_util_ia64.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-12 23:12
==================== Ende von FRST.txt ============================
|
|
20.12.2015, 04:21
| #10 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter FRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:19-12-2015
durchgeführt von **** (2015-12-20 04:13:39)
Gestartet von C:\Users\****\Desktop
Windows 10 Pro (X64) (2015-11-14 12:52:43)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4268369312-20602237-3728962022-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4268369312-20602237-3728962022-503 - Limited - Disabled)
Gast (S-1-5-21-4268369312-20602237-3728962022-501 - Limited - Disabled)
**** (S-1-5-21-4268369312-20602237-3728962022-1005 - Limited - Enabled) => C:\Users\****
**** (S-1-5-21-4268369312-20602237-3728962022-1003 - Administrator - Enabled) => C:\Users\****
**** (S-1-5-21-4268369312-20602237-3728962022-1002 - Administrator - Enabled) => C:\Users\****
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\uTorrent) (Version: 3.4.2.34309 - BitTorrent Inc.)
Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}Visible) (Version: 18.0.6613 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6613 - Acronis) Hidden
Acronis True Image 2015 Media Add-on (HKLM-x32\...\{16DFE22F-B923-4FA4-AA48-32EC1F7BC873}) (Version: 18.0.5539 - Acronis)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.02 - Adobe Systems)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.235 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1483, 27.02.2015 - AIMP DevTeam)
Amazon Music (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Amazon Amazon Music) (Version: 3.7.1.698 - Amazon Services LLC)
Apple Application Support (32-Bit) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 2015 (HKLM-x32\...\{4209F371-3276-A8F7-B851-845A83732AB4}_is1) (Version: 11.00.60 - Ashampoo GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.129 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{d0e166af-1634-4c0b-ae96-2180e61f9d38}) (Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.52.15531 - Avira Operations GmbH & Co. KG) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother Driver Deployment Wizard (HKLM-x32\...\{0ED38503-B69A-44B4-98BE-21BFF284A9B6}) (Version: 1.09.000 - Brother)
Brother MFL-Pro Suite MFC-5490CN (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.123 - MSI)
ControlCenter (HKLM-x32\...\{AF14F0CD-5307-4134-BDFA-15974473C1EE}_is1) (Version: 2.5.060 - MSI)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
Driver Booster 3.1 (HKLM-x32\...\Driver Booster_is1) (Version: 3.1 - IObit)
Equalify v2.5.3 (Stable) (HKLM-x32\...\{33EC4F70-9F4B-406F-BB2A-F75A285E927D}) (Version: 2.5.3.0 - Equalify)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.4.55163.11 - Electronic Arts)
FileZilla Client 3.12.0.2 (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
FolderVisualizer (HKLM-x32\...\FolderVisualizer_is1) (Version: 7.1 - Abelssoft)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
G DATA Logox4 Speechengine (HKLM-x32\...\lgx4.lgx.server) (Version: - G DATA Software AG)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Glary Utilities PRO 5.21 (HKLM-x32\...\Glary Utilities 5) (Version: 5.21.0.40 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Hardcopy (HKLM-x32\...\Hardcopy) (Version: 2015.10.14 - www.hardcopy.de)
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.1.0.7 - IObit)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Kindersicherung 2014 (HKLM-x32\...\Kindersicherung_is1) (Version: - Salfeld Computer GmbH)
Lenovo Mouse Suite (HKLM\...\MouseSuite98) (Version: 6.69 - Lenovo)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech)
LogoMaker 4.0 (HKLM-x32\...\LogoMaker_is1) (Version: - Avanquest)
MFL-Pro Suite (HKLM-x32\...\{20E970DF-A7B2-4345-9DEB-72213A29645E}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.008 - MSI)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyHarmony (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\036a0e4fc6a247ec) (Version: 1.0.1.257 - Logitech)
Nexus 12.2 (HKLM-x32\...\Winstep Xtreme_is1) (Version: - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 21.0.1432.57 (HKLM-x32\...\Opera 21.0.1432.57) (Version: 21.0.1432.57 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.107 - Panda Security)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.4 - CEWE Stiftung u Co. KGaA)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7644 - Realtek Semiconductor Corp.)
Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
Rossmann Fotowelt Software 4.13 (HKLM-x32\...\Rossmann Fotowelt Software) (Version: 4.13 - ORWO Net)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
SiSoftware Sandra Lite 2014.SP1a (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 20.21.2014.3 - SiSoftware)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{89E20F5B-FB84-488A-8914-9D70B6790112}) (Version: 7.11.0.39 - Skype Technologies S.A.)
Skype™ 7.16 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.16.102 - Skype Technologies S.A.)
SleepTimer Ultimate 1.3 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Spotify (HKU\S-1-5-21-4268369312-20602237-3728962022-1002\...\Spotify) (Version: 1.0.19.106.gb8a7150f - Spotify AB)
StreamTransport version: 1.1.6.1 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - )
SUPER © v2014.build.60+Recorder (2014/02/18) Version v2014.buil (HKLM-x32\...\{8E2A18E2-96AF-8549-4DE7-5C06B75719A4}_is1) (Version: v2014.build.60+Recorder - eRightSoft)
SurveillancePlugin (HKLM-x32\...\{7FFF73CC-6F9B-4B61-8951-BC8610A4665E}) (Version: 1.0.0.770 - Synology)
SyncBackPro (HKLM-x32\...\SyncBackPro_is1) (Version: 7.5.5.0 - 2BrightSparks)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45471 - TeamViewer)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows-Treiberpaket - Bestunar Inc. BstDtv3 Drivers (12/12/2014 1.35.1212.0) (HKLM\...\7CFC3165F825A9CA6A9022210D1BE530A2397FBF) (Version: 12/12/2014 1.35.1212.0 - Bestunar Inc.)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (01/27/2014 9.0.0000.00000) (HKLM\...\9CA77E2A8332A0824C54DA611BBE4CA24AB1F750) (Version: 01/27/2014 9.0.0000.00000 - Google, Inc.)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wise Care 365 3.57 (HKLM-x32\...\Wise Care 365_is1) (Version: 3.57 - WiseCleaner.com, Inc.)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.8.0.20140401 - Xilisoft)
XMedia Recode Version 3.2.3.0 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.2.3.0 - XMedia Recode)
Zviewer version 2.0.0.10 (HKLM-x32\...\{1B00336F-393F-4DC7-9956-42C69ED6565E}_is1) (Version: 2.0.0.10 - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{2D6A292E-57AB-42B2-86F9-41C3E4C558E4}\localserver32 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{7093672F-0524-48D3-99AC-A117E8DC3203}\InprocServer32 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\****\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4268369312-20602237-3728962022-1002_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\****\AppData\Local\SkypePlugin\7.11.0.39\EdgeCalling.exe (Skype Technologies S.A.)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2014-04-08 04:08 - 2015-12-20 04:11 - 00000826 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {13F71391-8B56-4D82-B59F-FA4C37ACAA6A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1A895D0E-5031-48BD-B23F-07DAEA0AD596} - \GU5SkipUAC -> Keine Datei <==== ACHTUNG
Task: {325A31BE-95DE-4927-90D4-6635503891A7} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro Video => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {4A10F767-4117-4504-B45B-C668CCD75FD8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {4E8D1E6C-CB60-4357-8538-18FFA50FB27F} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-11-23] (IObit)
Task: {57AFE3FC-0534-4C65-9D70-D7895580D388} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro **** => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {5A02CD25-5885-41C9-A64A-A7EF4A53B857} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {5F1EC8DF-CC16-4998-9E80-2BE46D202613} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-12-09] (Microsoft Corporation)
Task: {609DB2F9-26D5-4A42-AEF7-E14B550A53BA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {630AADF9-01AA-451F-87B0-912FA1358CAB} - System32\Tasks\Driver Booster SkipUAC (****) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-11-27] (IObit)
Task: {65225D29-C91B-4743-A410-EA60D9365556} - System32\Tasks\hcdll2_ex_Win32 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe [2013-07-17] ()
Task: {67873889-B9C4-4B61-B73E-1347D1E23615} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {68F4FC2D-D514-4A36-83A2-F2D73629C255} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {6C92D458-D6F6-4ECA-85AD-8F2140D0D682} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {6E8ADF7B-5CCD-4849-9DE4-4286D1D6F488} - \User_Feed_Synchronization-{16BB7D0B-FA0F-4430-8202-838D00B3D859} -> Keine Datei <==== ACHTUNG
Task: {72EB1829-3842-4064-9791-95326470EE50} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {7DF508F1-C509-45B3-81DF-18602740CA93} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro Musik => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {84B1775A-25A1-47AD-8CEA-F32F0FA5AB3A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {8DCA8F22-9577-4A5D-BC6C-2267D00D8EFC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {92C6E0D3-F16B-4AD1-801F-1158DD264472} - System32\Tasks\hcdll2_ex_x64 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe [2012-11-08] ()
Task: {976B6E51-0769-43A0-9AC4-9EFCF17F2085} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro Photo => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {98B93954-F19D-4DBF-80DE-1C9819B98336} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro **** => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {A44421E3-5E6F-4A64-A0DC-16B3C7B5BA65} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro Fritzbox => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {A67650AC-DED6-4315-9A3D-2715C1958A9A} - System32\Tasks\Uninstaller_SkipUac_**** => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit)
Task: {A7406D41-9464-4BAF-B21E-2C1D7620FC23} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {A8F4EF5D-A57E-415F-8EF9-F1EE0434C3F6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {C458362F-474B-42A6-AEC8-49B1A3E4E2C5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D9C54124-DB4C-4DD2-B003-F1AC12367862} - System32\Tasks\Uninstaller_SkipUac_**** => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-10-20] (IObit)
Task: {E377BA38-950C-4E57-9D45-D85F8588CEE0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E99FC342-FA94-43B9-9297-15CBCE405DF1} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-19] (Adobe Systems Incorporated)
Task: {EBAB6672-AA87-47EB-A7D4-564D67CED456} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F3FA45CF-272E-407F-8E8D-DF62763A662D} - System32\Tasks\2BrightSparks\SyncBackPro\****-****\SyncBackPro => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [2015-11-30] (2BrightSparks Pte Ltd)
Task: {F4248FFF-73FF-4DBE-8077-412601E2DB0E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {FBFDFA0C-14F1-4592-AE05-78E98792A497} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {FF45DB2D-C2AB-4D22-BD03-F849544EA1C2} - \avast! Emergency Update -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_****.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_****.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-18 21:55 - 2013-07-17 16:03 - 00037880 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
2015-10-18 21:55 - 2012-11-08 07:38 - 00044608 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
2015-12-19 04:05 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-03 00:33 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-19 04:05 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-19 04:05 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-19 04:05 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-19 04:05 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-19 04:05 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-18 21:55 - 2012-07-05 14:56 - 00052800 _____ () C:\Program Files (x86)\Hardcopy\hardcopy_05.dll
2015-05-19 09:23 - 2015-11-05 18:00 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-03-16 21:32 - 2012-06-08 19:40 - 01086176 _____ () C:\Program Files (x86)\Winstep\wodTelnetDLX.dll
2015-11-25 20:18 - 2015-11-25 20:18 - 00147136 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-05-08 06:08 - 2015-05-08 06:08 - 00151552 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCam.dll
2015-05-08 06:08 - 2015-05-08 06:08 - 00081920 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter.ax
2015-05-08 06:14 - 2015-05-08 06:14 - 00086016 _____ () C:\Program Files (x86)\DroidCam\lib\DroidCamFilter240p.ax
2015-07-20 08:08 - 2015-07-20 08:08 - 00037696 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2015-07-20 08:08 - 2015-07-20 08:08 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-20 08:15 - 2015-07-20 08:15 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-09-15 20:08 - 2014-09-15 20:08 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2015-12-20 04:02 - 2015-12-20 04:02 - 00098816 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32api.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00110080 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\pywintypes27.dll
2015-12-20 04:02 - 2015-12-20 04:02 - 00364544 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\pythoncom27.dll
2015-12-20 04:02 - 2015-12-20 04:02 - 00046080 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_socket.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 01208320 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_ssl.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00320512 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32com.shell.shell.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00776704 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_hashlib.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 01176576 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._core_.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00806400 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._gdi_.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00816128 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._windows_.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 01067008 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._controls_.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00733184 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._misc_.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00682496 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\pysqlite2._sqlite.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00088064 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_ctypes.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00119808 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32file.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00108544 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32security.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00007168 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\hashobjs_ext.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00017920 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\thumbnails_ext.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00079360 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\usb_ext.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00167936 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32gui.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00018432 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32event.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00128512 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_elementtree.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00127488 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\pyexpat.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00013824 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\common.time34.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00036864 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_psutil_windows.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00038912 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32inet.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00525640 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\windows._lib_cacheinvalidation.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00011264 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32crypt.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00077312 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._html2.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00027136 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_multiprocessing.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00020480 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\_yappi.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00035840 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32process.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00686080 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\unicodedata.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00123392 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._wizard.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00024064 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32pipe.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00010240 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\select.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00025600 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32pdh.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00017408 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32profile.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00022528 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\win32ts.pyd
2015-12-20 04:02 - 2015-12-20 04:02 - 00078848 _____ () C:\Users\****\AppData\Local\Temp\_MEI63842\wx._animate.pyd
2015-09-28 21:11 - 2015-09-21 10:49 - 00348960 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-09-28 21:11 - 2015-09-21 10:49 - 00183584 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2015-09-28 21:11 - 2015-09-21 10:49 - 00050976 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ksupmgr => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-4268369312-20602237-3728962022-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\****\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{94334f3b-a965-4a6e-a24a-b8abed2749a0}.jpg
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B286657B-021D-4738-B283-11D819045DE0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CFE1D237-03B3-40A5-B949-B822B765A25A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0E9AC7CA-9458-40A4-9B01-E8FA4BFE3700}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{63BE0942-D541-4DC1-A422-96DC07FFF3DF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B2268501-6483-470A-9A65-B1B50973492A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{53B8F03C-0C9E-464C-A4E8-AFF3AD3C67A7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A9038768-5CD8-4F77-8971-203D6BD32CB7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{6B1E36A7-D894-44A1-AAC6-877585A45B88}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{FB4A2C44-7F22-4F66-A1FA-1CC76B05598A}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{5D80CA91-48A8-4778-8821-6AA7BCFA7501}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{35E1216F-DE1C-4588-87D8-955CDF0ACEE6}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [{BE8CABBA-5683-402C-820E-C396998B3DC8}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\WNt500x64\RpcSandraSrv.exe
FirewallRules: [TCP Query User{2807F675-6252-45E9-8518-30F0EB2F6956}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{6F06AB26-9EB8-44B3-B038-16E731CF75AC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{288691A1-7D0E-4CB6-84FB-32CD68F00376}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A6DD778C-75E1-4F03-A8AB-47C6CD6064E3}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [{2EC10D5A-BCFC-49E5-B4B2-A4ACE1F761DF}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP1a\RpcAgentSrv.exe
FirewallRules: [{8BC02452-9790-47AE-91D9-36EB4A61F822}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1AF55B2E-11BF-412B-B497-6D79CB4BD5A4}] => (Allow) LPort=2869
FirewallRules: [{57022DCC-7702-4801-A2E9-3CFD9C2BECEC}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{9EDA8B60-5946-436F-9863-54ECF028CF15}C:\users\****\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\****\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{69ED4176-13AE-4F36-964A-DCEBF8882E2F}C:\users\****\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\****\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{3377141C-8101-4F50-A36F-73BEF9431044}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{BB58319F-D3FE-4708-9B07-54F95E6F8FDB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{A6403454-9953-4347-88CE-3EF9ED7192A3}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{7F194CBC-085B-452A-B01B-A3B2E66A08D5}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{2CE789BA-400F-48E7-B96D-0CCB4DE40149}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{C34C6346-B022-4161-AE46-72D29299E4CD}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{23FDB088-FD61-4F25-8FD1-E28377F075FB}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{B7A57A48-75DF-4DBC-B496-00240021D706}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{F9758868-FF7F-4000-AED0-FBAB5A05BE3E}] => (Allow) C:\Users\****\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{BE4BEED2-BDE7-4093-9941-72B876C4649A}] => (Allow) C:\Users\****\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{6C6B37B6-52E8-48A8-A880-505EFED08969}] => (Allow) C:\Users\****\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E43E5412-D358-44E8-880F-B601CAE33014}] => (Allow) C:\Users\****\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2CA3DE12-8853-475F-884C-9DBF1AC44BE1}] => (Allow) LPort=1542
FirewallRules: [{8D175120-2CED-45C4-A4CA-DB402A44879E}] => (Allow) LPort=1542
FirewallRules: [{8E226FC0-A91A-4A07-A71A-10AFFE44AA6F}] => (Allow) LPort=53
FirewallRules: [{6660D38A-0382-4594-8758-69B209B22D9D}] => (Allow) LPort=67
FirewallRules: [{E3098E8C-AA3A-4D0B-80E8-39E011B377D4}] => (Allow) LPort=68
FirewallRules: [{0B3CB86D-0329-44EB-9D5A-D7C14EE3AED1}] => (Allow) LPort=53
FirewallRules: [{0A5C3C88-7456-465D-A7DB-CF921CC15CA9}] => (Allow) LPort=53
FirewallRules: [{A19EA116-C8DE-40BF-9D5E-558454D163F2}] => (Allow) C:\Users\****\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{61222358-9555-4723-A551-DD5A3405ECAF}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe
FirewallRules: [{72FA58BB-0E8D-4F24-86C5-B0165D21B596}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe
FirewallRules: [{3D697818-7C68-4C83-936C-A36ABD3F23C7}] => (Allow) LPort=54925
FirewallRules: [{13DB271E-7859-4CE5-A035-51928F254133}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4BFB8C8C-A73B-4BC2-8B35-F91C4FFEE22C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D723AEDE-EC48-47A0-80F7-BA74BAFCE11E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{025D115F-7652-4BF3-98BC-70BEC1A0E835}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{77B2F0BB-99D6-4083-8FD0-00FBB0935E59}] => (Allow) C:\Users\****\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{7677F0D7-CF9C-4F25-87B8-AE7F592B7BFB}] => (Allow) C:\Users\****\AppData\Local\Hola\firefox\app\hola_plugin.exe
FirewallRules: [{F7D2BA0F-FF55-4D1E-9492-D04EC0FEAE2C}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [{734F709D-903E-4C54-A981-70F5073A7C89}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe
FirewallRules: [TCP Query User{04006E0E-EE37-44E3-B9EC-D6F8ABA32C64}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{0581BE46-CAC5-4295-BD17-E9E98F631FCE}C:\users\****\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\****\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DC7D3C5C-B1AB-4E9C-8059-B63A7C9D9368}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{16BCFEE7-4BB5-45D5-B58C-87497C9E239E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{098A4410-7845-4D18-B42A-2C1D718627A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F4C96844-29CC-4EA4-B316-98857450EFCC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{16DC1792-12C5-455C-ADCE-B7A7ED744554}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D8EF6ECC-7BFC-445F-94BA-27AFC7088A87}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7B068B35-EC54-4D98-B1AA-25E342981044}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{041D082A-E30B-482D-B934-E6E85046F610}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{68FEA09B-C6B9-4BE9-BD8F-F59F4F2F151C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{62973302-4300-447E-B625-D5D864A17F7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3A586D2C-A263-4CCF-8AF1-4F282BD60054}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{6998A3CB-51AD-4A85-9852-ACFB4A4503E9}C:\program files (x86)\zviewer\zviewer.exe] => (Allow) C:\program files (x86)\zviewer\zviewer.exe
FirewallRules: [UDP Query User{35B25581-8091-42A1-8C61-6ABE2275A680}C:\program files (x86)\zviewer\zviewer.exe] => (Allow) C:\program files (x86)\zviewer\zviewer.exe
FirewallRules: [{C10A8591-73F1-41AF-B156-5E02DD32311C}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{98E8A0E6-EA0A-45D0-ADEE-F3306EDD7480}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{BFDAC5E5-F233-4C4F-8D0B-4FD02A0DC46F}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{89F29098-A933-4A2E-9081-A8A9B7C842A0}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [{A1CE4039-2488-4748-B5C6-AACBA8CDD7B6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{6831ACCC-B7A9-417F-8520-DDE447868FAC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{32500C11-D042-4495-A079-2A1150647B50}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{860BEFA8-76B6-481D-B687-CAC20D8A134D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{005D7FF3-BAE4-4E71-88EE-C2CCCADF3BAA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{3C6C500C-8A46-4664-9188-16B4C4993639}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [TCP Query User{6BE6B4C3-2069-4EFD-AFB3-1A79F758F7C4}C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe] => (Allow) C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe
FirewallRules: [UDP Query User{044A80D1-2631-468C-AEA6-973DF140AA2F}C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe] => (Allow) C:\users\****\appdata\local\skypeplugin\7.11.0.39\pluginhost.exe
FirewallRules: [{987FD07D-6DAC-4E81-B014-8474AA6E57FB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Inventec PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: rt640x64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/19/2015 08:08:10 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 2454
Startzeit: 01d13a8fc4b9840a
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: d5fd1c73-a683-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 08:01:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1340
Startzeit: 01d13a84caa81e87
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: ef12d22f-a682-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 06:43:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LockApp.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 4ac
Startzeit: 01d13a7ff9a054da
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
Berichts-ID: f48517c5-a677-11e5-8769-001bdc002d64
Vollständiger Name des fehlerhaften Pakets: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: WindowsDefaultLockScreen
Error: (12/19/2015 10:00:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ****)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 10:00:07 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ****)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 06:01:23 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:55:53 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:53:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ****)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/19/2015 05:09:00 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Error: (12/19/2015 05:08:57 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_8c15ae12515e1c22.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.0_none_d3c2e4e965da4528.manifest.
Systemfehler:
=============
Error: (12/20/2015 04:02:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tib_mounter" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1058
Error: (12/20/2015 04:02:09 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (12/20/2015 04:00:01 AM) (Source: DCOM) (EventID: 10010) (User: ****)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (12/20/2015 03:59:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_5eb28" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/20/2015 03:59:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _5eb28" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/20/2015 03:59:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_5eb28" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/20/2015 03:59:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_5eb28" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/20/2015 03:59:55 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (12/20/2015 03:59:30 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (12/20/2015 02:58:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "tib_mounter" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1058
CodeIntegrity:
===================================
Date: 2015-12-20 02:53:48.983
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:48.973
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:42.857
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:42.846
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:36.091
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:53:36.081
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:52:01.725
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:52:01.716
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:51:56.325
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-12-20 02:51:56.315
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Prozentuale Nutzung des RAM: 18%
Installierter physikalischer RAM: 16316.68 MB
Verfügbarer physikalischer RAM: 13251.84 MB
Summe virtueller Speicher: 16316.68 MB
Verfügbarer virtueller Speicher: 12839.86 MB
==================== Laufwerke ================================
Drive c: (Windows 10) (Fixed) (Total:111.35 GB) (Free:40.66 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive e: (Backup) (Fixed) (Total:931.51 GB) (Free:434.21 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: (Backup) (Fixed) (Total:931.51 GB) (Free:204.8 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 37CB9554)
Partition 2: (Active) - (Size=931.5 GB) - (Type=05)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 017BF7BD)
Partition 1: (Active) - (Size=111.3 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 98E1891F)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
20.12.2015, 04:35
| #11 |
| /// Malwareteam | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter Ich glaube dir das ganze jetzt einfach mal... Schritt 1 Da müssen wir mal genauer von außen schauen: Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8, 10) Hinweise für Windows 8 + 10 Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
20.12.2015, 04:43
| #12 |
| | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter Kannst du auch ruhigen Gewissens ;-) Die Anleitungen setzen teilweise den abgesicherten Modus voraus, genau da liegt aber das Problem. Der kann nicht gestartet werden, da das System direkt wieder runterfährt. |
|
20.12.2015, 04:52
| #13 |
| /// Malwareteam | Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter Meine Anleitung verlangt in keinem Wort den abgesicherten Modus sondern die Wiederherstellungsumgebung  Eingabeaufforderung im Reparaturmodus bei Windows 8 + 10 Führe die folgenden Schritte aus:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
| Themen zu Windows 10 - Abgesicherter Modus gelingt nicht - PC fährt direkt wieder runter |
| abgesicherte, abgesicherter, abgesicherter modus, direkt, dnsapi.dll, driver booster, gelingt, hallo zusammen, hilfe, hilfe!, meinem, modus, nicht, normale, onedrive, problemlos, runter, super, system, systems, systemstart, verhindert, virus, windows, windows 10, windows 10 pro, zusammen |
und klicke dann auf Ein/Aus
Linear-Darstellung
