| |
| |||||||
Überwachung, Datenschutz und Spam: Strato-Account versendet Spam - Spoofing oder Malware?Windows 7 Fragen zu Verschlüsselung, Spam, Datenschutz & co. sind hier erwünscht. Hier geht es um Abwehr von Keyloggern oder aderen Spionagesoftware wie Spyware und Adware. Themen zum "Trojaner entfernen" oder "Malware Probleme" dürfen hier nur diskutiert werden. Benötigst du Hilfe beim Trojaner entfernen oder weil du dir einen Virus eingefangen hast, erstelle ein Thema in den oberen Bereinigungsforen. |
 |
26.12.2015, 12:00
| #1 |
| |  Strato-Account versendet Spam - Spoofing oder Malware? Hallo liebe Community, erst einmal wünsche ich ein frohes Weihnachtsfest. Hoffentlich habt Ihr euch alle so schön vollgefressen wie ich  Nun zum nervigen Teil:Seit einigen Wochen, vlt schon 2 Monaten, versende ich über mein Strato-Mailkonto Spam-Mails an meine E-Mail Kontakte aus dem Strato Webmailer. Ich hoffe, meine Annahme ist korrekt, dass sich das Problem also NICHT auf meinem Rechner befindet! Meine erste Vermutung, ich hätte ein Malware-Problem, scheint sich dadurch also zu entkräften. Die Spam-Attacken geschehen im Abstand von etwa 2-3 Wochen, es werden gleichzeitig so gut wie alle Adressen angeschrieben, die Return-Messages in meinem eigenen Postfach jedoch kommen meist in 7-facher Ausführung. Was ich schon getan habe:
Im Anhang füge ich einige Logs bei (Malwarebytes, OTL und den Header einer der Mails). Ich hoffe Ihr könnt mir einen Tipp geben, wie ich weiter verfahren soll. Ich wünsche euch alles Gute, hoffe meine angelieferten Logs bieten einen Ansatzpunkt und verbleibe mit den besten Grüßen! LG Lukas Malwarebytes: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 26.12.2015 Suchlaufzeit: 11:26 Protokolldatei: Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2015.12.26.01 Rootkit-Datenbank: v2015.12.18.01 Lizenz: Testversion Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Lukas Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 387461 Abgelaufene Zeit: 3 Min., 34 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter OTL logfile created on: 26.12.2015 11:52:52 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.11.10586.0) Locale: 00000407 | Country: Germany | Language: DEU | Date Format: dd.MM.yyyy 15,92 Gb Total Physical Memory | 11,36 Gb Available Physical Memory | 71,34% Memory free 18,30 Gb Paging File | 11,85 Gb Available in Paging File | 64,75% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 58,25 Gb Total Space | 12,45 Gb Free Space | 21,37% Space Free | Partition Type: NTFS Drive D: | 931,51 Gb Total Space | 126,42 Gb Free Space | 13,57% Space Free | Partition Type: NTFS Drive F: | 179,87 Gb Total Space | 38,85 Gb Free Space | 21,60% Space Free | Partition Type: NTFS Computer Name: LUKAS | User Name: Lukas | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - File not found -- PRC - [2015.12.26 11:52:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Downloads\OTL.exe PRC - [2015.12.24 15:21:54 | 000,392,872 | ---- | M] (Mozilla Corporation) -- D:\Anwendungen\Programme\Anderes\Firefox\firefox.exe PRC - [2015.12.17 17:42:08 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe PRC - [2015.12.15 20:33:36 | 000,466,408 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\sched.exe PRC - [2015.12.15 20:33:21 | 000,803,200 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\avgnt.exe PRC - [2015.12.15 20:33:21 | 000,466,408 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\avguard.exe PRC - [2015.12.14 21:01:12 | 003,013,712 | ---- | M] (Valve Corporation) -- D:\Anwendungen\Programme\Anderes\Steam\Steam.exe PRC - [2015.12.14 21:01:12 | 001,941,072 | ---- | M] (Valve Corporation) -- D:\Anwendungen\Programme\Anderes\Steam\bin\steamwebhelper.exe PRC - [2015.12.14 21:01:12 | 000,836,176 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe PRC - [2015.12.08 22:36:58 | 024,952,456 | ---- | M] (Dropbox, Inc.) -- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe PRC - [2015.11.23 14:50:02 | 000,137,872 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe PRC - [2015.11.23 14:46:28 | 000,249,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe PRC - [2015.10.05 09:48:46 | 001,135,416 | ---- | M] (Malwarebytes) -- D:\Anwendungen\Programme\Anderes\ Malwarebytes Anti-Malware \mbamservice.exe PRC - [2015.10.05 09:48:44 | 001,513,784 | ---- | M] (Malwarebytes) -- D:\Anwendungen\Programme\Anderes\ Malwarebytes Anti-Malware \mbamscheduler.exe PRC - [2015.10.05 09:48:34 | 009,832,760 | ---- | M] (Malwarebytes) -- D:\Anwendungen\Programme\Anderes\ Malwarebytes Anti-Malware \mbam.exe PRC - [2015.10.04 09:24:27 | 002,654,512 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe PRC - [2015.10.04 09:24:16 | 001,872,688 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe PRC - [2015.08.25 15:18:39 | 000,410,744 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2015.08.04 11:47:08 | 000,923,696 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe PRC - [2015.01.20 16:35:54 | 022,985,944 | ---- | M] (RME) -- C:\Windows\SysWOW64\TotalMixFX.exe PRC - [2015.01.20 16:35:54 | 000,665,536 | ---- | M] (RME) -- C:\Windows\SysWOW64\hdsp32.exe PRC - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2014.10.29 05:20:00 | 010,362,232 | ---- | M] (WIBU-SYSTEMS AG) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe PRC - [2014.10.29 05:20:00 | 003,512,184 | ---- | M] (WIBU-SYSTEMS AG) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe PRC - [2014.10.13 06:57:46 | 000,743,688 | ---- | M] (DEVGURU Co., LTD.) -- D:\Anwendungen\Programme\Tools\USB Drivers\25_escape\conn\ss_conn_service.exe PRC - [2014.09.12 19:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) -- D:\Anwendungen\Programme\Anderes\TeamViewer\TeamViewer_Service.exe PRC - [2010.05.04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe PRC - [2007.04.30 19:43:54 | 003,450,608 | ---- | M] (Stardock) -- D:\Anwendungen\Programme\Tools\ObjectDock\ObjectDock.exe ========== Modules (No Company Name) ========== MOD - [2015.12.17 17:42:19 | 021,845,504 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkyWrap.dll MOD - [2015.12.17 17:42:08 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe MOD - [2015.12.17 17:42:08 | 000,141,312 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll MOD - [2015.12.14 21:01:26 | 002,547,280 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\video.dll MOD - [2015.12.14 21:01:12 | 000,804,432 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\bin\chromehtml.dll MOD - [2015.12.08 22:36:50 | 000,024,904 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd MOD - [2015.12.08 22:36:50 | 000,021,840 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd MOD - [2015.12.08 22:36:50 | 000,021,320 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd MOD - [2015.12.08 22:36:48 | 000,023,376 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd MOD - [2015.12.08 22:36:48 | 000,020,800 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd MOD - [2015.12.08 22:36:46 | 000,381,752 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd MOD - [2015.12.08 22:36:46 | 000,019,760 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd MOD - [2015.12.08 22:36:42 | 003,891,504 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd MOD - [2015.12.08 22:36:40 | 000,225,080 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd MOD - [2015.12.08 22:36:40 | 000,133,936 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd MOD - [2015.12.08 22:36:38 | 000,486,704 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd MOD - [2015.12.08 22:36:38 | 000,357,680 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd MOD - [2015.12.08 22:36:36 | 001,950,000 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd MOD - [2015.12.08 22:36:36 | 000,519,984 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd MOD - [2015.12.08 22:36:36 | 000,207,672 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd MOD - [2015.12.08 22:36:34 | 001,826,608 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd MOD - [2015.12.08 22:36:32 | 000,052,024 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd MOD - [2015.12.08 22:36:32 | 000,024,392 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd MOD - [2015.12.08 22:36:30 | 000,038,696 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\fastpath.pyd MOD - [2015.12.08 22:36:30 | 000,031,568 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd MOD - [2015.12.08 22:36:28 | 001,737,032 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd MOD - [2015.12.08 22:36:28 | 000,084,792 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL MOD - [2015.12.08 22:36:28 | 000,020,808 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd MOD - [2015.12.08 22:36:26 | 000,023,352 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd MOD - [2015.12.08 22:36:26 | 000,020,816 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd MOD - [2015.12.08 22:36:24 | 000,022,848 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd MOD - [2015.12.08 22:36:24 | 000,021,304 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd MOD - [2015.12.08 22:36:22 | 000,117,056 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd MOD - [2015.12.08 22:36:22 | 000,042,296 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd MOD - [2015.12.08 22:36:22 | 000,020,280 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd MOD - [2015.11.17 01:31:54 | 047,846,176 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\bin\libcef.dll MOD - [2015.11.10 20:55:40 | 000,778,752 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\SDL2.dll MOD - [2015.11.05 01:04:28 | 000,293,392 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll MOD - [2015.11.03 23:00:12 | 000,201,728 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\bin\openvr_api.dll MOD - [2015.10.31 02:01:00 | 000,019,920 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll MOD - [2015.10.31 02:00:58 | 000,786,904 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll MOD - [2015.10.31 02:00:58 | 000,063,448 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll MOD - [2015.10.31 02:00:58 | 000,019,408 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll MOD - [2015.10.31 02:00:26 | 000,036,296 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\librsync.dll MOD - [2015.10.31 02:00:24 | 000,350,152 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd MOD - [2015.10.31 02:00:22 | 000,048,592 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32service.pyd MOD - [2015.10.31 02:00:22 | 000,028,616 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32ts.pyd MOD - [2015.10.31 02:00:20 | 000,114,640 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32security.pyd MOD - [2015.10.31 02:00:20 | 000,043,472 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32process.pyd MOD - [2015.10.31 02:00:20 | 000,024,016 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32profile.pyd MOD - [2015.10.31 02:00:18 | 000,175,560 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32gui.pyd MOD - [2015.10.31 02:00:18 | 000,030,160 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd MOD - [2015.10.31 02:00:16 | 000,124,880 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32file.pyd MOD - [2015.10.31 02:00:16 | 000,024,528 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32event.pyd MOD - [2015.10.31 02:00:14 | 000,105,928 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32api.pyd MOD - [2015.10.31 02:00:14 | 000,024,016 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd MOD - [2015.10.31 02:00:14 | 000,020,936 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd MOD - [2015.10.31 02:00:10 | 000,109,520 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd MOD - [2015.10.31 02:00:08 | 000,240,584 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd MOD - [2015.10.31 02:00:08 | 000,083,912 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\sip.pyd MOD - [2015.10.31 02:00:06 | 000,019,408 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd MOD - [2015.10.31 01:59:54 | 000,134,608 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd MOD - [2015.10.31 01:59:54 | 000,034,768 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd MOD - [2015.10.31 01:59:52 | 000,692,688 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd MOD - [2015.10.31 01:59:52 | 000,093,640 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd MOD - [2015.10.31 01:59:50 | 000,134,088 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd MOD - [2015.10.31 01:59:50 | 000,018,376 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\select.pyd MOD - [2015.10.31 01:59:48 | 000,392,144 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll MOD - [2015.10.31 01:59:48 | 000,116,688 | ---- | M] () -- C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll MOD - [2015.10.04 09:24:26 | 000,012,080 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll MOD - [2015.09.24 01:33:18 | 002,549,248 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\libavcodec-56.dll MOD - [2015.09.24 01:33:18 | 000,491,008 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\libavformat-56.dll MOD - [2015.09.24 01:33:18 | 000,485,888 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\libswscale-3.dll MOD - [2015.09.24 01:33:18 | 000,442,880 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\libavutil-54.dll MOD - [2015.09.24 01:33:18 | 000,332,800 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\libavresample-2.dll MOD - [2015.07.03 17:12:46 | 004,962,816 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\v8.dll MOD - [2015.07.03 17:12:28 | 001,556,992 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\icui18n.dll MOD - [2015.07.03 17:12:28 | 001,187,840 | ---- | M] () -- D:\Anwendungen\Programme\Anderes\Steam\icuuc.dll MOD - [2007.04.30 19:18:50 | 000,112,400 | ---- | M] () -- D:\Anwendungen\Programme\Tools\ObjectDock\DockShellHook.dll MOD - [2007.04.23 00:19:28 | 000,026,392 | ---- | M] () -- D:\Anwendungen\Programme\Tools\ObjectDock\Docklets\Calendar\Calendar.dll MOD - [2007.04.21 13:47:52 | 000,059,592 | ---- | M] () -- D:\Anwendungen\Programme\Tools\ObjectDock\zlib.dll MOD - [2007.04.19 14:23:48 | 000,095,944 | ---- | M] () -- D:\Anwendungen\Programme\Tools\ObjectDock\CrashRpt.dll MOD - [2002.03.13 19:46:32 | 000,118,784 | ---- | M] () -- D:\Anwendungen\Programme\Tools\ObjectDock\ODimg.dll ========== Services (SafeList) ========== SRV:64bit: - [2015.12.07 12:38:39 | 000,275,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV:64bit: - [2015.12.07 12:38:37 | 000,912,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager) SRV:64bit: - [2015.12.07 12:38:35 | 001,223,168 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc) SRV:64bit: - [2015.12.07 12:38:35 | 000,948,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager) SRV:64bit: - [2015.12.07 12:38:35 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService) SRV:64bit: - [2015.12.07 12:38:35 | 000,162,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc) SRV:64bit: - [2015.12.07 12:38:35 | 000,087,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate) SRV:64bit: - [2015.12.07 05:15:40 | 001,035,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc) SRV:64bit: - [2015.12.07 05:04:20 | 000,066,560 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker) SRV:64bit: - [2015.12.07 05:00:52 | 000,203,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc) SRV:64bit: - [2015.12.07 04:56:18 | 000,607,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc) SRV:64bit: - [2015.10.30 10:07:16 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2015.10.30 08:19:28 | 001,073,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo) SRV:64bit: - [2015.10.30 08:19:28 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc) SRV:64bit: - [2015.10.30 08:19:26 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness) SRV:64bit: - [2015.10.30 08:19:26 | 000,497,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService) SRV:64bit: - [2015.10.30 08:18:46 | 000,168,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc) SRV:64bit: - [2015.10.30 08:18:43 | 001,872,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc) SRV:64bit: - [2015.10.30 08:18:41 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:64bit: - [2015.10.30 08:18:19 | 001,297,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService) SRV:64bit: - [2015.10.30 08:18:18 | 000,729,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM) SRV:64bit: - [2015.10.30 08:18:14 | 000,081,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup) SRV:64bit: - [2015.10.30 08:18:03 | 001,613,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack) SRV:64bit: - [2015.10.30 08:18:01 | 001,491,456 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc) SRV:64bit: - [2015.10.30 08:18:01 | 001,130,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave) SRV:64bit: - [2015.10.30 08:18:01 | 000,649,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc) SRV:64bit: - [2015.10.30 08:18:01 | 000,587,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure) SRV:64bit: - [2015.10.30 08:18:01 | 000,490,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc) SRV:64bit: - [2015.10.30 08:18:01 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService) SRV:64bit: - [2015.10.30 08:18:01 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc) SRV:64bit: - [2015.10.30 08:18:01 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc) SRV:64bit: - [2015.10.30 08:18:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService) SRV:64bit: - [2015.10.30 08:18:01 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker) SRV:64bit: - [2015.10.30 08:18:01 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc) SRV:64bit: - [2015.10.30 08:18:01 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager) SRV:64bit: - [2015.10.30 08:17:59 | 002,745,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository) SRV:64bit: - [2015.10.30 08:17:59 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode) SRV:64bit: - [2015.10.30 08:17:59 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter) SRV:64bit: - [2015.10.30 08:17:58 | 000,764,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV:64bit: - [2015.10.30 08:17:58 | 000,287,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc) SRV:64bit: - [2015.10.30 08:17:54 | 003,449,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService) SRV:64bit: - [2015.10.30 08:17:54 | 001,090,048 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc) SRV:64bit: - [2015.10.30 08:17:54 | 000,360,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc) SRV:64bit: - [2015.10.30 08:17:53 | 002,058,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc) SRV:64bit: - [2015.10.30 08:17:53 | 000,846,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon) SRV:64bit: - [2015.10.30 08:17:53 | 000,625,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC) SRV:64bit: - [2015.10.30 08:17:53 | 000,361,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc) SRV:64bit: - [2015.10.30 08:17:53 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso) SRV:64bit: - [2015.10.30 08:17:53 | 000,060,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS) SRV:64bit: - [2015.10.30 08:17:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC) SRV:64bit: - [2015.10.30 08:17:52 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum) SRV:64bit: - [2015.10.30 08:17:51 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service) SRV:64bit: - [2015.10.30 08:17:50 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc) SRV:64bit: - [2015.10.30 08:17:50 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc) SRV:64bit: - [2015.10.30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_1734394b) SRV:64bit: - [2015.10.30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_1734394b) SRV:64bit: - [2015.10.30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_1734394b) SRV:64bit: - [2015.10.30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_1734394b) SRV:64bit: - [2015.10.30 08:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_1734394b) SRV:64bit: - [2015.10.30 08:17:48 | 000,444,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService) SRV:64bit: - [2015.10.30 08:17:48 | 000,205,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc) SRV:64bit: - [2015.10.30 08:17:47 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost) SRV:64bit: - [2015.10.30 08:17:46 | 000,290,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService) SRV:64bit: - [2015.10.30 08:17:46 | 000,186,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc) SRV:64bit: - [2015.10.30 08:17:46 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc) SRV:64bit: - [2015.10.30 08:17:46 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc) SRV:64bit: - [2015.10.30 08:17:45 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc) SRV:64bit: - [2015.10.30 08:17:43 | 002,156,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc) SRV:64bit: - [2015.10.30 08:17:43 | 000,278,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV:64bit: - [2015.10.30 08:17:43 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice) SRV:64bit: - [2015.10.30 08:17:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService) SRV:64bit: - [2015.10.30 08:17:40 | 000,590,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter) SRV:64bit: - [2015.10.30 08:17:39 | 000,547,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm) SRV:64bit: - [2015.10.30 08:17:37 | 000,747,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc) SRV:64bit: - [2015.10.30 08:17:37 | 000,380,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV:64bit: - [2015.10.30 08:17:37 | 000,364,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc) SRV:64bit: - [2015.10.30 08:17:37 | 000,164,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker) SRV:64bit: - [2015.10.30 08:17:37 | 000,024,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat) SRV:64bit: - [2015.10.30 08:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface) SRV:64bit: - [2015.10.30 08:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV:64bit: - [2015.10.30 08:17:18 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv) SRV:64bit: - [2015.10.04 09:24:14 | 001,155,376 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService) SRV:64bit: - [2015.10.04 09:24:10 | 005,568,816 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc) SRV - [2015.12.15 20:33:36 | 000,466,408 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2015.12.15 20:33:24 | 001,418,560 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\avwebg7.exe -- (AntiVirWebService) SRV - [2015.12.15 20:33:22 | 000,948,392 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Stopped] -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\avmailc7.exe -- (AntiVirMailService) SRV - [2015.12.15 20:33:21 | 000,466,408 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2015.12.14 21:01:12 | 000,836,176 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2015.12.07 12:38:35 | 000,948,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc) SRV - [2015.12.01 13:51:24 | 000,136,048 | ---- | M] (Dropbox, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe -- (dbupdatem) SRV - [2015.12.01 13:51:24 | 000,136,048 | ---- | M] (Dropbox, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe -- (dbupdate) SRV - [2015.11.23 14:46:28 | 000,249,624 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe -- (Avira.ServiceHost) SRV - [2015.11.20 18:52:40 | 011,535,176 | ---- | M] () [Auto | Stopped] -- D:\Anwendungen\Programme\Anderes\Xampp\mysql\bin\mysqld.exe -- (mysql) SRV - [2015.11.17 14:40:05 | 000,269,000 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2015.10.30 08:18:31 | 002,179,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository) SRV - [2015.10.30 08:18:31 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\lfsvc.dll -- (lfsvc) SRV - [2015.10.30 08:18:29 | 000,461,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar) SRV - [2015.10.30 08:18:23 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost) SRV - [2015.10.30 08:18:21 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc) SRV - [2015.10.30 08:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify) SRV - [2015.10.23 09:48:55 | 001,616,440 | ---- | M] (GOG.com) [On_Demand | Stopped] -- D:\Anwendungen\Programme\Anderes\GalaxyClient\GalaxyClientService.exe -- (GalaxyClientService) SRV - [2015.10.23 09:48:27 | 006,952,504 | ---- | M] (GOG.com) [On_Demand | Stopped] -- C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe -- (GalaxyCommunication) SRV - [2015.10.13 10:47:48 | 000,022,528 | ---- | M] (Apache Software Foundation) [Auto | Stopped] -- D:\Anwendungen\Programme\Anderes\Xampp\apache\bin\httpd.exe -- (Apache2.4) SRV - [2015.10.05 09:48:46 | 001,135,416 | ---- | M] (Malwarebytes) [Auto | Running] -- D:\Anwendungen\Programme\Anderes\ Malwarebytes Anti-Malware \mbamservice.exe -- (MBAMService) SRV - [2015.10.05 09:48:44 | 001,513,784 | ---- | M] (Malwarebytes) [Auto | Running] -- D:\Anwendungen\Programme\Anderes\ Malwarebytes Anti-Malware \mbamscheduler.exe -- (MBAMScheduler) SRV - [2015.10.04 09:24:16 | 001,872,688 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService) SRV - [2015.08.25 15:18:39 | 000,410,744 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2015.03.09 18:00:57 | 001,910,640 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- D:\Anwendungen\Programme\Anderes\Origin\OriginClientService.exe -- (Origin Client Service) SRV - [2015.01.21 23:54:45 | 000,802,688 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService) SRV - [2015.01.13 11:04:53 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2014.12.11 10:30:48 | 000,315,496 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2014.10.29 05:20:00 | 003,512,184 | ---- | M] (WIBU-SYSTEMS AG) [Auto | Running] -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe -- (CodeMeter.exe) SRV - [2014.10.13 06:57:46 | 000,743,688 | ---- | M] (DEVGURU Co., LTD.) [Auto | Running] -- D:\Anwendungen\Programme\Tools\USB Drivers\25_escape\conn\ss_conn_service.exe -- (ss_conn_service) SRV - [2014.09.12 19:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- D:\Anwendungen\Programme\Anderes\TeamViewer\TeamViewer_Service.exe -- (TeamViewer9) SRV - [2013.03.01 02:48:58 | 000,118,520 | ---- | M] (Riverbed Technology, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) SRV - [2010.05.04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) ========== Driver Services (SafeList) ========== DRV:64bit: - [2015.12.26 11:26:17 | 000,192,216 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy) DRV:64bit: - [2015.12.15 20:33:37 | 000,146,696 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2015.12.15 20:33:37 | 000,135,880 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2015.12.15 20:33:37 | 000,073,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\avnetflt.sys -- (avnetflt) DRV:64bit: - [2015.12.15 20:33:37 | 000,035,488 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:64bit: - [2015.12.07 12:38:34 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg) DRV:64bit: - [2015.12.07 12:38:34 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor) DRV:64bit: - [2015.10.30 10:07:30 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2015.10.30 10:07:16 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2015.10.30 08:19:39 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV:64bit: - [2015.10.30 08:18:42 | 000,052,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr) DRV:64bit: - [2015.10.30 08:18:09 | 000,930,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1) DRV:64bit: - [2015.10.30 08:18:09 | 000,385,376 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS) DRV:64bit: - [2015.10.30 08:18:08 | 000,218,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache) DRV:64bit: - [2015.10.30 08:18:03 | 000,200,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt) DRV:64bit: - [2015.10.30 08:18:03 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT) DRV:64bit: - [2015.10.30 08:18:03 | 000,078,848 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt) DRV:64bit: - [2015.10.30 08:18:03 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101) DRV:64bit: - [2015.10.30 08:18:03 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv) DRV:64bit: - [2015.10.30 08:18:03 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2015.10.30 08:18:03 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ioqos.sys -- (IoQos) DRV:64bit: - [2015.10.30 08:18:01 | 000,154,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS) DRV:64bit: - [2015.10.30 08:17:57 | 000,047,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS) DRV:64bit: - [2015.10.30 08:17:52 | 000,254,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000) DRV:64bit: - [2015.10.30 08:17:52 | 000,163,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101) DRV:64bit: - [2015.10.30 08:17:52 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000) DRV:64bit: - [2015.10.30 08:17:52 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist) DRV:64bit: - [2015.10.30 08:17:51 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2) DRV:64bit: - [2015.10.30 08:17:51 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass) DRV:64bit: - [2015.10.30 08:17:51 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx) DRV:64bit: - [2015.10.30 08:17:51 | 000,074,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx) DRV:64bit: - [2015.10.30 08:17:51 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf) DRV:64bit: - [2015.10.30 08:17:50 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof) DRV:64bit: - [2015.10.30 08:17:46 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam) DRV:64bit: - [2015.10.30 08:17:46 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv) DRV:64bit: - [2015.10.30 08:17:42 | 000,126,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV:64bit: - [2015.10.30 08:17:42 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus) DRV:64bit: - [2015.10.30 08:17:40 | 000,694,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi) DRV:64bit: - [2015.10.30 08:17:39 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp) DRV:64bit: - [2015.10.30 08:17:37 | 000,293,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter) DRV:64bit: - [2015.10.30 08:17:37 | 000,209,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000) DRV:64bit: - [2015.10.30 08:17:37 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex) DRV:64bit: - [2015.10.30 08:17:37 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu) DRV:64bit: - [2015.10.30 08:17:37 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv) DRV:64bit: - [2015.10.30 08:17:37 | 000,099,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc) DRV:64bit: - [2015.10.30 08:17:37 | 000,087,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt) DRV:64bit: - [2015.10.30 08:17:37 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt) DRV:64bit: - [2015.10.30 08:17:37 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx) DRV:64bit: - [2015.10.30 08:17:37 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot) DRV:64bit: - [2015.10.30 08:17:37 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf) DRV:64bit: - [2015.10.30 08:17:26 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy) DRV:64bit: - [2015.10.30 08:17:25 | 000,046,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32) DRV:64bit: - [2015.10.30 08:17:25 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2015.10.30 08:17:25 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea) DRV:64bit: - [2015.10.30 08:17:25 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys) DRV:64bit: - [2015.10.30 08:17:25 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig) DRV:64bit: - [2015.10.30 08:17:23 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus) DRV:64bit: - [2015.10.30 08:17:23 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64) DRV:64bit: - [2015.10.30 08:17:23 | 000,534,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3) DRV:64bit: - [2015.10.30 08:17:23 | 000,532,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport) DRV:64bit: - [2015.10.30 08:17:23 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus) DRV:64bit: - [2015.10.30 08:17:23 | 000,378,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI) DRV:64bit: - [2015.10.30 08:17:23 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID) DRV:64bit: - [2015.10.30 08:17:23 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci) DRV:64bit: - [2015.10.30 08:17:23 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys) DRV:64bit: - [2015.10.30 08:17:23 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i) DRV:64bit: - [2015.10.30 08:17:23 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i) DRV:64bit: - [2015.10.30 08:17:23 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea) DRV:64bit: - [2015.10.30 08:17:23 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS) DRV:64bit: - [2015.10.30 08:17:23 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme) DRV:64bit: - [2015.10.30 08:17:23 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor) DRV:64bit: - [2015.10.30 08:17:23 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr) DRV:64bit: - [2015.10.30 08:17:23 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2015.10.30 08:17:23 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis) DRV:64bit: - [2015.10.30 08:17:23 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs) DRV:64bit: - [2015.10.30 08:17:23 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i) DRV:64bit: - [2015.10.30 08:17:23 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i) DRV:64bit: - [2015.10.30 08:17:23 | 000,055,808 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay) DRV:64bit: - [2015.10.30 08:17:23 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi) DRV:64bit: - [2015.10.30 08:17:23 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender) DRV:64bit: - [2015.10.30 08:17:23 | 000,034,144 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs) DRV:64bit: - [2015.10.30 08:17:23 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2015.10.30 08:17:23 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad) DRV:64bit: - [2015.10.30 08:17:22 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2015.10.30 08:17:22 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX) DRV:64bit: - [2015.10.30 08:17:22 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV) DRV:64bit: - [2015.10.30 08:17:22 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2015.10.30 08:17:22 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2015.10.30 08:17:22 | 000,238,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip) DRV:64bit: - [2015.10.30 08:17:22 | 000,209,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM) DRV:64bit: - [2015.10.30 08:17:22 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware) DRV:64bit: - [2015.10.30 08:17:22 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2015.10.30 08:17:22 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2015.10.30 08:17:22 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt) DRV:64bit: - [2015.10.30 08:17:22 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter) DRV:64bit: - [2015.10.30 08:17:22 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI) DRV:64bit: - [2015.10.30 08:17:22 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2015.10.30 08:17:22 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid) DRV:64bit: - [2015.10.30 08:17:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic) DRV:64bit: - [2015.10.30 08:17:22 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn) DRV:64bit: - [2015.10.30 08:17:22 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime) DRV:64bit: - [2015.10.30 08:17:22 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr) DRV:64bit: - [2015.10.30 08:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2) DRV:64bit: - [2015.10.30 08:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn) DRV:64bit: - [2015.10.30 08:17:18 | 000,277,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2015.10.30 08:17:18 | 000,165,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C) DRV:64bit: - [2015.10.30 08:17:18 | 000,117,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV:64bit: - [2015.10.30 08:17:18 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C) DRV:64bit: - [2015.10.30 08:17:18 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c) DRV:64bit: - [2015.10.30 08:17:18 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci) DRV:64bit: - [2015.10.30 08:17:18 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum) DRV:64bit: - [2015.10.30 08:17:18 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:64bit: - [2015.10.30 08:17:18 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c) DRV:64bit: - [2015.10.30 08:17:18 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep) DRV:64bit: - [2015.10.30 08:17:18 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV:64bit: - [2015.10.30 08:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus) DRV:64bit: - [2015.10.30 08:17:18 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO) DRV:64bit: - [2015.10.30 08:17:18 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2015.10.30 08:17:18 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid) DRV:64bit: - [2015.10.30 08:17:18 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd) DRV:64bit: - [2015.10.30 08:17:18 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter) DRV:64bit: - [2015.10.05 09:50:22 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl) DRV:64bit: - [2015.10.05 09:50:06 | 000,025,816 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2015.10.04 09:24:09 | 000,019,760 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms) DRV:64bit: - [2015.09.18 22:40:52 | 000,213,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2015.08.11 05:52:30 | 000,050,472 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible) DRV:64bit: - [2015.07.29 15:16:14 | 000,271,272 | ---- | M] (BitDefender) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avchv.sys -- (avchv) DRV:64bit: - [2015.07.10 21:48:52 | 000,063,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\XtuAcpiDriver.sys -- (XtuAcpiDriver) DRV:64bit: - [2015.01.20 16:35:54 | 000,086,528 | ---- | M] (RME) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hdsp_64.sys -- (hdsp) DRV:64bit: - [2014.10.13 06:57:48 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) DRV:64bit: - [2014.10.13 06:57:48 | 000,110,336 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) DRV:64bit: - [2014.10.11 13:27:46 | 000,142,528 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp) DRV:64bit: - [2014.09.30 17:47:28 | 000,129,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64) DRV:64bit: - [2014.07.28 20:48:49 | 000,038,264 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible) DRV:64bit: - [2014.07.28 20:48:49 | 000,027,000 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus) DRV:64bit: - [2014.05.17 01:42:36 | 000,042,184 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6) DRV:64bit: - [2013.11.23 21:09:39 | 000,040,664 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901) DRV:64bit: - [2013.03.01 02:49:12 | 000,036,600 | ---- | M] (Riverbed Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF) DRV:64bit: - [2012.08.15 23:41:38 | 000,030,208 | ---- | M] (Tobias Erichsen) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\teVirtualMIDI64.sys -- (teVirtualMIDI64) DRV - [2015.10.30 08:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus) DRV - [2013.11.21 10:22:08 | 000,115,448 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- D:\Anwendungen\Programme\Tools\UltraISO\drivers\ISODrv64.sys -- (ISODrive) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.countryCode: "DE" FF - prefs.js..browser.search.hiddenOneOffs: "Yahoo,Amazon.de,Bing,eBay,LEO Eng-Deu,Wikipedia (de),DuckDuckGo" FF - prefs.js..browser.search.isUS: false FF - prefs.js..browser.search.region: "DE" FF - prefs.js..browser.search.suggest.enabled: false FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.18.1-signed.1-let-fixed FF - prefs.js..extensions.enabledAddons: fox%40replace.fx:0.17.1.1-signed.1-let-fixed FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:43.0.1 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: D:\ANWEND~1\PROGRA~1\Anderes\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: D:\Anwendungen\Programme\Anderes\Java\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: D:\Anwendungen\Programme\Anderes\Java\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: D:\Anwendungen\Programme\Grafik\Adobe CS6\Acrobat 11\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: D:\Anwendungen\Programme\Grafik\Adobe CS6\Acrobat 11\Acrobat\Browser\WCFirefoxExtn [2014.12.04 11:51:00 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: D:\Anwendungen\Programme\Anderes\Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: D:\Anwendungen\Programme\Anderes\Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 37.0.2\extensions\\Components: D:\Anwendungen\Programme\Anderes\Firefox\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 37.0.2\extensions\\Plugins: D:\Anwendungen\Programme\Anderes\Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 38.0.1\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 38.0.1\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 39.0\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 39.0\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 39.0.3\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 39.0.3\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.2\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.2\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 41.0\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 41.0\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 41.0.1\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 41.0.1\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 41.0.2\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 41.0.2\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 42.0\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 42.0\extensions\\Plugins: false\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 43.0.1\extensions\\Components: false\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 43.0.1\extensions\\Plugins: false\plugins [2014.10.18 01:47:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\Extensions [2015.12.25 12:52:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\Firefox\Profiles\7wvrmitc.default\extensions [2015.10.21 17:03:51 | 000,000,000 | ---D | M] (Valence) -- C:\Users\Lukas\AppData\Roaming\mozilla\Firefox\Profiles\7wvrmitc.default\extensions\fxdevtools-adapters@mozilla.org [2015.12.07 12:27:33 | 000,243,946 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\7wvrmitc.default\extensions\fox@replace.fx.xpi [2015.12.17 18:56:47 | 000,989,188 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\7wvrmitc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015.12.07 12:27:33 | 000,665,566 | ---- | M] () (No name found) -- C:\Users\Lukas\AppData\Roaming\mozilla\firefox\profiles\7wvrmitc.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2012.10.01 20:43:54 | 000,034,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll O1 HOSTS File: ([2013.08.22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Anwendungen\Programme\Anderes\Java\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Adobe Acrobat Create PDF Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Anwendungen\Programme\Anderes\Java\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Adobe Acrobat Create PDF from Selection) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Adobe Acrobat Create PDF Toolbar) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [ACPW08EN] D:\Anwendungen\Programme\Tools\ACDSee Pro\8.0\acdIDInTouch2.exe (ACD Systems) O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [FirefaceMixTray2] C:\WINDOWS\SysNative\TotalMixFX.exe (RME) O4:64bit: - HKLM..\Run: [HDSPTray1] C:\WINDOWS\SysNative\hdsp32.exe (RME) O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 8.0] D:\Anwendungen\Programme\Grafik\Adobe CS6\Acrobat 11\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] D:\Anwendungen\Programme\Anderes\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [Dropbox] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) O4 - HKLM..\Run: [KiesTrayAgent] D:\Anwendungen\Programme\Tools\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKCU..\Run: [ACDSeeCommanderPro8] D:\Anwendungen\Programme\Tools\ACDSee Pro\8.0\ACDSeeCommanderPro8.exe () O4 - HKCU..\Run: [CCleaner Monitoring] D:\Anwendungen\Programme\Tools\CCleaner\CCleaner64.exe (Piriform Ltd) O4 - HKCU..\Run: [KiesPreload] D:\Anwendungen\Programme\Tools\Kies\Kies.exe (Samsung) O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_Plugin.exe (Adobe Systems Incorporated) O4 - Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk = D:\Anwendungen\Programme\Tools\ObjectDock\ObjectDock.exe (Stardock) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:64bit: - Extra context menu item: An OneNote s&enden - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: An OneNote s&enden - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\EXCEL.EXE (Microsoft Corporation) O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra Button: Lync: Anruf per Mausklick - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Lync: Anruf per Mausklick - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 80.69.100.212 80.69.100.108 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{b217e231-3558-4ea0-9695-c353754b57e8}: DhcpNameServer = 80.69.100.212 80.69.100.108 O18:64bit: - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - D:\Anwendungen\Programme\Anderes\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation) O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\System32\Userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2015.08.04 22:41:27 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2015.12.25 12:42:03 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\MicrosoftEdge [2015.12.22 17:19:21 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Documents\Benutzerdefinierte Office-Vorlagen [2015.12.19 10:48:53 | 016,984,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2015.12.19 10:48:53 | 013,017,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2015.12.19 10:48:51 | 002,598,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll [2015.12.19 10:48:51 | 002,582,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll [2015.12.19 10:48:51 | 002,544,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2015.12.19 10:48:51 | 002,180,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2015.12.19 10:48:51 | 002,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll [2015.12.19 10:48:51 | 001,281,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll [2015.12.19 10:48:51 | 000,973,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll [2015.12.19 10:48:50 | 001,995,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll [2015.12.19 10:48:50 | 001,706,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll [2015.12.19 10:48:50 | 001,299,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll [2015.12.19 10:48:50 | 001,155,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll [2015.12.19 10:48:50 | 001,118,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll [2015.12.19 10:48:50 | 000,983,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll [2015.12.19 10:48:50 | 000,824,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll [2015.12.19 10:48:50 | 000,823,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll [2015.12.19 10:48:50 | 000,716,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll [2015.12.19 10:48:49 | 003,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll [2015.12.19 10:48:49 | 002,796,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll [2015.12.19 10:48:49 | 001,318,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll [2015.12.19 10:48:49 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll [2015.12.19 10:48:49 | 001,105,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll [2015.12.19 10:48:49 | 001,092,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll [2015.12.19 10:48:49 | 001,065,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll [2015.12.19 10:48:49 | 001,035,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XboxNetApiSvc.dll [2015.12.19 10:48:49 | 001,020,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2015.12.19 10:48:49 | 000,931,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL [2015.12.19 10:48:49 | 000,925,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll [2015.12.19 10:48:49 | 000,900,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll [2015.12.19 10:48:49 | 000,898,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2015.12.19 10:48:49 | 000,884,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll [2015.12.19 10:48:49 | 000,794,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll [2015.12.19 10:48:49 | 000,696,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll [2015.12.19 10:48:49 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll [2015.12.19 10:48:49 | 000,670,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll [2015.12.19 10:48:49 | 000,607,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll [2015.12.19 10:48:49 | 000,572,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll [2015.12.19 10:48:49 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll [2015.12.19 10:48:49 | 000,526,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll [2015.12.19 10:48:49 | 000,502,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll [2015.12.19 10:48:49 | 000,498,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll [2015.12.19 10:48:49 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll [2015.12.19 10:48:49 | 000,462,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll [2015.12.19 10:48:49 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll [2015.12.19 10:48:49 | 000,450,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll [2015.12.19 10:48:49 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll [2015.12.19 10:48:49 | 000,337,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll [2015.12.19 10:48:49 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll [2015.12.19 10:48:49 | 000,292,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll [2015.12.19 10:48:49 | 000,289,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll [2015.12.19 10:48:49 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll [2015.12.19 10:48:49 | 000,264,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll [2015.12.19 10:48:49 | 000,245,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll [2015.12.19 10:48:49 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll [2015.12.19 10:48:49 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe [2015.12.19 10:48:49 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe [2015.12.19 10:48:48 | 007,979,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll [2015.12.19 10:48:48 | 006,297,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll [2015.12.19 10:48:48 | 003,593,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys [2015.12.19 10:48:48 | 000,871,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL [2015.12.19 10:48:48 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll [2015.12.19 10:48:48 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll [2015.12.19 10:48:48 | 000,569,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll [2015.12.19 10:48:48 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll [2015.12.19 10:48:48 | 000,412,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe [2015.12.19 10:48:48 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll [2015.12.19 10:48:48 | 000,387,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll [2015.12.19 10:48:48 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe [2015.12.19 10:48:48 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll [2015.12.19 10:48:48 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll [2015.12.19 10:48:48 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll [2015.12.19 10:48:48 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll [2015.12.19 10:48:48 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll [2015.12.19 10:48:48 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll [2015.12.19 10:48:48 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll [2015.12.19 10:48:48 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll [2015.12.19 10:48:48 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll [2015.12.19 10:48:48 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\flvprophandler.dll [2015.12.19 10:48:48 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialserver.dll [2015.12.19 10:48:48 | 000,116,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll [2015.12.19 10:48:48 | 000,115,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll [2015.12.19 10:48:48 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll [2015.12.19 10:48:48 | 000,084,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll [2015.12.19 10:48:48 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll [2015.12.19 10:48:48 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.XboxLive.ProxyStub.dll [2015.12.19 10:48:48 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll [2015.12.19 10:48:48 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe [2015.12.19 10:48:48 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundTransferHost.exe [2015.12.19 10:48:48 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe [2015.12.19 10:48:48 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll [2015.12.13 13:30:23 | 000,000,000 | R--D | C] -- C:\Users\Lukas\3D Objects [2015.12.11 11:57:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox [2015.12.08 22:46:31 | 022,393,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll [2015.12.08 22:46:28 | 018,678,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll [2015.12.08 22:46:27 | 001,817,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll [2015.12.08 22:46:27 | 001,648,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comsvcs.dll [2015.12.08 22:46:27 | 001,399,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll [2015.12.08 22:46:27 | 001,393,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys [2015.12.08 22:46:27 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll [2015.12.08 22:46:26 | 002,352,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll [2015.12.08 22:46:26 | 002,155,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll [2015.12.08 22:46:26 | 001,717,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll [2015.12.08 22:46:26 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\comsvcs.dll [2015.12.08 22:46:25 | 001,467,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll [2015.12.08 22:46:25 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\catsrvut.dll [2015.12.08 22:46:25 | 000,415,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\catsrvut.dll [2015.12.08 22:46:25 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll [2015.12.08 22:46:25 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys [2015.12.08 22:46:25 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshrm.dll [2015.12.08 22:46:24 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\readingviewresources.dll [2015.12.08 21:46:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\SleepStudy [2015.12.08 20:38:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 [2015.12.08 20:38:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2015.12.08 20:38:39 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2015.12.08 20:38:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server [2015.12.08 20:38:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2015.12.08 20:38:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHEALTH [2015.12.08 20:38:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server [2015.12.08 19:21:51 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\jEdit [2015.12.08 18:37:41 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Phase 5 HTML-Editor [2015.12.08 17:43:43 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\speech [2015.12.07 12:40:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther [2015.12.07 12:38:58 | 000,000,000 | ---D | C] -- C:\Windows.old [2015.12.07 12:38:39 | 002,126,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl [2015.12.07 12:38:39 | 002,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl [2015.12.07 12:38:39 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll [2015.12.07 12:38:39 | 000,803,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll [2015.12.07 12:38:39 | 000,783,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll [2015.12.07 12:38:39 | 000,536,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2015.12.07 12:38:39 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll [2015.12.07 12:38:39 | 000,516,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll [2015.12.07 12:38:39 | 000,408,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll [2015.12.07 12:38:39 | 000,369,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe [2015.12.07 12:38:39 | 000,366,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll [2015.12.07 12:38:39 | 000,340,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll [2015.12.07 12:38:39 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe [2015.12.07 12:38:39 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll [2015.12.07 12:38:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe [2015.12.07 12:38:39 | 000,110,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll [2015.12.07 12:38:39 | 000,088,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\remoteaudioendpoint.dll [2015.12.07 12:38:39 | 000,073,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\remoteaudioendpoint.dll [2015.12.07 12:38:39 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll [2015.12.07 12:38:39 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll [2015.12.07 12:38:39 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll [2015.12.07 12:38:39 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.proxy.dll [2015.12.07 12:38:37 | 011,545,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2015.12.07 12:38:37 | 009,918,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2015.12.07 12:38:37 | 007,476,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2015.12.07 12:38:37 | 006,572,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll [2015.12.07 12:38:37 | 003,993,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll [2015.12.07 12:38:37 | 001,814,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll [2015.12.07 12:38:37 | 001,713,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll [2015.12.07 12:38:37 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll [2015.12.07 12:38:37 | 000,912,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll [2015.12.07 12:38:37 | 000,795,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll [2015.12.07 12:38:37 | 000,704,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CellularAPI.dll [2015.12.07 12:38:37 | 000,674,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll [2015.12.07 12:38:37 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll [2015.12.07 12:38:37 | 000,630,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe [2015.12.07 12:38:37 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll [2015.12.07 12:38:37 | 000,586,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll [2015.12.07 12:38:37 | 000,538,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll [2015.12.07 12:38:37 | 000,517,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv [2015.12.07 12:38:37 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll [2015.12.07 12:38:37 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll [2015.12.07 12:38:37 | 000,440,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe [2015.12.07 12:38:37 | 000,431,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll [2015.12.07 12:38:37 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll [2015.12.07 12:38:37 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll [2015.12.07 12:38:37 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe [2015.12.07 12:38:37 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2015.12.07 12:38:37 | 000,334,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll [2015.12.07 12:38:37 | 000,296,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll [2015.12.07 12:38:37 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll [2015.12.07 12:38:37 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll [2015.12.07 12:38:37 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll [2015.12.07 12:38:37 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll [2015.12.07 12:38:37 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll [2015.12.07 12:38:37 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcertinst.exe [2015.12.07 12:38:37 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll [2015.12.07 12:38:37 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll [2015.12.07 12:38:37 | 000,092,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll [2015.12.07 12:38:37 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll [2015.12.07 12:38:37 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll [2015.12.07 12:38:37 | 000,080,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwapi.dll [2015.12.07 12:38:37 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll [2015.12.07 12:38:37 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll [2015.12.07 12:38:37 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssign32.dll [2015.12.07 12:38:37 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwancfg.dll [2015.12.07 12:38:37 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll [2015.12.07 12:38:37 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ihvrilproxy.dll [2015.12.07 12:38:37 | 000,063,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wwapi.dll [2015.12.07 12:38:37 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssign32.dll [2015.12.07 12:38:37 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rilproxy.dll [2015.12.07 12:38:37 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll [2015.12.07 12:38:37 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wwanpref.dll [2015.12.07 12:38:37 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2015.12.07 12:38:37 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsplib.dll [2015.12.07 12:38:37 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.proxy.dll [2015.12.07 12:38:37 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe [2015.12.07 12:38:37 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe [2015.12.07 12:38:37 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll [2015.12.07 12:38:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll [2015.12.07 12:38:37 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll [2015.12.07 12:38:35 | 007,199,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll [2015.12.07 12:38:35 | 005,202,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll [2015.12.07 12:38:35 | 003,355,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll [2015.12.07 12:38:35 | 002,843,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll [2015.12.07 12:38:35 | 002,772,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll [2015.12.07 12:38:35 | 002,680,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll [2015.12.07 12:38:35 | 002,624,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll [2015.12.07 12:38:35 | 002,444,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll [2015.12.07 12:38:35 | 002,185,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll [2015.12.07 12:38:35 | 002,001,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll [2015.12.07 12:38:35 | 001,944,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll [2015.12.07 12:38:35 | 001,860,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll [2015.12.07 12:38:35 | 001,395,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll [2015.12.07 12:38:35 | 001,387,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2015.12.07 12:38:35 | 001,268,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll [2015.12.07 12:38:35 | 001,223,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll [2015.12.07 12:38:35 | 001,056,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll [2015.12.07 12:38:35 | 001,042,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll [2015.12.07 12:38:35 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll [2015.12.07 12:38:35 | 000,948,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll [2015.12.07 12:38:35 | 000,948,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll [2015.12.07 12:38:35 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll [2015.12.07 12:38:35 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll [2015.12.07 12:38:35 | 000,809,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2015.12.07 12:38:35 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll [2015.12.07 12:38:35 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll [2015.12.07 12:38:35 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll [2015.12.07 12:38:35 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll [2015.12.07 12:38:35 | 000,704,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2015.12.07 12:38:35 | 000,698,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll [2015.12.07 12:38:35 | 000,697,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll [2015.12.07 12:38:35 | 000,647,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll [2015.12.07 12:38:35 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll [2015.12.07 12:38:35 | 000,586,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll [2015.12.07 12:38:35 | 000,540,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe [2015.12.07 12:38:35 | 000,523,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe [2015.12.07 12:38:35 | 000,511,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll [2015.12.07 12:38:35 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll [2015.12.07 12:38:35 | 000,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll [2015.12.07 12:38:35 | 000,458,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll [2015.12.07 12:38:35 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll [2015.12.07 12:38:35 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll [2015.12.07 12:38:35 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptngc.dll [2015.12.07 12:38:35 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2015.12.07 12:38:35 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll [2015.12.07 12:38:35 | 000,264,192 | ---- | C] (Nokia) -- C:\WINDOWS\SysNative\NmaDirect.dll [2015.12.07 12:38:35 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll [2015.12.07 12:38:35 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll [2015.12.07 12:38:35 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll |
|
26.12.2015, 12:01
| #2 |
| | Strato-Account versendet Spam - Spoofing oder Malware?Code:
ATTFilter [2015.12.07 12:38:35 | 000,205,824 | ---- | C] (Nokia) -- C:\WINDOWS\SysWow64\NmaDirect.dll [2015.12.07 12:38:35 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-AppModelExecEvents.dll [2015.12.07 12:38:35 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll [2015.12.07 12:38:35 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll [2015.12.07 12:38:35 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe [2015.12.07 12:38:35 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ETWCoreUIComponentsResources.dll [2015.12.07 12:38:35 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ETWCoreUIComponentsResources.dll [2015.12.07 12:38:35 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll [2015.12.07 12:38:35 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll [2015.12.07 12:38:35 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll [2015.12.07 12:38:35 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll [2015.12.07 12:38:35 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll [2015.12.07 12:38:35 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll [2015.12.07 12:38:35 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll [2015.12.07 12:38:35 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll [2015.12.07 12:38:35 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll [2015.12.07 12:38:35 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll [2015.12.07 12:38:35 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll [2015.12.07 12:38:35 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll [2015.12.07 12:38:35 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll [2015.12.07 12:38:35 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll [2015.12.07 12:38:35 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll [2015.12.07 12:38:35 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManagerProxy.dll [2015.12.07 12:38:35 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll [2015.12.07 12:38:35 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll [2015.12.07 12:38:35 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthTokenBrokerExt.dll [2015.12.07 12:38:35 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll [2015.12.07 12:38:35 | 000,058,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll [2015.12.07 12:38:35 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll [2015.12.07 12:38:35 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll [2015.12.07 12:38:35 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll [2015.12.07 12:38:35 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll [2015.12.07 12:38:35 | 000,051,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsUtilsV2.dll [2015.12.07 12:38:35 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthTokenBrokerExt.dll [2015.12.07 12:38:35 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll [2015.12.07 12:38:35 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll [2015.12.07 12:38:35 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthManagerProxy.dll [2015.12.07 12:38:35 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2015.12.07 12:38:35 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCoreRes.dll [2015.12.07 12:38:35 | 000,035,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe [2015.12.07 12:38:35 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2015.12.07 12:38:35 | 000,032,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe [2015.12.07 12:38:35 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringconfigsp.dll [2015.12.07 12:38:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll [2015.12.07 12:38:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll [2015.12.07 12:38:35 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll [2015.12.07 12:38:35 | 000,026,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2015.12.07 12:38:35 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll [2015.12.07 12:38:35 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IcsEntitlementHost.exe [2015.12.07 12:38:35 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll [2015.12.07 12:38:35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll [2015.12.07 12:38:35 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll [2015.12.07 12:38:35 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll [2015.12.07 12:38:35 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll [2015.12.07 12:38:35 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll [2015.12.07 12:38:35 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll [2015.12.07 12:38:34 | 001,443,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll [2015.12.07 12:38:34 | 001,268,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll [2015.12.07 12:38:34 | 001,139,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll [2015.12.07 12:38:34 | 000,911,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll [2015.12.07 12:38:34 | 000,793,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll [2015.12.07 12:38:34 | 000,675,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll [2015.12.07 12:38:34 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll [2015.12.07 12:38:34 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll [2015.12.07 12:38:34 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys [2015.12.07 12:38:34 | 000,095,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys [2015.12.07 12:38:34 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCoreRes.dll [2015.12.07 12:37:21 | 012,039,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NlsLexicons0007.dll [2015.12.07 12:37:21 | 012,039,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NlsLexicons0007.dll [2015.12.07 12:37:21 | 011,602,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\prm0007.dll [2015.12.07 12:37:21 | 002,088,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NlsData0007.dll [2015.12.07 12:37:21 | 001,996,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NlsData0007.dll [2015.12.07 12:37:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer [2015.12.07 12:37:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\drivers\de-DE [2015.12.07 12:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\drivers\de-DE [2015.12.07 12:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\de-DE [2015.12.07 12:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\de [2015.12.07 12:37:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\de [2015.12.07 12:36:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rdvgkmd.sys.mui [2015.12.07 12:36:53 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rfxvmt.sys.mui [2015.12.07 12:36:52 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\synth3dvsc.sys.mui [2015.12.07 12:36:52 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\netvsc.sys.mui [2015.12.07 12:36:52 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vmstorfl.sys.mui [2015.12.07 12:36:52 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\dmvsc.sys.mui [2015.12.07 12:36:52 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbrpm.sys.mui [2015.12.07 12:36:51 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\fvevol.sys.mui [2015.12.07 12:36:47 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\de-DE\NdisImPlatform.sys.mui [2015.12.07 12:36:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\de-DE\ndiscap.sys.mui [2015.12.07 12:36:47 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\de-DE\wfplwfs.sys.mui [2015.12.07 12:36:45 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\nwifi.sys.mui [2015.12.07 12:36:44 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\http.sys.mui [2015.12.07 12:36:44 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\NdisImPlatform.sys.mui [2015.12.07 12:36:44 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mslldp.sys.mui [2015.12.07 12:36:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tunnel.sys.mui [2015.12.07 12:36:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\refsv1.sys.mui [2015.12.07 12:36:44 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\modem.sys.mui [2015.12.07 12:36:44 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\agilevpn.sys.mui [2015.12.07 12:36:44 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wudfpf.sys.mui [2015.12.07 12:36:44 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\volmgrx.sys.mui [2015.12.07 12:36:44 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\NdisVirtualBus.sys.mui [2015.12.07 12:36:44 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ws2ifsl.sys.mui [2015.12.07 12:36:43 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tcpip.sys.mui [2015.12.07 12:36:43 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ntfs.sys.mui [2015.12.07 12:36:43 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\srv2.sys.mui [2015.12.07 12:36:43 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ndis.sys.mui [2015.12.07 12:36:43 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mrxsmb.sys.mui [2015.12.07 12:36:43 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\afd.sys.mui [2015.12.07 12:36:43 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mup.sys.mui [2015.12.07 12:36:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\storqosflt.sys.mui [2015.12.07 12:36:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ndiscap.sys.mui [2015.12.07 12:36:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rdbss.sys.mui [2015.12.07 12:36:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\fltmgr.sys.mui [2015.12.07 12:36:43 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ndisuio.sys.mui [2015.12.07 12:36:43 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wfplwfs.sys.mui [2015.12.07 12:36:43 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wdf01000.sys.mui [2015.12.07 12:36:43 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\scfilter.sys.mui [2015.12.07 12:36:43 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\partmgr.sys.mui [2015.12.07 12:36:43 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mountmgr.sys.mui [2015.12.07 12:36:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\luafv.sys.mui [2015.12.07 12:36:42 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wof.sys.mui [2015.12.07 12:36:42 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mshidumdf.sys.mui [2015.12.07 12:36:41 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\volsnap.sys.mui [2015.12.07 12:36:41 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\spaceport.sys.mui [2015.12.07 12:36:41 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbport.sys.mui [2015.12.07 12:36:41 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBHUB3.SYS.mui [2015.12.07 12:36:41 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pacer.sys.mui [2015.12.07 12:36:41 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbhub.sys.mui [2015.12.07 12:36:41 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBXHCI.SYS.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\processr.sys.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\intelppm.sys.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\amdppm.sys.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\amdk8.sys.mui [2015.12.07 12:36:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vhdmp.sys.mui [2015.12.07 12:36:41 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vdrvroot.sys.mui [2015.12.07 12:36:41 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\serial.sys.mui [2015.12.07 12:36:41 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\1394ohci.sys.mui [2015.12.07 12:36:41 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\acpi.sys.mui [2015.12.07 12:36:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\i8042prt.sys.mui [2015.12.07 12:36:41 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tpm.sys.mui [2015.12.07 12:36:41 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ataport.sys.mui [2015.12.07 12:36:41 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pci.sys.mui [2015.12.07 12:36:41 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\battc.sys.mui [2015.12.07 12:36:41 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hidclass.sys.mui [2015.12.07 12:36:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\IPMIDrv.sys.mui [2015.12.07 12:36:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\disk.sys.mui [2015.12.07 12:36:41 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\sermouse.sys.mui [2015.12.07 12:36:41 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\kbdclass.sys.mui [2015.12.07 12:36:41 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mouclass.sys.mui [2015.12.07 12:36:41 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wacompen.sys.mui [2015.12.07 12:36:41 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\isapnp.sys.mui [2015.12.07 12:36:41 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tsusbflt.sys.mui [2015.12.07 12:36:41 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\parport.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbehci.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\umbus.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mssmbios.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mouhid.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vhf.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBSTOR.SYS.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ULIAGPKX.SYS.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\UAGP35.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rdpdr.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\qwavedrv.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\NV_AGP.SYS.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\MTConfig.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\kbdhid.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\GAGP30KX.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\cdrom.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\AGP440.sys.mui [2015.12.07 12:36:41 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\volmgr.sys.mui [2015.12.07 12:36:41 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pdc.sys.mui [2015.12.07 12:36:41 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\msgpiowin32.sys.mui [2015.12.07 12:36:40 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthport.sys.mui [2015.12.07 12:36:40 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wmbclass.sys.mui [2015.12.07 12:36:40 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthLEEnum.sys.mui [2015.12.07 12:36:40 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\EhStorTcgDrv.sys.mui [2015.12.07 12:36:40 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\sdbus.sys.mui [2015.12.07 12:36:40 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\dumpsd.sys.mui [2015.12.07 12:36:40 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hidbth.sys.mui [2015.12.07 12:36:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pcmcia.sys.mui [2015.12.07 12:36:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthpan.sys.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\portcls.sys.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hdaudbus.sys.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthA2DP.sys.mui [2015.12.07 12:36:40 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hidi2c.sys.mui [2015.12.07 12:36:40 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthMini.SYS.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\serscan.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\sdstor.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rndismpx.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rndismp6.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\HdAudio.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BTHUSB.SYS.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthhfenum.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbvideo.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBAUDIO.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rfcomm.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pnpmem.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthenum.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthAvrcpTg.sys.mui [2015.12.07 12:36:40 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthhfHid.sys.mui [2015.12.07 12:35:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\Microsoft [2015.12.07 12:34:59 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2015.12.07 12:34:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2015.12.07 12:34:59 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2015.12.07 12:34:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2015.12.07 12:34:47 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll [2015.12.07 12:34:47 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2015.12.07 12:34:47 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe [2015.12.07 12:34:46 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll [2015.12.07 12:34:46 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll [2015.12.07 12:34:46 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe [2015.12.07 12:27:39 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\ActiveSync [2015.12.07 03:46:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Templates [2015.12.07 03:46:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Start Menu [2015.12.07 03:46:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents [2015.12.07 03:46:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Desktop [2015.12.07 03:46:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data [2015.12.07 03:42:45 | 002,718,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll [2015.12.07 03:41:41 | 000,000,000 | --SD | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft [2015.12.07 03:41:41 | 000,000,000 | R-SD | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell [2015.12.07 03:41:41 | 000,000,000 | R--D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2015.12.07 03:41:41 | 000,000,000 | R--D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2015.12.07 03:41:41 | 000,000,000 | R--D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\AppData\Local\Temporary Internet Files [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Templates [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Start Menu [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\SendTo [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Recent [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\PrintHood [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\NetHood [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Documents\My Videos [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Documents\My Pictures [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Documents\My Music [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\My Documents [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Local Settings [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\AppData\Local\History [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Cookies [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\Application Data [2015.12.07 03:41:41 | 000,000,000 | -HSD | C] -- C:\Users\Lukas\AppData\Local\Application Data [2015.12.07 03:41:41 | 000,000,000 | -H-D | C] -- C:\Users\Lukas\AppData [2015.12.07 03:41:41 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Temp [2015.12.07 03:41:41 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Local\Microsoft [2015.12.07 03:41:41 | 000,000,000 | ---D | C] -- C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2015.12.07 03:41:04 | 006,884,984 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll [2015.12.07 03:41:04 | 003,496,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll [2015.12.07 03:41:04 | 002,558,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll [2015.12.07 03:41:04 | 000,385,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll [2015.12.07 03:41:04 | 000,062,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll [2015.12.07 03:41:04 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2015.12.07 03:41:03 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Uninstall Information [2015.12.07 03:40:59 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2015.12.07 03:40:56 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2015.12.07 03:40:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2015.12.07 03:40:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2015.12.03 17:41:37 | 000,000,000 | ---D | C] -- C:\Users\Lukas\Desktop\Schweineleuchter [2015.12.01 13:51:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dropbox [2015.11.30 12:38:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft [2015.11.30 12:27:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Lavasoft [1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2015.12.26 11:26:17 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys [2015.12.26 11:25:43 | 000,001,019 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2015.12.26 11:20:11 | 000,000,068 | RHS- | M] () -- C:\WINDOWS\SysNative\drivers\WUDFPf.winsecurity [2015.12.26 11:20:06 | 000,000,068 | RHS- | M] () -- C:\WINDOWS\SysNative\drivers\WdfLdr.winsecurity [2015.12.26 10:56:05 | 000,001,224 | ---- | M] () -- C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job [2015.12.25 13:56:00 | 000,001,220 | ---- | M] () -- C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job [2015.12.25 12:40:05 | 2543,951,871 | -HS- | M] () -- C:\hiberfil.sys [2015.12.25 12:40:05 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2015.12.24 15:51:20 | 000,490,166 | ---- | M] () -- C:\Users\Lukas\Desktop\blueshell-40.jpg [2015.12.23 14:27:39 | 001,787,412 | ---- | M] () -- C:\Users\Lukas\Desktop\Mediterana-Gutschein2.pdf [2015.12.23 14:27:37 | 001,787,416 | ---- | M] () -- C:\Users\Lukas\Desktop\Mediterana-Gutschein1.pdf [2015.12.23 09:53:14 | 001,799,166 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2015.12.23 09:53:14 | 000,773,364 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat [2015.12.23 09:53:14 | 000,734,296 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2015.12.23 09:53:14 | 000,155,006 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat [2015.12.23 09:53:14 | 000,138,836 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2015.12.21 10:00:47 | 000,000,004 | -H-- | M] () -- C:\ProgramData\cm-lock [2015.12.21 10:00:30 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys [2015.12.17 17:39:30 | 000,001,217 | ---- | M] () -- C:\Users\Public\Desktop\Avira Launcher.lnk [2015.12.15 20:33:37 | 000,146,696 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avipbb.sys [2015.12.15 20:33:37 | 000,135,880 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avgntflt.sys [2015.12.15 20:33:37 | 000,073,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avnetflt.sys [2015.12.15 20:33:37 | 000,035,488 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avkmgr.sys [2015.12.10 21:18:26 | 000,001,456 | ---- | M] () -- C:\Users\Lukas\AppData\Local\Adobe Save for Web 13.0 Prefs [2015.12.10 10:30:07 | 005,033,248 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2015.12.10 10:30:07 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2015.12.08 21:09:48 | 000,001,407 | ---- | M] () -- C:\Users\Lukas\Desktop\CCleaner.lnk [2015.12.08 20:43:08 | 000,001,002 | ---- | M] () -- C:\Users\Lukas\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk [2015.12.08 19:21:46 | 000,000,984 | ---- | M] () -- C:\Users\Lukas\Desktop\jEdit.lnk [2015.12.08 18:37:42 | 000,000,947 | ---- | M] () -- C:\Users\Lukas\Desktop\HTML Editor.lnk [2015.12.07 12:38:39 | 002,126,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl [2015.12.07 12:38:39 | 002,049,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl [2015.12.07 12:38:39 | 000,870,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll [2015.12.07 12:38:39 | 000,803,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll [2015.12.07 12:38:39 | 000,783,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll [2015.12.07 12:38:39 | 000,536,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2015.12.07 12:38:39 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll [2015.12.07 12:38:39 | 000,516,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll [2015.12.07 12:38:39 | 000,408,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll [2015.12.07 12:38:39 | 000,369,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe [2015.12.07 12:38:39 | 000,366,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll [2015.12.07 12:38:39 | 000,340,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll [2015.12.07 12:38:39 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.exe [2015.12.07 12:38:39 | 000,275,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll [2015.12.07 12:38:39 | 000,220,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe [2015.12.07 12:38:39 | 000,110,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll [2015.12.07 12:38:39 | 000,088,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\remoteaudioendpoint.dll [2015.12.07 12:38:39 | 000,073,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\remoteaudioendpoint.dll [2015.12.07 12:38:39 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppCapture.dll [2015.12.07 12:38:39 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll [2015.12.07 12:38:39 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll [2015.12.07 12:38:39 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcastdvr.proxy.dll [2015.12.07 12:38:37 | 011,545,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2015.12.07 12:38:37 | 009,918,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2015.12.07 12:38:37 | 007,476,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2015.12.07 12:38:37 | 006,572,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll [2015.12.07 12:38:37 | 003,993,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll [2015.12.07 12:38:37 | 001,814,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll [2015.12.07 12:38:37 | 001,713,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll [2015.12.07 12:38:37 | 000,957,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll [2015.12.07 12:38:37 | 000,912,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usermgr.dll [2015.12.07 12:38:37 | 000,795,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll [2015.12.07 12:38:37 | 000,704,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CellularAPI.dll [2015.12.07 12:38:37 | 000,674,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll [2015.12.07 12:38:37 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll [2015.12.07 12:38:37 | 000,630,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe [2015.12.07 12:38:37 | 000,623,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll [2015.12.07 12:38:37 | 000,586,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll [2015.12.07 12:38:37 | 000,538,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWanAPI.dll [2015.12.07 12:38:37 | 000,517,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv [2015.12.07 12:38:37 | 000,515,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LogonController.dll [2015.12.07 12:38:37 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll [2015.12.07 12:38:37 | 000,440,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe [2015.12.07 12:38:37 | 000,431,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWanAPI.dll [2015.12.07 12:38:37 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LogonController.dll [2015.12.07 12:38:37 | 000,416,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll [2015.12.07 12:38:37 | 000,414,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe [2015.12.07 12:38:37 | 000,365,568 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2015.12.07 12:38:37 | 000,334,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll [2015.12.07 12:38:37 | 000,296,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll [2015.12.07 12:38:37 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserMgrProxy.dll [2015.12.07 12:38:37 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll [2015.12.07 12:38:37 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserMgrProxy.dll [2015.12.07 12:38:37 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provops.dll [2015.12.07 12:38:37 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll [2015.12.07 12:38:37 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcertinst.exe [2015.12.07 12:38:37 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCsp.dll [2015.12.07 12:38:37 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll [2015.12.07 12:38:37 | 000,092,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll [2015.12.07 12:38:37 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NFCProvisioningPlugin.dll [2015.12.07 12:38:37 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll [2015.12.07 12:38:37 | 000,080,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwapi.dll [2015.12.07 12:38:37 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BarcodeProvisioningPlugin.dll [2015.12.07 12:38:37 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll [2015.12.07 12:38:37 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssign32.dll [2015.12.07 12:38:37 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwancfg.dll [2015.12.07 12:38:37 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll [2015.12.07 12:38:37 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ihvrilproxy.dll [2015.12.07 12:38:37 | 000,063,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wwapi.dll [2015.12.07 12:38:37 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssign32.dll [2015.12.07 12:38:37 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rilproxy.dll [2015.12.07 12:38:37 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemovableMediaProvisioningPlugin.dll [2015.12.07 12:38:37 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wwanpref.dll [2015.12.07 12:38:37 | 000,045,568 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2015.12.07 12:38:37 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsplib.dll [2015.12.07 12:38:37 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.proxy.dll [2015.12.07 12:38:37 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe [2015.12.07 12:38:37 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe [2015.12.07 12:38:37 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Management.Provisioning.ProxyStub.dll [2015.12.07 12:38:37 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll [2015.12.07 12:38:37 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll [2015.12.07 12:38:35 | 007,199,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll [2015.12.07 12:38:35 | 005,202,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll [2015.12.07 12:38:35 | 003,355,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll [2015.12.07 12:38:35 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll [2015.12.07 12:38:35 | 002,772,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll [2015.12.07 12:38:35 | 002,680,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll [2015.12.07 12:38:35 | 002,653,816 | ---- | M] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll [2015.12.07 12:38:35 | 002,624,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll [2015.12.07 12:38:35 | 002,444,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll [2015.12.07 12:38:35 | 002,185,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll [2015.12.07 12:38:35 | 002,001,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll [2015.12.07 12:38:35 | 001,944,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll [2015.12.07 12:38:35 | 001,860,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll [2015.12.07 12:38:35 | 001,859,448 | ---- | M] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll [2015.12.07 12:38:35 | 001,395,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll [2015.12.07 12:38:35 | 001,387,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2015.12.07 12:38:35 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.Resources.dll [2015.12.07 12:38:35 | 001,223,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Unistore.dll [2015.12.07 12:38:35 | 001,056,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll [2015.12.07 12:38:35 | 001,042,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingOnlineServices.dll [2015.12.07 12:38:35 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll [2015.12.07 12:38:35 | 000,948,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll [2015.12.07 12:38:35 | 000,948,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Unistore.dll [2015.12.07 12:38:35 | 000,938,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll [2015.12.07 12:38:35 | 000,870,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\modernexecserver.dll [2015.12.07 12:38:35 | 000,809,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2015.12.07 12:38:35 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll [2015.12.07 12:38:35 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll [2015.12.07 12:38:35 | 000,711,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll [2015.12.07 12:38:35 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingOnlineServices.dll [2015.12.07 12:38:35 | 000,704,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2015.12.07 12:38:35 | 000,698,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll [2015.12.07 12:38:35 | 000,697,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll [2015.12.07 12:38:35 | 000,647,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll [2015.12.07 12:38:35 | 000,589,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApi.dll [2015.12.07 12:38:35 | 000,586,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll [2015.12.07 12:38:35 | 000,540,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe [2015.12.07 12:38:35 | 000,523,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe [2015.12.07 12:38:35 | 000,511,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll [2015.12.07 12:38:35 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll [2015.12.07 12:38:35 | 000,470,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApi.dll [2015.12.07 12:38:35 | 000,458,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll [2015.12.07 12:38:35 | 000,345,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll [2015.12.07 12:38:35 | 000,342,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll [2015.12.07 12:38:35 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptngc.dll [2015.12.07 12:38:35 | 000,303,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2015.12.07 12:38:35 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll [2015.12.07 12:38:35 | 000,264,192 | ---- | M] (Nokia) -- C:\WINDOWS\SysNative\NmaDirect.dll [2015.12.07 12:38:35 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll [2015.12.07 12:38:35 | 000,241,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptngc.dll [2015.12.07 12:38:35 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll [2015.12.07 12:38:35 | 000,205,824 | ---- | M] (Nokia) -- C:\WINDOWS\SysWow64\NmaDirect.dll [2015.12.07 12:38:35 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-AppModelExecEvents.dll [2015.12.07 12:38:35 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll [2015.12.07 12:38:35 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringservice.dll [2015.12.07 12:38:35 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceCensus.exe [2015.12.07 12:38:35 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\SensorsCx.dll [2015.12.07 12:38:35 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ETWCoreUIComponentsResources.dll [2015.12.07 12:38:35 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ETWCoreUIComponentsResources.dll [2015.12.07 12:38:35 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll [2015.12.07 12:38:35 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll [2015.12.07 12:38:35 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll [2015.12.07 12:38:35 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MapControls.dll [2015.12.07 12:38:35 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MapControls.dll [2015.12.07 12:38:35 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll [2015.12.07 12:38:35 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offlinelsa.dll [2015.12.07 12:38:35 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll [2015.12.07 12:38:35 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll [2015.12.07 12:38:35 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll [2015.12.07 12:38:35 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll [2015.12.07 12:38:35 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll [2015.12.07 12:38:35 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll [2015.12.07 12:38:35 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll [2015.12.07 12:38:35 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll [2015.12.07 12:38:35 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManagerProxy.dll [2015.12.07 12:38:35 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll [2015.12.07 12:38:35 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosHostClient.dll [2015.12.07 12:38:35 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthTokenBrokerExt.dll [2015.12.07 12:38:35 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll [2015.12.07 12:38:35 | 000,058,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll [2015.12.07 12:38:35 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll [2015.12.07 12:38:35 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosResource.dll [2015.12.07 12:38:35 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosResource.dll [2015.12.07 12:38:35 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringclient.dll [2015.12.07 12:38:35 | 000,051,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsUtilsV2.dll [2015.12.07 12:38:35 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthTokenBrokerExt.dll [2015.12.07 12:38:35 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosHostClient.dll [2015.12.07 12:38:35 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapstoasttask.dll [2015.12.07 12:38:35 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XblAuthManagerProxy.dll [2015.12.07 12:38:35 | 000,037,376 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2015.12.07 12:38:35 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCoreRes.dll [2015.12.07 12:38:35 | 000,035,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe [2015.12.07 12:38:35 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2015.12.07 12:38:35 | 000,032,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfpmp.exe [2015.12.07 12:38:35 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tetheringconfigsp.dll [2015.12.07 12:38:35 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll [2015.12.07 12:38:35 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll [2015.12.07 12:38:35 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nativemap.dll [2015.12.07 12:38:35 | 000,026,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2015.12.07 12:38:35 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll [2015.12.07 12:38:35 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IcsEntitlementHost.exe [2015.12.07 12:38:35 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvcProxy.dll [2015.12.07 12:38:35 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosTrace.dll [2015.12.07 12:38:35 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosTrace.dll [2015.12.07 12:38:35 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Microsoft-Windows-MosHost.dll [2015.12.07 12:38:35 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Microsoft-Windows-MosHost.dll [2015.12.07 12:38:35 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlStringsRes.dll [2015.12.07 12:38:35 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlStringsRes.dll [2015.12.07 12:38:34 | 001,443,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll [2015.12.07 12:38:34 | 001,268,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.Resources.dll [2015.12.07 12:38:34 | 001,139,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll [2015.12.07 12:38:34 | 000,911,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll [2015.12.07 12:38:34 | 000,793,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll [2015.12.07 12:38:34 | 000,675,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll [2015.12.07 12:38:34 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Bluetooth.dll [2015.12.07 12:38:34 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Internal.Bluetooth.dll [2015.12.07 12:38:34 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\capimg.sys [2015.12.07 12:38:34 | 000,095,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys [2015.12.07 12:38:34 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCoreRes.dll [2015.12.07 12:37:06 | 000,305,634 | ---- | M] () -- C:\WINDOWS\SysNative\perfi007.dat [2015.12.07 12:37:06 | 000,040,390 | ---- | M] () -- C:\WINDOWS\SysNative\perfd007.dat [2015.12.07 12:36:53 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rdvgkmd.sys.mui [2015.12.07 12:36:53 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rfxvmt.sys.mui [2015.12.07 12:36:52 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\synth3dvsc.sys.mui [2015.12.07 12:36:52 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\netvsc.sys.mui [2015.12.07 12:36:52 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vmstorfl.sys.mui [2015.12.07 12:36:52 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\dmvsc.sys.mui [2015.12.07 12:36:52 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbrpm.sys.mui [2015.12.07 12:36:51 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\fvevol.sys.mui [2015.12.07 12:36:48 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\WpdMtpDr.dll.mui [2015.12.07 12:36:47 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\de-DE\NdisImPlatform.sys.mui [2015.12.07 12:36:47 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\de-DE\ndiscap.sys.mui [2015.12.07 12:36:47 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\de-DE\wfplwfs.sys.mui [2015.12.07 12:36:47 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drivers\UMDF\de-DE\SensorsCx.dll.mui [2015.12.07 12:36:45 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\nwifi.sys.mui [2015.12.07 12:36:44 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\http.sys.mui [2015.12.07 12:36:44 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\NdisImPlatform.sys.mui [2015.12.07 12:36:44 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mslldp.sys.mui [2015.12.07 12:36:44 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tunnel.sys.mui [2015.12.07 12:36:44 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\refsv1.sys.mui [2015.12.07 12:36:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\modem.sys.mui [2015.12.07 12:36:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\agilevpn.sys.mui [2015.12.07 12:36:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wudfpf.sys.mui [2015.12.07 12:36:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\volmgrx.sys.mui [2015.12.07 12:36:44 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\NdisVirtualBus.sys.mui [2015.12.07 12:36:44 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ws2ifsl.sys.mui [2015.12.07 12:36:43 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tcpip.sys.mui [2015.12.07 12:36:43 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ntfs.sys.mui [2015.12.07 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\srv2.sys.mui [2015.12.07 12:36:43 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ndis.sys.mui [2015.12.07 12:36:43 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mrxsmb.sys.mui [2015.12.07 12:36:43 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\afd.sys.mui [2015.12.07 12:36:43 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mup.sys.mui [2015.12.07 12:36:43 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\SensorsHid.dll.mui [2015.12.07 12:36:43 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\storqosflt.sys.mui [2015.12.07 12:36:43 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\mgtdyn.dll.mui [2015.12.07 12:36:43 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\idtsec.dll.mui [2015.12.07 12:36:43 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ndiscap.sys.mui [2015.12.07 12:36:43 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rdbss.sys.mui [2015.12.07 12:36:43 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\fltmgr.sys.mui [2015.12.07 12:36:43 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ndisuio.sys.mui [2015.12.07 12:36:43 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wfplwfs.sys.mui [2015.12.07 12:36:43 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wdf01000.sys.mui [2015.12.07 12:36:43 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\scfilter.sys.mui [2015.12.07 12:36:43 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\partmgr.sys.mui [2015.12.07 12:36:43 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mountmgr.sys.mui [2015.12.07 12:36:43 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\SensorsCx.dll.mui [2015.12.07 12:36:43 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\hidscanner.dll.mui [2015.12.07 12:36:42 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\luafv.sys.mui [2015.12.07 12:36:42 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wof.sys.mui [2015.12.07 12:36:42 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mshidumdf.sys.mui [2015.12.07 12:36:41 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\volsnap.sys.mui [2015.12.07 12:36:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\spaceport.sys.mui [2015.12.07 12:36:41 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbport.sys.mui [2015.12.07 12:36:41 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBHUB3.SYS.mui [2015.12.07 12:36:41 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pacer.sys.mui [2015.12.07 12:36:41 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbhub.sys.mui [2015.12.07 12:36:41 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBXHCI.SYS.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\processr.sys.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\intelppm.sys.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\amdppm.sys.mui [2015.12.07 12:36:41 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\amdk8.sys.mui [2015.12.07 12:36:41 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vhdmp.sys.mui [2015.12.07 12:36:41 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vdrvroot.sys.mui [2015.12.07 12:36:41 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\serial.sys.mui [2015.12.07 12:36:41 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\1394ohci.sys.mui [2015.12.07 12:36:41 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\acpi.sys.mui [2015.12.07 12:36:41 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\i8042prt.sys.mui [2015.12.07 12:36:41 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tpm.sys.mui [2015.12.07 12:36:41 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ataport.sys.mui [2015.12.07 12:36:41 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pci.sys.mui [2015.12.07 12:36:41 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\battc.sys.mui [2015.12.07 12:36:41 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hidclass.sys.mui [2015.12.07 12:36:41 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\IPMIDrv.sys.mui [2015.12.07 12:36:41 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\disk.sys.mui [2015.12.07 12:36:41 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\sermouse.sys.mui [2015.12.07 12:36:41 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\kbdclass.sys.mui [2015.12.07 12:36:41 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mouclass.sys.mui [2015.12.07 12:36:41 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wacompen.sys.mui [2015.12.07 12:36:41 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\isapnp.sys.mui [2015.12.07 12:36:41 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\tsusbflt.sys.mui [2015.12.07 12:36:41 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\parport.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbehci.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\umbus.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mssmbios.sys.mui [2015.12.07 12:36:41 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\mouhid.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\vhf.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBSTOR.SYS.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\ULIAGPKX.SYS.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\UAGP35.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rdpdr.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\qwavedrv.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\NV_AGP.SYS.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\MTConfig.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\kbdhid.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\GAGP30KX.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\cdrom.sys.mui [2015.12.07 12:36:41 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\AGP440.sys.mui [2015.12.07 12:36:41 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\volmgr.sys.mui [2015.12.07 12:36:41 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pdc.sys.mui [2015.12.07 12:36:41 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\msgpiowin32.sys.mui [2015.12.07 12:36:40 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthport.sys.mui [2015.12.07 12:36:40 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\wmbclass.sys.mui [2015.12.07 12:36:40 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthLEEnum.sys.mui [2015.12.07 12:36:40 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\EhStorTcgDrv.sys.mui [2015.12.07 12:36:40 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\WUDFUsbccidDriver.dll.mui [2015.12.07 12:36:40 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\sdbus.sys.mui [2015.12.07 12:36:40 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\dumpsd.sys.mui [2015.12.07 12:36:40 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hidbth.sys.mui [2015.12.07 12:36:40 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pcmcia.sys.mui [2015.12.07 12:36:40 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthpan.sys.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\portcls.sys.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UMDF\de-DE\HidBthLE.dll.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hdaudbus.sys.mui [2015.12.07 12:36:40 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthA2DP.sys.mui [2015.12.07 12:36:40 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\hidi2c.sys.mui [2015.12.07 12:36:40 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthMini.SYS.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\serscan.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\sdstor.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rndismpx.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rndismp6.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\HdAudio.sys.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BTHUSB.SYS.mui [2015.12.07 12:36:40 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthhfenum.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\usbvideo.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\USBAUDIO.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\rfcomm.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\pnpmem.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\bthenum.sys.mui [2015.12.07 12:36:40 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthAvrcpTg.sys.mui [2015.12.07 12:36:40 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\de-DE\BthhfHid.sys.mui [2015.12.07 12:33:16 | 000,000,000 | -H-- | M] () -- C:\$WINRE_BACKUP_PARTITION.MARKER [2015.12.07 05:57:01 | 000,973,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll [2015.12.07 05:55:42 | 001,281,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll [2015.12.07 05:49:31 | 000,412,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifitask.exe [2015.12.07 05:48:29 | 000,696,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll [2015.12.07 05:48:29 | 000,115,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll [2015.12.07 05:48:25 | 000,502,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll [2015.12.07 05:48:24 | 000,084,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll [2015.12.07 05:48:23 | 002,544,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2015.12.07 05:48:19 | 000,794,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll [2015.12.07 05:48:14 | 001,065,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll [2015.12.07 05:48:12 | 000,337,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll [2015.12.07 05:48:11 | 000,526,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll [2015.12.07 05:48:11 | 000,498,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll [2015.12.07 05:48:10 | 001,299,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll [2015.12.07 05:48:10 | 001,020,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2015.12.07 05:48:09 | 001,155,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll [2015.12.07 05:48:09 | 001,092,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll [2015.12.07 05:48:08 | 002,180,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2015.12.07 05:48:08 | 000,823,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll [2015.12.07 05:48:08 | 000,670,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll [2015.12.07 05:48:07 | 000,245,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll [2015.12.07 05:48:02 | 000,450,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll [2015.12.07 05:48:01 | 001,118,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll [2015.12.07 05:48:01 | 000,462,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll [2015.12.07 05:48:00 | 000,983,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll [2015.12.07 05:48:00 | 000,884,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll [2015.12.07 05:48:00 | 000,289,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll [2015.12.07 05:47:58 | 000,116,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll [2015.12.07 05:47:57 | 000,925,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll [2015.12.07 05:47:57 | 000,898,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2015.12.07 05:47:54 | 000,716,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll [2015.12.07 05:45:46 | 000,264,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll [2015.12.07 05:15:40 | 001,035,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XboxNetApiSvc.dll [2015.12.07 05:15:08 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.XboxLive.ProxyStub.dll [2015.12.07 05:10:37 | 000,824,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebFilter.dll [2015.12.07 05:09:36 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageUsage.dll [2015.12.07 05:09:27 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll [2015.12.07 05:09:07 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\flvprophandler.dll [2015.12.07 05:07:43 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wificonnapi.dll [2015.12.07 05:07:34 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProvPluginEng.dll [2015.12.07 05:07:13 | 016,984,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2015.12.07 05:06:52 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KnobsCore.dll [2015.12.07 05:06:38 | 000,199,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe [2015.12.07 05:06:32 | 000,572,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WpcWebFilter.dll [2015.12.07 05:05:28 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BackgroundTransferHost.exe [2015.12.07 05:05:15 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provisioningcsp.dll [2015.12.07 05:04:28 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provtool.exe [2015.12.07 05:04:20 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll [2015.12.07 05:03:46 | 013,017,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2015.12.07 05:02:49 | 000,161,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe [2015.12.07 05:02:01 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll [2015.12.07 05:01:43 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BackgroundTransferHost.exe [2015.12.07 05:01:07 | 000,543,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll [2015.12.07 05:00:55 | 000,323,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSFlacDecoder.dll [2015.12.07 05:00:52 | 000,203,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll [2015.12.07 05:00:51 | 000,210,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll [2015.12.07 04:59:52 | 000,286,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provhandlers.dll [2015.12.07 04:59:49 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provengine.dll [2015.12.07 04:59:37 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MBMediaManager.dll [2015.12.07 04:59:16 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provdatastore.dll [2015.12.07 04:58:17 | 000,459,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll [2015.12.07 04:57:48 | 000,387,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll [2015.12.07 04:57:40 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll [2015.12.07 04:57:28 | 000,270,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSFlacDecoder.dll [2015.12.07 04:56:27 | 000,497,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmkvsrcsnk.dll [2015.12.07 04:56:18 | 000,607,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll [2015.12.07 04:55:38 | 007,979,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll [2015.12.07 04:55:02 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll [2015.12.07 04:54:56 | 000,850,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll [2015.12.07 04:54:56 | 000,569,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll [2015.12.07 04:53:28 | 000,381,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmkvsrcsnk.dll [2015.12.07 04:51:16 | 001,318,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wifinetworkmanager.dll [2015.12.07 04:51:00 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll [2015.12.07 04:50:55 | 001,131,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Audio.dll [2015.12.07 04:49:01 | 001,105,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Audio.dll [2015.12.07 04:48:02 | 006,297,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll [2015.12.07 04:47:02 | 003,428,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll [2015.12.07 04:45:53 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll [2015.12.07 04:45:45 | 000,900,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll [2015.12.07 04:45:44 | 002,582,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll [2015.12.07 04:44:48 | 002,796,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll [2015.12.07 04:43:35 | 000,931,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSMPEG2ENC.DLL [2015.12.07 04:43:07 | 002,598,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll [2015.12.07 04:41:02 | 002,061,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll [2015.12.07 04:40:47 | 003,593,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys [2015.12.07 04:40:23 | 001,995,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActiveSyncProvider.dll [2015.12.07 04:40:08 | 001,706,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActiveSyncProvider.dll [2015.12.07 04:39:24 | 000,764,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll [2015.12.07 04:38:14 | 000,871,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSMPEG2ENC.DLL [2015.12.07 04:33:04 | 000,375,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe [2015.12.07 04:32:46 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dialserver.dll [2015.12.07 03:46:36 | 000,000,768 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2015.12.07 03:46:03 | 000,019,053 | ---- | M] () -- C:\WINDOWS\diagwrn.xml [2015.12.07 03:46:03 | 000,019,053 | ---- | M] () -- C:\WINDOWS\diagerr.xml [2015.12.07 03:45:23 | 000,022,840 | ---- | M] () -- C:\WINDOWS\SysNative\emptyregdb.dat [2015.12.07 03:41:06 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2015.12.07 03:41:05 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf [2015.12.07 03:41:05 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf [2015.12.03 11:07:32 | 000,001,309 | ---- | M] () -- C:\Users\Lukas\Desktop\Dropbox.lnk [2015.12.01 01:33:29 | 000,826,872 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe [2015.12.01 01:33:29 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl [1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ] ========== Files Created - No Company Name ========== [2015.12.24 15:51:19 | 000,490,166 | ---- | C] () -- C:\Users\Lukas\Desktop\blueshell-40.jpg [2015.12.23 14:27:39 | 001,787,412 | ---- | C] () -- C:\Users\Lukas\Desktop\Mediterana-Gutschein2.pdf [2015.12.23 14:27:37 | 001,787,416 | ---- | C] () -- C:\Users\Lukas\Desktop\Mediterana-Gutschein1.pdf [2015.12.21 10:00:33 | 000,000,004 | -H-- | C] () -- C:\ProgramData\cm-lock [2015.12.08 21:09:48 | 000,001,407 | ---- | C] () -- C:\Users\Lukas\Desktop\CCleaner.lnk [2015.12.08 20:43:08 | 000,001,002 | ---- | C] () -- C:\Users\Lukas\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk [2015.12.08 19:21:46 | 000,000,984 | ---- | C] () -- C:\Users\Lukas\Desktop\jEdit.lnk [2015.12.08 18:37:42 | 000,000,947 | ---- | C] () -- C:\Users\Lukas\Desktop\HTML Editor.lnk [2015.12.07 12:40:10 | 000,000,619 | ---- | C] () -- C:\WINDOWS\SysWow64\license.rtf [2015.12.07 12:40:10 | 000,000,619 | ---- | C] () -- C:\WINDOWS\SysNative\license.rtf [2015.12.07 12:38:35 | 002,653,816 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll [2015.12.07 12:38:35 | 001,859,448 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll [2015.12.07 12:37:14 | 000,773,364 | ---- | C] () -- C:\WINDOWS\SysNative\perfh007.dat [2015.12.07 12:37:14 | 000,305,634 | ---- | C] () -- C:\WINDOWS\SysNative\perfi007.dat [2015.12.07 12:37:14 | 000,155,006 | ---- | C] () -- C:\WINDOWS\SysNative\perfc007.dat [2015.12.07 12:37:14 | 000,040,390 | ---- | C] () -- C:\WINDOWS\SysNative\perfd007.dat [2015.12.07 12:33:16 | 000,000,000 | -H-- | C] () -- C:\$WINRE_BACKUP_PARTITION.MARKER [2015.12.07 03:44:23 | 2543,951,871 | -HS- | C] () -- C:\hiberfil.sys [2015.12.07 03:43:47 | 000,001,576 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2015.12.07 03:41:41 | 000,000,352 | ---- | C] () -- C:\Users\Lukas\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk [2015.12.07 03:41:41 | 000,000,334 | ---- | C] () -- C:\Users\Lukas\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk [2015.12.07 03:41:09 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2015.12.07 03:41:06 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2015.12.07 03:41:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf [2015.12.07 03:41:05 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_avchv_01009.Wdf [2015.12.07 03:41:04 | 005,165,808 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin [2015.12.07 03:40:32 | 005,033,248 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2015.12.07 03:40:26 | 016,777,216 | -HS- | C] () -- C:\swapfile.sys [2015.12.01 13:51:25 | 000,001,224 | ---- | C] () -- C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job [2015.12.01 13:51:25 | 000,001,220 | ---- | C] () -- C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job [2015.10.30 08:24:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat [2015.10.30 08:24:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT [2015.10.30 08:18:39 | 000,164,224 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll [2015.10.30 08:18:36 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat [2015.10.30 08:18:36 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll [2015.10.30 08:18:34 | 000,157,696 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll [2015.10.30 08:18:34 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll [2015.10.30 08:18:31 | 000,252,928 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll [2015.10.30 08:18:31 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe [2015.10.30 08:18:29 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll [2015.10.30 08:18:29 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll [2015.10.30 08:18:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll [2015.10.30 08:18:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini [2015.10.30 08:18:23 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat [2015.10.30 08:17:40 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2015.10.13 17:51:26 | 037,829,432 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll [2015.10.13 17:21:37 | 000,000,768 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2014.11.29 17:49:11 | 000,000,132 | ---- | C] () -- C:\Users\Lukas\AppData\Roaming\Adobe PNG Format CS6 Prefs [2014.10.28 17:59:10 | 000,032,256 | -HS- | C] () -- C:\WINDOWS\SysWow64\AVSredirect.dll [2014.10.28 17:56:58 | 000,109,712 | RHS- | C] () -- C:\WINDOWS\SysWow64\libbluray.dll [2014.10.28 17:56:57 | 000,188,416 | RHS- | C] () -- C:\WINDOWS\SysWow64\winDCE32.dll [2014.10.28 17:56:57 | 000,112,128 | RHS- | C] () -- C:\WINDOWS\SysWow64\OptimFROG.dll [2014.10.28 17:56:57 | 000,107,520 | RHS- | C] () -- C:\WINDOWS\SysWow64\TAKDSDecoder.dll [2014.10.26 13:55:47 | 000,001,456 | ---- | C] () -- C:\Users\Lukas\AppData\Local\Adobe Save for Web 13.0 Prefs [2014.10.25 18:41:26 | 000,000,132 | ---- | C] () -- C:\Users\Lukas\AppData\Roaming\Adobe BMP Format CS6 Prefs [2014.04.30 19:47:48 | 000,081,920 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_bs-2.3.dll [2014.04.30 19:47:48 | 000,065,536 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_pe-2.3.dll [2014.04.30 19:47:48 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_se-2.3.dll [2014.04.30 19:47:48 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe [2014.04.30 19:47:46 | 000,974,848 | ---- | C] () -- C:\WINDOWS\SysWow64\cis-2.4.dll ========== ZeroAccess Check ========== [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\windows.storage.dll -- [2015.10.30 08:17:59 | 006,601,408 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\windows.storage.dll -- [2015.10.30 08:18:31 | 005,237,336 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015.10.30 08:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2015.10.30 08:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015.10.30 08:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 36 bytes -> C:\Windows:CM_350e5e32237ae60429ff88d3d1c07334bbee01f08c0e6ec7e574ccdd44915bf8 @Alternate Data Stream - 36 bytes -> C:\Windows:CM_029d5cd4c4ecf1a906e5f691cd4a246d22c71d5214109bc2d79e536980981d5d @Alternate Data Stream - 111 bytes -> C:\Users\Lukas\SkyDrive:ms-properties < End of report > Code:
ATTFilter Return-Path: <lukas@godswill.de>
Received: from localhost (localhost [127.0.0.1])
by smtp-d.tvnetwork.hu (Postfix) with ESMTP id 8E2BC9F1EA;
Sat, 26 Dec 2015 07:42:50 +0100 (CET)
X-Spam-Flag: NO
X-Spam-Score: 6.018
X-Spam-Level: ******
X-Spam-Status: No, score=6.018 tagged_above=-5 required=6.31
tests=[ALL_TRUSTED=-1, DATE_IN_FUTURE_12_24=2.489, HTML_MESSAGE=0.001,
T_SURBL_MULTI1=0.01, T_URIBL_BLACK_OVERLAP=0.01, URIBL_BLACK=1.775,
URIBL_JP_SURBL=1.948, URIBL_OB_SURBL=0.785] autolearn=disabled
Received: from smtp-d.tvnetwork.hu ([127.0.0.1])
by localhost (smtp-d.tvnetwork.hu [127.0.0.1]) (amavisd-new, port 10024)
with LMTP id YYCYGTjgiyhp; Sat, 26 Dec 2015 07:42:50 +0100 (CET)
Received: from zion.tvnetwork.hu (mail-a.tvnetwork.hu [IPv6:2a01:be00:0:b:8f:0:1:a])
by smtp-d.tvnetwork.hu (Postfix) with ESMTP id 4DEC29EF5B;
Sat, 26 Dec 2015 07:42:50 +0100 (CET)
Received: from etmnx.com (unknown [5.32.66.102])
(Authenticated sender: goltam@tvnetwork.hu)
by zion.tvnetwork.hu (Postfix) with ESMTPSA id B3007102C2;
Sat, 26 Dec 2015 07:42:48 +0100 (CET)
From: <lukas@godswill.de>
To: "Doreen Kenn" <doreen_kenn@web.de>, "Doris Seimetz"
<doris.seimetz@gymnasium-nippes.de>, "Doris Seimetz"
<seimetzdoris@netcologne.de>
Subject: Fw: new message
Date: Sat, 26 Dec 2015 14:39:07 -0800
Message-ID: <000084778dbe$56f1e5e1$2e7262c8$@godswill.de>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0001_06BE5464.1063B9F9"
X-Mailer: Microsoft Outlook 15.0
Thread-Index: AdE0FYRLVm5+TmvA1pVL2Xp3imqyEg==
Content-Language: en-us
|
|
24.01.2016, 10:08
| #3 |
| | Strato-Account versendet Spam - Spoofing oder Malware? Hey, das Problem ist immer noch akut. Würde mich über Hilfe sehr freuen!
__________________LG Lukas |
|
25.01.2016, 14:03
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Strato-Account versendet Spam - Spoofing oder Malware?Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
26.01.2016, 15:10
| #5 |
| | Strato-Account versendet Spam - Spoofing oder Malware? Mist. Dagegen ist nicht viel zu machen, oder? Die einzige Frage, die ich noch nicht ganz beantworten kann, ist: Woher hat der meine Mail-Kontakte? Die sind theoretisch ja nur in meinem Online-Postfach hinterlegt -.- Schade um die Adresse, die ist inzwischen recht etabliert... |
|
26.01.2016, 15:46
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Strato-Account versendet Spam - Spoofing oder Malware? Darüber wurde schon in diesem Thread philosophiert => http://www.trojaner-board.de/172428-...nden-spam.html
__________________ --> Strato-Account versendet Spam - Spoofing oder Malware? |
|
| Themen zu Strato-Account versendet Spam - Spoofing oder Malware? |
| 100%, antivir, avg, avira, bho, defender, desktop, e-mail, ebay, firefox, format, logfile, malware, mozilla, problem, proxy, realtek, registry, scan, senden, software, spam, svchost.exe, usb, windows, windowsapps |
Strato-Account versendet Spam - Spoofing oder Malware?
Linear-Darstellung
