| |
| |||||||
Log-Analyse und Auswertung: Firefox werbung in neuen tabs + werbung auf jeglichen seiten.Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
22.01.2016, 23:42
| #1 |
 |  Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Servus, wie schon der titel sagt habe ich meist werbung von reimageplus, naja nun habe ich schon ein wenig selbst in angriff genommen was ich wohl hätte nicht machen sollen^^ Habe mir FRST64 Heruntergeladen und auf dem desktop gespeichert, AdwCleaner_5.030 runtergeladen aber nicht über den desktop gestartet, durchlaufen lassen und alles weggehauen was er finden konnt . tdsskiller habe ich auch durchlaufen lassen der hat aber nichts erkannt, liegt aber vll auch daran das ich es vom download ordner aus gestartet habe ich weiß es nicht . Hier nochmal berichtigt auf dem desktop gestartet,hoffe das es richtig ist : Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (22-01-2016 23:19:56)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
() C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8316528 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG
Chrome:
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S3 cpuz138; C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [43304 2015-11-30] (CPUID)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-22] ()
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-01] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-22 23:19 - 2016-01-22 23:20 - 00018765 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-22 23:19 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-21 11:07 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-21 10:15 - 00051200 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00003162 _____ C:\Windows\System32\Tasks\Browser Max
2016-01-21 01:58 - 2016-01-21 01:58 - 00003150 _____ C:\Windows\System32\Tasks\Browser Max2
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-22 23:18 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 23:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-22 22:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-22 22:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-22 22:42 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-22 22:42 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-22 22:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-22 22:14 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-22 22:13 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-22 22:13 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-22 22:13 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-22 22:13 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-22 22:12 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-22 22:12 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:12 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-22 09:44 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-01-21 01:58 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
Einige Dateien in TEMP:
====================
C:\Users\Godlike\AppData\Local\Temp\410cd83c4cb3ea4f078cf76a6fb32361.dll
C:\Users\Godlike\AppData\Local\Temp\532018948649ce2b41018b827bc595f3.dll
C:\Users\Godlike\AppData\Local\Temp\73bb9f9c.exe
C:\Users\Godlike\AppData\Local\Temp\98fec1cbe.dll
C:\Users\Godlike\AppData\Local\Temp\b802a.dll
C:\Users\Godlike\AppData\Local\Temp\b875a87b4.dll
C:\Users\Godlike\AppData\Local\Temp\cf8e2b5e3.dll
C:\Users\Godlike\AppData\Local\Temp\dba40eb.exe
C:\Users\Godlike\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp60jpac.dll
C:\Users\Godlike\AppData\Local\Temp\e63fa933.dll
C:\Users\Godlike\AppData\Local\Temp\e856a7fb7.dll
C:\Users\Godlike\AppData\Local\Temp\eea7d0.dll
C:\Users\Godlike\AppData\Local\Temp\fe50d.dll
C:\Users\Godlike\AppData\Local\Temp\Gw2.exe
C:\Users\Godlike\AppData\Local\Temp\sqlite3.dll
C:\Users\Godlike\AppData\Local\Temp\UNINSTALL.EXE
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-21 10:59
==================== Ende von FRST.txt ============================
HTML-Code: hxxp://filepony.de/download-tdsskiller/ HTML-Code: hxxp://filepony.de/download-frst64/ mfg Ainshval |
|
22.01.2016, 23:47
| #2 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Hier das nächste:
__________________Code:
ATTFilter Adittion:Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-22 23:20:12)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version: - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version: - Blue Mammoth Games)
Browser Max (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\{95BBB557-50F8-82B9-EE41-A834434DB4DE}) (Version: 1.4.9 - Experience Plugin corp) <==== ACHTUNG
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version: - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version: - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version: - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version: - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version: - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version: - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version: - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version: - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {38C4761B-5F01-4D1E-8E74-FCC8BF5499CF} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {3AA2DACA-A27C-4573-892D-1AE57601B8AA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9603F53B-9C79-41BD-A8D0-0770FCD3A564} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00028160 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00012800 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00011264 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat
2015-08-22 07:54 - 2015-08-23 22:51 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-12-14 12:58 - 2016-01-21 09:41 - 50679920 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libcef.dll
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-14 12:58 - 2016-01-21 09:41 - 01882224 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libglesv2.dll
2015-12-14 12:58 - 2016-01-21 09:41 - 00082544 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libegl.dll
2015-08-14 17:58 - 2015-08-23 22:51 - 00005120 _____ () C:\Windows\syswow64\ktmw3232.dll
2016-01-21 03:02 - 2016-01-21 03:02 - 17882304 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E39E1162-1AAA-411B-A02A-846CA9BFFF10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
21-01-2016 17:00:59 Entfernt Realtek High Definition Audio Driver
21-01-2016 17:16:44 Installiert Realtek High Definition Audio Driver
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1730
Startzeit: 01d135cd59c12231
Endzeit: 156
Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe
Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233
Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 233c
Startzeit: 01d12cf4aca80f57
Endzeit: 2698
Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe
Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233
Error: (11/24/2015 10:01:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x17ac
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/23/2015 05:28:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x4958
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/20/2015 06:47:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x76bc
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/17/2015 06:00:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x844c
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/15/2015 04:56:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0xad88
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/13/2015 12:41:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Steam.exe, Version 3.1.81.43 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 280
Startzeit: 01d11e07d08b12ab
Endzeit: 16
Anwendungspfad: D:\Steam\Steam.exe
Berichts-ID: 70cf4151-89fb-11e5-938b-4494fcf2eb50
Error: (11/06/2015 07:57:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1d64
Startzeit: 01d118c4c6edbc16
Endzeit: 112
Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe
Berichts-ID: 3a0bf124-84b8-11e5-a20c-1c6f65d41233
Error: (10/27/2015 11:53:08 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm OneClick.exe, Version 15.0.1001.638 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1350
Startzeit: 01d1109eecb9f609
Endzeit: 15
Anwendungspfad: C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe
Berichts-ID:
Systemfehler:
=============
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:10:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:10:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WSWNDA3100v2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AVG PC TuneUp Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===================================
Date: 2016-01-21 01:46:32.761
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.626
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.232
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.943
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.756
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.279
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.781
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.693
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.600
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 70%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 1221.86 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 4646.48 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:97.56 GB) (Free:1.5 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:11.15 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
23.01.2016, 12:41
| #3 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Und das letzte :
__________________[/CODE]TDSSKiller Scan: Code:
ATTFilter 23:23:12.0561 0x2534 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
23:23:17.0811 0x2534 ============================================================
23:23:17.0811 0x2534 Current date / time: 2016/01/22 23:23:17.0811
23:23:17.0811 0x2534 SystemInfo:
23:23:17.0811 0x2534
23:23:17.0811 0x2534 OS Version: 6.1.7601 ServicePack: 1.0
23:23:17.0811 0x2534 Product type: Workstation
23:23:17.0811 0x2534 ComputerName: GODLIKE-PC
23:23:17.0811 0x2534 UserName: Godlike
23:23:17.0811 0x2534 Windows directory: C:\Windows
23:23:17.0811 0x2534 System windows directory: C:\Windows
23:23:17.0811 0x2534 Running under WOW64
23:23:17.0811 0x2534 Processor architecture: Intel x64
23:23:17.0811 0x2534 Number of processors: 4
23:23:17.0811 0x2534 Page size: 0x1000
23:23:17.0811 0x2534 Boot type: Normal boot
23:23:17.0811 0x2534 ============================================================
23:23:19.0762 0x2534 KLMD registered as C:\Windows\system32\drivers\95294702.sys
23:23:19.0927 0x2534 System UUID: {702EB4D2-CAD3-0506-9221-16B75A225B6F}
23:23:20.0190 0x2534 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
23:23:20.0192 0x2534 ============================================================
23:23:20.0192 0x2534 \Device\Harddisk0\DR0:
23:23:20.0193 0x2534 MBR partitions:
23:23:20.0193 0x2534 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
23:23:20.0193 0x2534 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x2E034800
23:23:20.0193 0x2534 ============================================================
23:23:20.0219 0x2534 C: <-> \Device\Harddisk0\DR0\Partition1
23:23:20.0251 0x2534 D: <-> \Device\Harddisk0\DR0\Partition2
23:23:20.0251 0x2534 ============================================================
23:23:20.0251 0x2534 Initialize success
23:23:20.0251 0x2534 ============================================================
23:24:39.0414 0x25b8 ============================================================
23:24:39.0414 0x25b8 Scan started
23:24:39.0414 0x25b8 Mode: Manual; SigCheck; TDLFS;
23:24:39.0414 0x25b8 ============================================================
23:24:39.0414 0x25b8 KSN ping started
23:24:41.0846 0x25b8 KSN ping finished: true
23:24:43.0611 0x25b8 ================ Scan system memory ========================
23:24:43.0611 0x25b8 System memory - ok
23:24:43.0612 0x25b8 ================ Scan services =============================
23:24:43.0742 0x25b8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:24:43.0827 0x25b8 1394ohci - ok
23:24:43.0874 0x25b8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:24:43.0888 0x25b8 ACPI - ok
23:24:43.0901 0x25b8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:24:43.0928 0x25b8 AcpiPmi - ok
23:24:44.0039 0x25b8 [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:24:44.0056 0x25b8 AdobeARMservice - ok
23:24:44.0125 0x25b8 [ 295A5BFCE8D225D014DB4E6E69336279, F786F06F0EE3253FA936FA5D73FD9AC704FAB19BE76C60C65AEAD399DC93F9C5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:24:44.0136 0x25b8 AdobeFlashPlayerUpdateSvc - ok
23:24:44.0179 0x25b8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:24:44.0196 0x25b8 adp94xx - ok
23:24:44.0211 0x25b8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:24:44.0224 0x25b8 adpahci - ok
23:24:44.0241 0x25b8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:24:44.0251 0x25b8 adpu320 - ok
23:24:44.0277 0x25b8 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:24:44.0286 0x25b8 AeLookupSvc - ok
23:24:44.0328 0x25b8 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
23:24:44.0345 0x25b8 AFD - ok
23:24:44.0370 0x25b8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:24:44.0378 0x25b8 agp440 - ok
23:24:44.0400 0x25b8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:24:44.0409 0x25b8 ALG - ok
23:24:44.0429 0x25b8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:24:44.0436 0x25b8 aliide - ok
23:24:44.0525 0x25b8 ALSysIO - ok
23:24:44.0563 0x25b8 [ 66B54471B5856E314947881E28263A6D, 2D60706B52A2CE98FF806337D62CD010C1DEB2AEDDF899C7B67173928B2D7C4C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:24:44.0595 0x25b8 AMD External Events Utility - ok
23:24:44.0648 0x25b8 AMD FUEL Service - ok
23:24:44.0662 0x25b8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:24:44.0689 0x25b8 amdide - ok
23:24:44.0715 0x25b8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:24:44.0726 0x25b8 AmdK8 - ok
23:24:45.0065 0x25b8 [ FBB35875FEFE53D4280259842069ED72, B1A1B5799A6C50C244182CD201A1E9FCB7BE3B5ED4BB2E2E6BCF8E1BF53B75DB ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:24:45.0340 0x25b8 amdkmdag - ok
23:24:45.0418 0x25b8 [ A32BCAD9377E3B75D034CAFBA463A0AE, F504895D9C9CD1B4607806BCAF15A1CBFBAC2E5824903277A1350C9F35045602 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
23:24:45.0439 0x25b8 amdkmdap - ok
23:24:45.0463 0x25b8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:24:45.0471 0x25b8 AmdPPM - ok
23:24:45.0494 0x25b8 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:24:45.0503 0x25b8 amdsata - ok
23:24:45.0518 0x25b8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:24:45.0529 0x25b8 amdsbs - ok
23:24:45.0541 0x25b8 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:24:45.0548 0x25b8 amdxata - ok
23:24:45.0618 0x25b8 [ B934322C68C30DCECA96C0274A51F7B0, 5A0B10A9E662A0B0EEB951FFD2A82CC71D30939A78DAEBD26B3F58BB24351AC9 ] AODDriver C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys
23:24:45.0653 0x25b8 AODDriver - ok
23:24:45.0686 0x25b8 [ E8CCB797DAF80779C768BD3A9FC8FCAF, 781BD878CA34D8B6D2FE238439CD173E95449260428859BEA92866D41B1284F4 ] AODDriver4.2.0 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
23:24:45.0696 0x25b8 AODDriver4.2.0 - ok
23:24:45.0753 0x25b8 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
23:24:45.0774 0x25b8 AppID - ok
23:24:45.0785 0x25b8 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:24:45.0795 0x25b8 AppIDSvc - ok
23:24:45.0834 0x25b8 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
23:24:45.0862 0x25b8 Appinfo - ok
23:24:45.0925 0x25b8 [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:24:45.0950 0x25b8 Apple Mobile Device - ok
23:24:45.0982 0x25b8 [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
23:24:45.0991 0x25b8 AppleCharger - ok
23:24:46.0006 0x25b8 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
23:24:46.0015 0x25b8 AppleChargerSrv - ok
23:24:46.0027 0x25b8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:24:46.0039 0x25b8 arc - ok
23:24:46.0051 0x25b8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:24:46.0060 0x25b8 arcsas - ok
23:24:46.0133 0x25b8 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:24:46.0197 0x25b8 aspnet_state - ok
23:24:46.0217 0x25b8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:24:46.0250 0x25b8 AsyncMac - ok
23:24:46.0268 0x25b8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:24:46.0279 0x25b8 atapi - ok
23:24:46.0341 0x25b8 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:24:46.0371 0x25b8 AudioEndpointBuilder - ok
23:24:46.0388 0x25b8 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:24:46.0408 0x25b8 AudioSrv - ok
23:24:46.0448 0x25b8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:24:46.0460 0x25b8 AxInstSV - ok
23:24:46.0515 0x25b8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:24:46.0541 0x25b8 b06bdrv - ok
23:24:46.0565 0x25b8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:24:46.0577 0x25b8 b57nd60a - ok
23:24:46.0659 0x25b8 [ 44E6E51AEDBF3E0B38A6CD5432649E57, AB7F3EF0F5859B6C759BF1B9704C2F839166905C02300057997836C4B07A2221 ] BCMH43XX C:\Windows\system32\DRIVERS\bcmwlhigh664.sys
23:24:46.0693 0x25b8 BCMH43XX - ok
23:24:46.0714 0x25b8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:24:46.0723 0x25b8 BDESVC - ok
23:24:46.0743 0x25b8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:24:46.0773 0x25b8 Beep - ok
23:24:46.0840 0x25b8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:24:46.0864 0x25b8 BFE - ok
23:24:46.0894 0x25b8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:24:46.0977 0x25b8 BITS - ok
23:24:47.0000 0x25b8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:24:47.0007 0x25b8 blbdrive - ok
23:24:47.0036 0x25b8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:24:47.0062 0x25b8 bowser - ok
23:24:47.0122 0x25b8 BRDriver64_1_3_3_E02B25FC - ok
23:24:47.0152 0x25b8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:24:47.0198 0x25b8 BrFiltLo - ok
23:24:47.0212 0x25b8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:24:47.0224 0x25b8 BrFiltUp - ok
23:24:47.0254 0x25b8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:24:47.0268 0x25b8 Browser - ok
23:24:47.0286 0x25b8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:24:47.0303 0x25b8 Brserid - ok
23:24:47.0314 0x25b8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:24:47.0323 0x25b8 BrSerWdm - ok
23:24:47.0352 0x25b8 [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub C:\ProgramData\BitRaider\BRSptStub.exe
23:24:47.0365 0x25b8 BRSptStub - ok
23:24:47.0368 0x25b8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:24:47.0377 0x25b8 BrUsbMdm - ok
23:24:47.0392 0x25b8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:24:47.0399 0x25b8 BrUsbSer - ok
23:24:47.0427 0x25b8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:24:47.0437 0x25b8 BTHMODEM - ok
23:24:47.0472 0x25b8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:24:47.0496 0x25b8 bthserv - ok
23:24:47.0508 0x25b8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:24:47.0532 0x25b8 cdfs - ok
23:24:47.0564 0x25b8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:24:47.0574 0x25b8 cdrom - ok
23:24:47.0608 0x25b8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:24:47.0631 0x25b8 CertPropSvc - ok
23:24:47.0636 0x25b8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:24:47.0645 0x25b8 circlass - ok
23:24:47.0681 0x25b8 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
23:24:47.0696 0x25b8 CLFS - ok
23:24:47.0736 0x25b8 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:24:47.0745 0x25b8 clr_optimization_v2.0.50727_32 - ok
23:24:47.0780 0x25b8 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:24:47.0811 0x25b8 clr_optimization_v2.0.50727_64 - ok
23:24:47.0863 0x25b8 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:24:48.0054 0x25b8 clr_optimization_v4.0.30319_32 - ok
23:24:48.0067 0x25b8 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:24:48.0095 0x25b8 clr_optimization_v4.0.30319_64 - ok
23:24:48.0119 0x25b8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:24:48.0129 0x25b8 CmBatt - ok
23:24:48.0139 0x25b8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:24:48.0149 0x25b8 cmdide - ok
23:24:48.0193 0x25b8 [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
23:24:48.0233 0x25b8 CNG - ok
23:24:48.0243 0x25b8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:24:48.0254 0x25b8 Compbatt - ok
23:24:48.0280 0x25b8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:24:48.0294 0x25b8 CompositeBus - ok
23:24:48.0306 0x25b8 COMSysApp - ok
23:24:48.0350 0x25b8 [ F310B453AC562F2C53D30AA6E35506BB, 600A2119657973112025DB3C0EEAB2E69D528BCCFEED75F40C6EF50B059EC8A0 ] cpuz138 C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys
23:24:48.0369 0x25b8 cpuz138 - ok
23:24:48.0374 0x2750 Object required for P2P: [ 295A5BFCE8D225D014DB4E6E69336279 ] AdobeFlashPlayerUpdateSvc
23:24:48.0393 0x25b8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:24:48.0403 0x25b8 crcdisk - ok
23:24:48.0443 0x25b8 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:24:48.0459 0x25b8 CryptSvc - ok
23:24:48.0517 0x25b8 dbupdate - ok
23:24:48.0522 0x25b8 dbupdatem - ok
23:24:48.0565 0x25b8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:24:48.0606 0x25b8 DcomLaunch - ok
23:24:48.0631 0x25b8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:24:48.0660 0x25b8 defragsvc - ok
23:24:48.0700 0x25b8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:24:48.0724 0x25b8 DfsC - ok
23:24:48.0738 0x25b8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:24:48.0761 0x25b8 Dhcp - ok
23:24:48.0881 0x25b8 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
23:24:48.0920 0x25b8 DiagTrack - ok
23:24:48.0942 0x25b8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:24:48.0965 0x25b8 discache - ok
23:24:48.0993 0x25b8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:24:49.0001 0x25b8 Disk - ok
23:24:49.0026 0x25b8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:24:49.0036 0x25b8 Dnscache - ok
23:24:49.0066 0x25b8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:24:49.0092 0x25b8 dot3svc - ok
23:24:49.0151 0x25b8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:24:49.0194 0x25b8 DPS - ok
23:24:49.0293 0x25b8 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:24:49.0318 0x25b8 drmkaud - ok
23:24:49.0391 0x25b8 [ 8407DDFAB85AE664E507C30314090385, 05F052C64D192CF69A462A5EC16DDA0D43CA5D0245900C9FCB9201685A2E7748 ] DrvAgent64 C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
23:24:49.0404 0x25b8 DrvAgent64 - ok
23:24:49.0497 0x25b8 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:24:49.0531 0x25b8 DXGKrnl - ok
23:24:49.0559 0x25b8 EagleX64 - ok
23:24:49.0579 0x25b8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:24:49.0634 0x25b8 EapHost - ok
23:24:49.0646 0x25b8 EasyAntiCheat - ok
23:24:49.0757 0x25b8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:24:49.0837 0x25b8 ebdrv - ok
23:24:49.0874 0x25b8 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] EFS C:\Windows\System32\lsass.exe
23:24:49.0882 0x25b8 EFS - ok
23:24:49.0950 0x25b8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:24:49.0988 0x25b8 ehRecvr - ok
23:24:50.0014 0x25b8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:24:50.0028 0x25b8 ehSched - ok
23:24:50.0057 0x25b8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:24:50.0082 0x25b8 elxstor - ok
23:24:50.0104 0x25b8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:24:50.0111 0x25b8 ErrDev - ok
23:24:50.0159 0x25b8 [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
23:24:50.0182 0x25b8 ES lite Service - ok
23:24:50.0213 0x25b8 [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
23:24:50.0221 0x25b8 EtronHub3 - ok
23:24:50.0232 0x25b8 [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
23:24:50.0241 0x25b8 EtronXHCI - ok
23:24:50.0273 0x25b8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:24:50.0305 0x25b8 EventSystem - ok
23:24:50.0330 0x25b8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:24:50.0357 0x25b8 exfat - ok
23:24:50.0374 0x25b8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:24:50.0402 0x25b8 fastfat - ok
23:24:50.0448 0x25b8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:24:50.0468 0x25b8 Fax - ok
23:24:50.0482 0x25b8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:24:50.0490 0x25b8 fdc - ok
23:24:50.0511 0x25b8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:24:50.0534 0x25b8 fdPHost - ok
23:24:50.0538 0x25b8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:24:50.0561 0x25b8 FDResPub - ok
23:24:50.0575 0x25b8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:24:50.0583 0x25b8 FileInfo - ok
23:24:50.0592 0x25b8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:24:50.0616 0x25b8 Filetrace - ok
23:24:50.0631 0x25b8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:24:50.0638 0x25b8 flpydisk - ok
23:24:50.0667 0x25b8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:24:50.0679 0x25b8 FltMgr - ok
23:24:50.0784 0x25b8 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
23:24:50.0823 0x25b8 FontCache - ok
23:24:50.0896 0x25b8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:24:50.0918 0x2750 Object send P2P result: true
23:24:50.0931 0x25b8 FontCache3.0.0.0 - ok
23:24:50.0944 0x25b8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:24:50.0955 0x25b8 FsDepends - ok
23:24:50.0969 0x25b8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:24:50.0977 0x25b8 Fs_Rec - ok
23:24:50.0999 0x25b8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:24:51.0013 0x25b8 fvevol - ok
23:24:51.0027 0x25b8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:24:51.0035 0x25b8 gagp30kx - ok
23:24:51.0074 0x25b8 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
23:24:51.0081 0x25b8 gdrv - ok
23:24:51.0121 0x25b8 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:24:51.0141 0x25b8 GEARAspiWDM - ok
23:24:51.0228 0x25b8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:24:51.0276 0x25b8 gpsvc - ok
23:24:51.0341 0x25b8 [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:24:51.0359 0x25b8 gupdate - ok
23:24:51.0375 0x25b8 [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:24:51.0387 0x25b8 gupdatem - ok
23:24:51.0403 0x25b8 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
23:24:51.0413 0x25b8 GVTDrv64 - ok
23:24:51.0440 0x25b8 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
23:24:51.0449 0x25b8 hamachi - ok
23:24:51.0457 0x25b8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:24:51.0467 0x25b8 hcw85cir - ok
23:24:51.0499 0x25b8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:24:51.0514 0x25b8 HdAudAddService - ok
23:24:51.0528 0x25b8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:24:51.0539 0x25b8 HDAudBus - ok
23:24:51.0558 0x25b8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:24:51.0565 0x25b8 HidBatt - ok
23:24:51.0579 0x25b8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:24:51.0589 0x25b8 HidBth - ok
23:24:51.0597 0x25b8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:24:51.0606 0x25b8 HidIr - ok
23:24:51.0630 0x25b8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
23:24:51.0653 0x25b8 hidserv - ok
23:24:51.0680 0x25b8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:24:51.0687 0x25b8 HidUsb - ok
23:24:51.0713 0x25b8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:24:51.0737 0x25b8 hkmsvc - ok
23:24:51.0762 0x25b8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:24:51.0773 0x25b8 HomeGroupListener - ok
23:24:51.0810 0x25b8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:24:51.0821 0x25b8 HomeGroupProvider - ok
23:24:51.0835 0x25b8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:24:51.0843 0x25b8 HpSAMD - ok
23:24:51.0926 0x25b8 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:24:51.0957 0x25b8 HTTP - ok
23:24:51.0991 0x25b8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:24:52.0002 0x25b8 hwpolicy - ok
23:24:52.0031 0x25b8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:24:52.0044 0x25b8 i8042prt - ok
23:24:52.0094 0x25b8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:24:52.0119 0x25b8 iaStorV - ok
23:24:52.0151 0x25b8 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:24:52.0154 0x25b8 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
23:24:54.0884 0x25b8 Detect skipped due to KSN trusted
23:24:54.0884 0x25b8 IDriverT - ok
23:24:54.0978 0x25b8 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:24:55.0013 0x25b8 idsvc - ok
23:24:55.0024 0x25b8 IEEtwCollectorService - ok
23:24:55.0036 0x25b8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:24:55.0044 0x25b8 iirsp - ok
23:24:55.0086 0x25b8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:24:55.0110 0x25b8 IKEEXT - ok
23:24:55.0287 0x25b8 [ 3A2D6740F51BE48C0FD01AD907329DEE, 4FD899CD6E3B3D5C9803E52CB72F002B6CFC144D524FAF6845CF6D115EC6E059 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:24:55.0383 0x25b8 IntcAzAudAddService - ok
23:24:55.0417 0x25b8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:24:55.0424 0x25b8 intelide - ok
23:24:55.0443 0x25b8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:24:55.0452 0x25b8 intelppm - ok
23:24:55.0487 0x25b8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:24:55.0512 0x25b8 IPBusEnum - ok
23:24:55.0539 0x25b8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:24:55.0562 0x25b8 IpFilterDriver - ok
23:24:55.0596 0x25b8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:24:55.0614 0x25b8 iphlpsvc - ok
23:24:55.0639 0x25b8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:24:55.0648 0x25b8 IPMIDRV - ok
23:24:55.0659 0x25b8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:24:55.0684 0x25b8 IPNAT - ok
23:24:55.0732 0x25b8 [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:24:55.0749 0x25b8 iPod Service - ok
23:24:55.0774 0x25b8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:24:55.0784 0x25b8 IRENUM - ok
23:24:55.0801 0x25b8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:24:55.0808 0x25b8 isapnp - ok
23:24:55.0834 0x25b8 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:24:55.0847 0x25b8 iScsiPrt - ok
23:24:55.0866 0x25b8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:24:55.0873 0x25b8 kbdclass - ok
23:24:55.0885 0x25b8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:24:55.0893 0x25b8 kbdhid - ok
23:24:55.0905 0x25b8 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] KeyIso C:\Windows\system32\lsass.exe
23:24:55.0913 0x25b8 KeyIso - ok
23:24:55.0942 0x25b8 [ 0F776895884B8DC430A307D57FD867BB, F9E8C8A04D757CEAD86938BEEFFAD9750589037E16FB1A2B0A90E4484E1A6B65 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:24:55.0951 0x25b8 KSecDD - ok
23:24:55.0960 0x25b8 [ 28E75F316CCCD79337E4957C53017D4B, 3BABDA50B4CE72F7F9A0FD7A33DDB19463A01F188D46354E0B411FC0389C01BE ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:24:55.0969 0x25b8 KSecPkg - ok
23:24:55.0976 0x25b8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:24:55.0999 0x25b8 ksthunk - ok
23:24:56.0026 0x25b8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:24:56.0056 0x25b8 KtmRm - ok
23:24:56.0107 0x25b8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:24:56.0153 0x25b8 LanmanServer - ok
23:24:56.0189 0x25b8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:24:56.0238 0x25b8 LanmanWorkstation - ok
23:24:56.0265 0x25b8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:24:56.0288 0x25b8 lltdio - ok
23:24:56.0313 0x25b8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:24:56.0342 0x25b8 lltdsvc - ok
23:24:56.0356 0x25b8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:24:56.0380 0x25b8 lmhosts - ok
23:24:56.0416 0x25b8 LMIGuardianSvc - ok
23:24:56.0453 0x25b8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:24:56.0483 0x25b8 LSI_FC - ok
23:24:56.0497 0x25b8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:24:56.0510 0x25b8 LSI_SAS - ok
23:24:56.0514 0x25b8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:24:56.0522 0x25b8 LSI_SAS2 - ok
23:24:56.0528 0x25b8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:24:56.0537 0x25b8 LSI_SCSI - ok
23:24:56.0557 0x25b8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:24:56.0582 0x25b8 luafv - ok
23:24:56.0622 0x25b8 [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
23:24:56.0630 0x25b8 MBAMSwissArmy - ok
23:24:56.0655 0x25b8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:24:56.0664 0x25b8 Mcx2Svc - ok
23:24:56.0674 0x25b8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:24:56.0682 0x25b8 megasas - ok
23:24:56.0693 0x25b8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:24:56.0706 0x25b8 MegaSR - ok
23:24:56.0710 0x25b8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:24:56.0734 0x25b8 MMCSS - ok
23:24:56.0751 0x25b8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:24:56.0774 0x25b8 Modem - ok
23:24:56.0785 0x25b8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:24:56.0794 0x25b8 monitor - ok
23:24:56.0798 0x25b8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:24:56.0806 0x25b8 mouclass - ok
23:24:56.0828 0x25b8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:24:56.0836 0x25b8 mouhid - ok
23:24:56.0867 0x25b8 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:24:56.0892 0x25b8 mountmgr - ok
23:24:56.0934 0x25b8 [ 9FC679D10A7377BB04ECC3D0E2E26B53, 24ACD4EC1618A052C29E4463138B28F62C8B78D442DB82F4925E64FC5849A096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:24:56.0964 0x25b8 MozillaMaintenance - ok
23:24:56.0991 0x25b8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:24:57.0006 0x25b8 mpio - ok
23:24:57.0023 0x25b8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:24:57.0056 0x25b8 mpsdrv - ok
23:24:57.0102 0x25b8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:24:57.0141 0x25b8 MpsSvc - ok
23:24:57.0178 0x25b8 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:24:57.0206 0x25b8 MRxDAV - ok
23:24:57.0238 0x25b8 [ 32B85C4923D895B2FB35821A799BA38D, 7A7E5D08F745DB9B498B4BE946325FF7DAA7FA27589D9423FCA4558D20780026 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:24:57.0253 0x25b8 mrxsmb - ok
23:24:57.0275 0x25b8 [ A572BEF41F3C55D7DAF24D2340C91FEC, 1E51EEFEABCDCB664CD39437C2275B160860FB433EAA8DC905D5BC742FD03529 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:24:57.0292 0x25b8 mrxsmb10 - ok
23:24:57.0303 0x25b8 [ C49F1C4CA74FC52AFB2E892D8E50EA39, 9E7A2453627A82AFF4CE3F285AFF105C3F92F423C07E5C43E76BEC523841B8F7 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:24:57.0312 0x25b8 mrxsmb20 - ok
23:24:57.0342 0x25b8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:24:57.0349 0x25b8 msahci - ok
23:24:57.0387 0x25b8 [ A592A054D78750B4D73ABAA4C94DECDF, 40B135C9F9EE698EC78BD19BD18353AE2CF4D020DDB9CFC37CD2FDBF7602614A ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS64.exe
23:24:57.0396 0x25b8 MSCamSvc - ok
23:24:57.0411 0x25b8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:24:57.0420 0x25b8 msdsm - ok
23:24:57.0437 0x25b8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:24:57.0448 0x25b8 MSDTC - ok
23:24:57.0462 0x25b8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:24:57.0498 0x25b8 Msfs - ok
23:24:57.0508 0x25b8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:24:57.0531 0x25b8 mshidkmdf - ok
23:24:57.0553 0x25b8 [ 55218F924E55FD2786ED40EDF4ED79C3, C6000DE3A1FB526ECB77438A03F7212517CCD5E0CC9DDA07826865F8B980BEA0 ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys
23:24:57.0560 0x25b8 MSHUSBVideo - ok
23:24:57.0561 0x25b8 MSICDSetup - ok
23:24:57.0581 0x25b8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:24:57.0588 0x25b8 msisadrv - ok
23:24:57.0615 0x25b8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:24:57.0641 0x25b8 MSiSCSI - ok
23:24:57.0644 0x25b8 msiserver - ok
23:24:57.0673 0x25b8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:24:57.0697 0x25b8 MSKSSRV - ok
23:24:57.0708 0x25b8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:24:57.0730 0x25b8 MSPCLOCK - ok
23:24:57.0739 0x25b8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:24:57.0762 0x25b8 MSPQM - ok
23:24:57.0795 0x25b8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:24:57.0810 0x25b8 MsRPC - ok
23:24:57.0821 0x25b8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:24:57.0829 0x25b8 mssmbios - ok
23:24:57.0843 0x25b8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:24:57.0865 0x25b8 MSTEE - ok
23:24:57.0874 0x25b8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:24:57.0882 0x25b8 MTConfig - ok
23:24:57.0904 0x25b8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:24:57.0912 0x25b8 Mup - ok
23:24:57.0969 0x25b8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:24:58.0022 0x25b8 napagent - ok
23:24:58.0055 0x25b8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:24:58.0077 0x25b8 NativeWifiP - ok
23:24:58.0132 0x25b8 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:24:58.0158 0x25b8 NDIS - ok
23:24:58.0172 0x25b8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:24:58.0195 0x25b8 NdisCap - ok
23:24:58.0212 0x25b8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:24:58.0235 0x25b8 NdisTapi - ok
23:24:58.0276 0x25b8 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:24:58.0326 0x25b8 Ndisuio - ok
23:24:58.0357 0x25b8 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:24:58.0382 0x25b8 NdisWan - ok
23:24:58.0394 0x25b8 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:24:58.0417 0x25b8 NDProxy - ok
23:24:58.0464 0x25b8 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
23:24:58.0490 0x25b8 Netaapl - ok
23:24:58.0501 0x25b8 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:24:58.0530 0x25b8 NetBIOS - ok
23:24:58.0548 0x25b8 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:24:58.0575 0x25b8 NetBT - ok
23:24:58.0586 0x25b8 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] Netlogon C:\Windows\system32\lsass.exe
23:24:58.0593 0x25b8 Netlogon - ok
23:24:58.0629 0x25b8 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:24:58.0659 0x25b8 Netman - ok
23:24:58.0726 0x25b8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0764 0x25b8 NetMsmqActivator - ok
23:24:58.0782 0x25b8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0794 0x25b8 NetPipeActivator - ok
23:24:58.0831 0x25b8 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:24:58.0865 0x25b8 netprofm - ok
23:24:58.0882 0x25b8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0894 0x25b8 NetTcpActivator - ok
23:24:58.0899 0x25b8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0910 0x25b8 NetTcpPortSharing - ok
23:24:58.0927 0x25b8 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:24:58.0937 0x25b8 nfrd960 - ok
23:24:58.0973 0x25b8 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:24:59.0010 0x25b8 NlaSvc - ok
23:24:59.0053 0x25b8 [ C31FA031335EFF434B2D94278E74BCCE, F5DFD40C16E4013CBAD0E4FB8EF2B4419702B9C215218F69C4A2DD7C4C4C1E2B ] NPF C:\Windows\system32\DRIVERS\npf.sys
23:24:59.0065 0x25b8 NPF - ok
23:24:59.0080 0x25b8 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:24:59.0121 0x25b8 Npfs - ok
23:24:59.0143 0x25b8 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:24:59.0167 0x25b8 nsi - ok
23:24:59.0178 0x25b8 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:24:59.0202 0x25b8 nsiproxy - ok
23:24:59.0297 0x25b8 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:24:59.0399 0x25b8 Ntfs - ok
23:24:59.0421 0x25b8 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:24:59.0445 0x25b8 Null - ok
23:24:59.0479 0x25b8 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:24:59.0513 0x25b8 nvraid - ok
23:24:59.0530 0x25b8 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:24:59.0545 0x25b8 nvstor - ok
23:24:59.0562 0x25b8 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:24:59.0576 0x25b8 nv_agp - ok
23:24:59.0588 0x25b8 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:24:59.0599 0x25b8 ohci1394 - ok
23:24:59.0614 0x25b8 Origin Client Service - ok
23:24:59.0666 0x25b8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:24:59.0701 0x25b8 p2pimsvc - ok
23:24:59.0728 0x25b8 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:24:59.0751 0x25b8 p2psvc - ok
23:24:59.0764 0x25b8 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:24:59.0773 0x25b8 Parport - ok
23:24:59.0792 0x25b8 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:24:59.0800 0x25b8 partmgr - ok
23:24:59.0829 0x25b8 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:24:59.0840 0x25b8 PcaSvc - ok
23:24:59.0851 0x25b8 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:24:59.0862 0x25b8 pci - ok
23:24:59.0880 0x25b8 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:24:59.0888 0x25b8 pciide - ok
23:24:59.0895 0x25b8 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:24:59.0906 0x25b8 pcmcia - ok
23:24:59.0929 0x25b8 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:24:59.0937 0x25b8 pcw - ok
23:24:59.0977 0x25b8 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:24:59.0997 0x25b8 PEAUTH - ok
23:25:00.0048 0x25b8 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:25:00.0057 0x25b8 PerfHost - ok
23:25:00.0120 0x25b8 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:25:00.0171 0x25b8 pla - ok
23:25:00.0203 0x25b8 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:25:00.0218 0x25b8 PlugPlay - ok
23:25:00.0233 0x25b8 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:25:00.0241 0x25b8 PNRPAutoReg - ok
23:25:00.0256 0x25b8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:25:00.0269 0x25b8 PNRPsvc - ok
23:25:00.0308 0x25b8 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:25:00.0340 0x25b8 PolicyAgent - ok
23:25:00.0364 0x25b8 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:25:00.0391 0x25b8 Power - ok
23:25:00.0425 0x25b8 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:25:00.0449 0x25b8 PptpMiniport - ok
23:25:00.0465 0x25b8 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:25:00.0472 0x25b8 Processor - ok
23:25:00.0500 0x25b8 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:25:00.0511 0x25b8 ProfSvc - ok
23:25:00.0524 0x25b8 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] ProtectedStorage C:\Windows\system32\lsass.exe
23:25:00.0532 0x25b8 ProtectedStorage - ok
23:25:00.0562 0x25b8 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:25:00.0587 0x25b8 Psched - ok
23:25:00.0641 0x25b8 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:25:00.0678 0x25b8 ql2300 - ok
23:25:00.0696 0x25b8 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:25:00.0705 0x25b8 ql40xx - ok
23:25:00.0733 0x25b8 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:25:00.0748 0x25b8 QWAVE - ok
23:25:00.0760 0x25b8 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:25:00.0770 0x25b8 QWAVEdrv - ok
23:25:00.0777 0x25b8 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:25:00.0800 0x25b8 RasAcd - ok
23:25:00.0829 0x25b8 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:25:00.0900 0x25b8 RasAgileVpn - ok
23:25:00.0907 0x25b8 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:25:00.0944 0x25b8 RasAuto - ok
23:25:00.0976 0x25b8 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:25:01.0011 0x25b8 Rasl2tp - ok
23:25:01.0061 0x25b8 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:25:01.0109 0x25b8 RasMan - ok
23:25:01.0124 0x25b8 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:25:01.0160 0x25b8 RasPppoe - ok
23:25:01.0171 0x25b8 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:25:01.0196 0x25b8 RasSstp - ok
23:25:01.0231 0x25b8 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:25:01.0259 0x25b8 rdbss - ok
23:25:01.0268 0x25b8 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:25:01.0277 0x25b8 rdpbus - ok
23:25:01.0290 0x25b8 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:25:01.0313 0x25b8 RDPCDD - ok
23:25:01.0337 0x25b8 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:25:01.0360 0x25b8 RDPENCDD - ok
23:25:01.0373 0x25b8 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:25:01.0396 0x25b8 RDPREFMP - ok
23:25:01.0431 0x25b8 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:25:01.0452 0x25b8 RDPWD - ok
23:25:01.0500 0x25b8 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:25:01.0528 0x25b8 rdyboost - ok
23:25:01.0547 0x25b8 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:25:01.0573 0x25b8 RemoteAccess - ok
23:25:01.0597 0x25b8 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:25:01.0624 0x25b8 RemoteRegistry - ok
23:25:01.0637 0x25b8 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:25:01.0662 0x25b8 RpcEptMapper - ok
23:25:01.0672 0x25b8 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:25:01.0680 0x25b8 RpcLocator - ok
23:25:01.0718 0x25b8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
23:25:01.0751 0x25b8 RpcSs - ok
23:25:01.0782 0x25b8 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:25:01.0815 0x25b8 rspndr - ok
23:25:01.0826 0x25b8 RTHDMIAzAudService - ok
23:25:01.0862 0x25b8 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:25:01.0876 0x25b8 RTL8167 - ok
23:25:01.0885 0x25b8 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] SamSs C:\Windows\system32\lsass.exe
23:25:01.0893 0x25b8 SamSs - ok
23:25:01.0916 0x25b8 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:25:01.0925 0x25b8 sbp2port - ok
23:25:01.0945 0x25b8 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:25:01.0979 0x25b8 SCardSvr - ok
23:25:02.0003 0x25b8 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:25:02.0026 0x25b8 scfilter - ok
23:25:02.0072 0x25b8 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
23:25:02.0102 0x25b8 Schedule - ok
23:25:02.0148 0x25b8 [ 2A50BE713FAF033420466C25979C028E, 46EAF744B8EB23F5D134D63C4600EE46662FAB28282CD762945DFB448D2463B3 ] SCMNdisP C:\Windows\system32\DRIVERS\scmndisp.sys
23:25:02.0154 0x25b8 SCMNdisP - ok
23:25:02.0183 0x25b8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:25:02.0206 0x25b8 SCPolicySvc - ok
23:25:02.0243 0x25b8 [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
23:25:02.0250 0x25b8 ScreamBAudioSvc - ok
23:25:02.0278 0x25b8 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:25:02.0288 0x25b8 SDRSVC - ok
23:25:02.0306 0x25b8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:25:02.0322 0x25b8 secdrv - ok
23:25:02.0345 0x25b8 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
23:25:02.0368 0x25b8 seclogon - ok
23:25:02.0392 0x25b8 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
23:25:02.0417 0x25b8 SENS - ok
23:25:02.0433 0x25b8 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:25:02.0441 0x25b8 SensrSvc - ok
23:25:02.0461 0x25b8 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:25:02.0468 0x25b8 Serenum - ok
23:25:02.0490 0x25b8 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:25:02.0499 0x25b8 Serial - ok
23:25:02.0530 0x25b8 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:25:02.0538 0x25b8 sermouse - ok
23:25:02.0580 0x25b8 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:25:02.0628 0x25b8 SessionEnv - ok
23:25:02.0651 0x25b8 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:25:02.0660 0x25b8 sffdisk - ok
23:25:02.0667 0x25b8 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:25:02.0676 0x25b8 sffp_mmc - ok
23:25:02.0679 0x25b8 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:25:02.0688 0x25b8 sffp_sd - ok
23:25:02.0699 0x25b8 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:25:02.0706 0x25b8 sfloppy - ok
23:25:02.0728 0x25b8 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:25:02.0758 0x25b8 SharedAccess - ok
23:25:02.0794 0x25b8 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:25:02.0823 0x25b8 ShellHWDetection - ok
23:25:02.0834 0x25b8 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:25:02.0842 0x25b8 SiSRaid2 - ok
23:25:02.0847 0x25b8 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:25:02.0855 0x25b8 SiSRaid4 - ok
23:25:02.0955 0x25b8 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
23:25:02.0981 0x25b8 SkypeUpdate - ok
23:25:03.0006 0x25b8 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:25:03.0030 0x25b8 Smb - ok
23:25:03.0052 0x25b8 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:25:03.0060 0x25b8 SNMPTRAP - ok
23:25:03.0079 0x25b8 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:25:03.0087 0x25b8 spldr - ok
23:25:03.0120 0x25b8 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:25:03.0139 0x25b8 Spooler - ok
23:25:03.0243 0x25b8 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:25:03.0336 0x25b8 sppsvc - ok
23:25:03.0358 0x25b8 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:25:03.0383 0x25b8 sppuinotify - ok
23:25:03.0414 0x25b8 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:25:03.0429 0x25b8 srv - ok
23:25:03.0448 0x25b8 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:25:03.0463 0x25b8 srv2 - ok
23:25:03.0479 0x25b8 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:25:03.0489 0x25b8 srvnet - ok
23:25:03.0523 0x25b8 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:25:03.0551 0x25b8 SSDPSRV - ok
23:25:03.0565 0x25b8 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:25:03.0590 0x25b8 SstpSvc - ok
23:25:03.0689 0x25b8 [ A831D5A4D2F5138E332AC1B98315EBB1, 2FF5C256A83ACFB5CEC17B9FA7875048F770B793C37657D6D4E37C70B2F857A8 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:25:03.0718 0x25b8 Steam Client Service - ok
23:25:03.0736 0x25b8 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:25:03.0743 0x25b8 stexstor - ok
23:25:03.0825 0x25b8 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:25:03.0861 0x25b8 stisvc - ok
23:25:03.0884 0x25b8 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
23:25:03.0895 0x25b8 swenum - ok
23:25:03.0920 0x25b8 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:25:03.0964 0x25b8 swprv - ok
23:25:04.0033 0x25b8 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
23:25:04.0075 0x25b8 SysMain - ok
23:25:04.0106 0x25b8 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:25:04.0119 0x25b8 TabletInputService - ok
23:25:04.0141 0x25b8 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:25:04.0170 0x25b8 TapiSrv - ok
23:25:04.0192 0x25b8 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
23:25:04.0217 0x25b8 TBS - ok
23:25:04.0314 0x25b8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:25:04.0360 0x25b8 Tcpip - ok
23:25:04.0406 0x25b8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:25:04.0451 0x25b8 TCPIP6 - ok
23:25:04.0480 0x25b8 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:25:04.0487 0x25b8 tcpipreg - ok
23:25:04.0531 0x25b8 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:25:04.0557 0x25b8 TDPIPE - ok
23:25:04.0580 0x25b8 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:25:04.0606 0x25b8 TDTCP - ok
23:25:04.0654 0x25b8 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:25:04.0667 0x25b8 tdx - ok
23:25:04.0852 0x25b8 [ FC8DC5DB5F707C96FEBC526AA4CE562A, AB97B53EA9E8C55A18733A6A3DE42E6EBC8BA9150796338DF04AB2DDA5124E1A ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
23:25:04.0978 0x25b8 TeamViewer - ok
23:25:05.0015 0x25b8 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
23:25:05.0023 0x25b8 TermDD - ok
23:25:05.0095 0x25b8 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:25:05.0125 0x25b8 TermService - ok
23:25:05.0145 0x25b8 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:25:05.0157 0x25b8 Themes - ok
23:25:05.0174 0x25b8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:25:05.0204 0x25b8 THREADORDER - ok
23:25:05.0213 0x25b8 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:25:05.0249 0x25b8 TrkWks - ok
23:25:05.0298 0x25b8 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:25:05.0342 0x25b8 TrustedInstaller - ok
23:25:05.0371 0x25b8 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:25:05.0378 0x25b8 tssecsrv - ok
23:25:05.0415 0x25b8 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:25:05.0425 0x25b8 TsUsbFlt - ok
23:25:05.0588 0x25b8 [ 4645910BE6CB805DB15CC49D8B6BAA39, A773290E200E8E7BCD52A88EA2464D93D2BFF47434592DF46B626F9C86BC9ED1 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
23:25:05.0653 0x25b8 TuneUp.UtilitiesSvc - ok
23:25:05.0697 0x25b8 [ DB3C912A851FCA6358FED4D53DAA7E91, B35375EC9AF61D829489D9B278605E2098D6402419E79EB24C65D3B65816AEBC ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
23:25:05.0727 0x25b8 TuneUpUtilitiesDrv - ok
23:25:05.0759 0x25b8 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:25:05.0794 0x25b8 tunnel - ok
23:25:05.0811 0x25b8 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:25:05.0823 0x25b8 uagp35 - ok
23:25:05.0857 0x25b8 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:25:05.0889 0x25b8 udfs - ok
23:25:05.0907 0x25b8 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:25:05.0916 0x25b8 UI0Detect - ok
23:25:05.0924 0x25b8 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:25:05.0932 0x25b8 uliagpkx - ok
23:25:05.0957 0x25b8 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:25:05.0965 0x25b8 umbus - ok
23:25:05.0978 0x25b8 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:25:05.0985 0x25b8 UmPass - ok
23:25:06.0007 0x25b8 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:25:06.0038 0x25b8 upnphost - ok
23:25:06.0091 0x25b8 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
23:25:06.0099 0x25b8 USBAAPL64 - ok
23:25:06.0132 0x25b8 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:25:06.0141 0x25b8 usbaudio - ok
23:25:06.0166 0x25b8 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:25:06.0174 0x25b8 usbccgp - ok
23:25:06.0198 0x25b8 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:25:06.0207 0x25b8 usbcir - ok
23:25:06.0223 0x25b8 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:25:06.0231 0x25b8 usbehci - ok
23:25:06.0270 0x25b8 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:25:06.0283 0x25b8 usbhub - ok
23:25:06.0296 0x25b8 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
23:25:06.0302 0x25b8 usbohci - ok
23:25:06.0317 0x25b8 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:25:06.0326 0x25b8 usbprint - ok
23:25:06.0348 0x25b8 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:25:06.0356 0x25b8 USBSTOR - ok
23:25:06.0365 0x25b8 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:25:06.0372 0x25b8 usbuhci - ok
23:25:06.0390 0x25b8 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:25:06.0401 0x25b8 usbvideo - ok
23:25:06.0425 0x25b8 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:25:06.0450 0x25b8 UxSms - ok
23:25:06.0503 0x25b8 [ E646F34228D63EF5BA94A8E209430D2B, 082DB7A2C377AFF085D777DC1F070965C33E8C4F78F72E0B478551A218F039A8 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
23:25:06.0510 0x25b8 UxTuneUp - ok
23:25:06.0525 0x25b8 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] VaultSvc C:\Windows\system32\lsass.exe
23:25:06.0532 0x25b8 VaultSvc - ok
23:25:06.0558 0x25b8 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:25:06.0565 0x25b8 vdrvroot - ok
23:25:06.0604 0x25b8 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:25:06.0638 0x25b8 vds - ok
23:25:06.0654 0x25b8 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:25:06.0663 0x25b8 vga - ok
23:25:06.0674 0x25b8 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:25:06.0698 0x25b8 VgaSave - ok
23:25:06.0728 0x25b8 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:25:06.0739 0x25b8 vhdmp - ok
23:25:06.0755 0x25b8 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:25:06.0763 0x25b8 viaide - ok
23:25:06.0774 0x25b8 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:25:06.0783 0x25b8 volmgr - ok
23:25:06.0824 0x25b8 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:25:06.0839 0x25b8 volmgrx - ok
23:25:06.0858 0x25b8 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:25:06.0870 0x25b8 volsnap - ok
23:25:06.0884 0x25b8 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:25:06.0894 0x25b8 vsmraid - ok
23:25:06.0961 0x25b8 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:25:07.0016 0x25b8 VSS - ok
23:25:07.0034 0x25b8 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:25:07.0043 0x25b8 vwifibus - ok
23:25:07.0066 0x25b8 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:25:07.0076 0x25b8 vwififlt - ok
23:25:07.0105 0x25b8 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:25:07.0136 0x25b8 W32Time - ok
23:25:07.0149 0x25b8 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:25:07.0156 0x25b8 WacomPen - ok
23:25:07.0181 0x25b8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:25:07.0205 0x25b8 WANARP - ok
23:25:07.0209 0x25b8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:25:07.0232 0x25b8 Wanarpv6 - ok
23:25:07.0293 0x25b8 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:25:07.0330 0x25b8 wbengine - ok
23:25:07.0357 0x25b8 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:25:07.0372 0x25b8 WbioSrvc - ok
23:25:07.0404 0x25b8 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:25:07.0422 0x25b8 wcncsvc - ok
23:25:07.0431 0x25b8 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:25:07.0440 0x25b8 WcsPlugInService - ok
23:25:07.0453 0x25b8 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:25:07.0461 0x25b8 Wd - ok
23:25:07.0507 0x25b8 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:25:07.0531 0x25b8 Wdf01000 - ok
23:25:07.0555 0x25b8 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:25:07.0564 0x25b8 WdiServiceHost - ok
23:25:07.0568 0x25b8 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:25:07.0577 0x25b8 WdiSystemHost - ok
23:25:07.0609 0x25b8 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
23:25:07.0621 0x25b8 WebClient - ok
23:25:07.0639 0x25b8 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:25:07.0667 0x25b8 Wecsvc - ok
23:25:07.0685 0x25b8 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:25:07.0711 0x25b8 wercplsupport - ok
23:25:07.0741 0x25b8 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:25:07.0766 0x25b8 WerSvc - ok
23:25:07.0779 0x25b8 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:25:07.0803 0x25b8 WfpLwf - ok
23:25:07.0811 0x25b8 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:25:07.0819 0x25b8 WIMMount - ok
23:25:07.0835 0x25b8 WinDefend - ok
23:25:07.0839 0x25b8 WinHttpAutoProxySvc - ok
23:25:07.0876 0x25b8 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:25:07.0913 0x25b8 Winmgmt - ok
23:25:07.0986 0x25b8 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
23:25:08.0041 0x25b8 WinRM - ok
23:25:08.0086 0x25b8 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:25:08.0096 0x25b8 WinUsb - ok
23:25:08.0138 0x25b8 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:25:08.0167 0x25b8 Wlansvc - ok
23:25:08.0191 0x25b8 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:25:08.0198 0x25b8 WmiAcpi - ok
23:25:08.0225 0x25b8 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:25:08.0237 0x25b8 wmiApSrv - ok
23:25:08.0259 0x25b8 WMPNetworkSvc - ok
23:25:08.0269 0x25b8 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:25:08.0277 0x25b8 WPCSvc - ok
23:25:08.0304 0x25b8 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:25:08.0315 0x25b8 WPDBusEnum - ok
23:25:08.0329 0x25b8 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:25:08.0355 0x25b8 ws2ifsl - ok
23:25:08.0398 0x25b8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
23:25:08.0411 0x25b8 wscsvc - ok
23:25:08.0414 0x25b8 WSearch - ok
23:25:08.0476 0x25b8 [ D161D62AE8D3F3EC1197B012D5E47431, 9D89B5C4B74231F41C039E142E69F4E8060259F1897E7077FE0EE94D58D4A1BA ] WSWNDA3100v2 C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
23:25:08.0488 0x25b8 WSWNDA3100v2 - ok
23:25:08.0578 0x25b8 [ 6075791ED85E47A2A2916B1F34582944, 25B5FAD161711875B38BDD014A26FA527C8EE4854D485989D19A72D5EBBA4054 ] wuauserv C:\Windows\system32\wuaueng.dll
23:25:08.0639 0x25b8 wuauserv - ok
23:25:08.0660 0x25b8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:25:08.0669 0x25b8 WudfPf - ok
23:25:08.0700 0x25b8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:25:08.0711 0x25b8 WUDFRd - ok
23:25:08.0719 0x25b8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:25:08.0728 0x25b8 wudfsvc - ok
23:25:08.0757 0x25b8 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:25:08.0768 0x25b8 WwanSvc - ok
23:25:08.0815 0x25b8 X6va015 - ok
23:25:08.0817 0x25b8 X6va031 - ok
23:25:08.0831 0x25b8 X6va060 - ok
23:25:08.0848 0x25b8 xhunter1 - ok
23:25:08.0865 0x25b8 ================ Scan global ===============================
23:25:08.0891 0x25b8 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
23:25:08.0932 0x25b8 [ CE14A4BBF890A7D4C898CF886D145EC9, AD4BE7CBB0C624EC00E8496AF33AC5AB8C5689C75C66C4C99F2FB7149E912D18 ] C:\Windows\system32\winsrv.dll
23:25:08.0948 0x25b8 [ CE14A4BBF890A7D4C898CF886D145EC9, AD4BE7CBB0C624EC00E8496AF33AC5AB8C5689C75C66C4C99F2FB7149E912D18 ] C:\Windows\system32\winsrv.dll
23:25:08.0971 0x25b8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:25:09.0021 0x25b8 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
23:25:09.0031 0x25b8 [ Global ] - ok
23:25:09.0031 0x25b8 ================ Scan MBR ==================================
23:25:09.0043 0x25b8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:25:09.0267 0x25b8 \Device\Harddisk0\DR0 - ok
23:25:09.0268 0x25b8 ================ Scan VBR ==================================
23:25:09.0273 0x25b8 [ C45ED52722A2D9B2933C024D5FB5A698 ] \Device\Harddisk0\DR0\Partition1
23:25:09.0277 0x25b8 \Device\Harddisk0\DR0\Partition1 - ok
23:25:09.0283 0x25b8 [ 16825DC20864F4F56EB4AAEFB58D8CDE ] \Device\Harddisk0\DR0\Partition2
23:25:09.0286 0x25b8 \Device\Harddisk0\DR0\Partition2 - ok
23:25:09.0288 0x25b8 ================ Scan generic autorun ======================
23:25:09.0696 0x25b8 [ D0E9E2E198C8BA95297EF8C9D04865F1, 1889A66AEEEE1E9D80FB99E23AFBB23AF37044BAA8AE00070667D3B2E32AB804 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:25:10.0085 0x25b8 RtHDVCpl - ok
23:25:10.0148 0x25b8 [ 0133E5265FDD7063F87856C9BD5156C9, 27C0389B3FA0209C6B4D1A8A75AAD23525DD3B5DB7B0CD7358D1D6417818C8EF ] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
23:25:10.0156 0x25b8 LifeCam - ok
23:25:10.0227 0x25b8 Dropbox - ok
23:25:10.0460 0x2598 Object required for P2P: [ 4645910BE6CB805DB15CC49D8B6BAA39 ] TuneUp.UtilitiesSvc
23:25:10.0462 0x25b8 [ 16598A9758F386F82D2C447C70C95D10, 0A698135EFC195C359702AA76897B9C67712FDE0A54B51587134B65510B154ED ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
23:25:10.0487 0x25b8 StartCCC - ok
23:25:10.0550 0x25b8 [ 9E279D1BC39F5C6C530F0A0DB1D2DC98, A8CBB368E306DD72671B63A25C595E0F360768CBBB5C42C01899343BB7B79023 ] C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe
23:25:10.0559 0x25b8 EasyTuneVI - detected UnsignedFile.Multi.Generic ( 1 )
23:25:12.0941 0x2598 Object send P2P result: true
23:25:12.0992 0x25b8 Detect skipped due to KSN trusted
23:25:12.0992 0x25b8 EasyTuneVI - ok
23:25:13.0108 0x25b8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
23:25:13.0175 0x25b8 Sidebar - ok
23:25:13.0198 0x25b8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:25:13.0210 0x25b8 mctadmin - ok
23:25:13.0236 0x25b8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
23:25:13.0265 0x25b8 Sidebar - ok
23:25:13.0270 0x25b8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:25:13.0282 0x25b8 mctadmin - ok
23:25:13.0356 0x25b8 [ 105C276BB7B43501225C419B062096D0, F5D35230FC5E116FB04147F216313D2E2542D96E975B19F5FD9F7641CF11271F ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
23:25:13.0378 0x25b8 ApplePhotoStreams - ok
23:25:13.0540 0x25b8 [ 6FFAA12536B591E67BD17E5197714D6C, B672DF16F261A683D8EBD4A69BC01761B78D6F48425AC34784C826EA857443CD ] C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
23:25:13.0601 0x25b8 Spotify Web Helper - ok
23:25:13.0860 0x25b8 [ C05FA9531D3B18A91C0C6E97A746D011, 1B9FAE97949040B7B465772FB1F7432D7F7CA7D2CC5F1035FF278B198653857D ] C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
23:25:14.0040 0x25b8 Spotify - ok
23:25:14.0090 0x25b8 [ 3C10152733BEFC8A109A751EDBB59551, 38FCDAE6CE1369C1E7B08998AC1E597A494FC84CF528BFC82673CF3E7A5B8C27 ] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
23:25:14.0101 0x25b8 HydraVisionDesktopManager - detected UnsignedFile.Multi.Generic ( 1 )
23:25:16.0521 0x25b8 Detect skipped due to KSN trusted
23:25:16.0522 0x25b8 HydraVisionDesktopManager - ok
23:25:16.0523 0x25b8 Waiting for KSN requests completion. In queue: 27
23:25:17.0523 0x25b8 Waiting for KSN requests completion. In queue: 27
23:25:18.0523 0x25b8 Waiting for KSN requests completion. In queue: 27
23:25:19.0140 0x2058 Object required for P2P: [ 6FFAA12536B591E67BD17E5197714D6C ] C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
23:25:19.0523 0x25b8 Waiting for KSN requests completion. In queue: 2
23:25:20.0523 0x25b8 Waiting for KSN requests completion. In queue: 2
23:25:21.0523 0x25b8 Waiting for KSN requests completion. In queue: 2
23:25:21.0616 0x2058 Object send P2P result: true
23:25:22.0552 0x25b8 Win FW state via NFP2: disabled ( trusted )
23:25:25.0008 0x25b8 ============================================================
23:25:25.0008 0x25b8 Scan finished
23:25:25.0008 0x25b8 ============================================================
23:25:25.0027 0x265c Detected object count: 0
23:25:25.0027 0x265c Actual detected object count: 0
Junkware Removal Tool ist auf dem desktop. MBAM und AdwCleaner sind auch schon auf dem pc  Geändert von Ainshval (23.01.2016 um 12:46 Uhr) |
|
23.01.2016, 13:22
| #4 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Nochmal die logs vom nutzen von Adwcleaner, vor dem posten dieses Threads. Code:
ATTFilter # AdwCleaner v5.030 - Bericht erstellt am 22/01/2016 um 22:10:37
# Aktualisiert am 17/01/2016 von Xplode
# Datenbank : 2016-01-19.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Godlike - GODLIKE-PC
# Gestartet von : C:\Users\Godlike\Downloads\AdwCleaner_5.030.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\Program Files\FileViewPro
[-] Ordner Gelöscht : C:\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}
[-] Ordner Gelöscht : C:\Program Files (x86)\eSupport.com
[-] Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater
[-] Ordner Gelöscht : C:\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}
[-] Ordner Gelöscht : C:\ProgramData\AVG Security Toolbar
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
[-] Ordner Gelöscht : C:\Users\Godlike\AppData\Local\eSupport.com
[-] Ordner Gelöscht : C:\Users\Godlike\AppData\Local\FileViewPro
[-] Ordner Gelöscht : C:\Users\Godlike\AppData\Roaming\Systweak
[-] Ordner Gelöscht : C:\Windows\Installer\{895529FD-A18D-4387-9613-0E72DBE542F8}
[#] Ordner Gelöscht : C:\Windows\SysNative\Tasks\Software Updater
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[-] Datei Gelöscht : C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\foxydeal.sqlite
[-] Datei Gelöscht : C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\user.js
[-] Datei Gelöscht : C:\Users\Godlike\Desktop\Find Drivers with DriverAgent.lnk
[-] Datei Gelöscht : C:\Windows\SysNative\roboot64.exe
[-] Datei Gelöscht : C:\Windows\SysNative\GroupPolicy\Machine\Registry.pol
[-] Datei Gelöscht : C:\Windows\SysNative\GroupPolicy\GPT.ini
[-] Datei Gelöscht : C:\Windows\SysWOW64\lavasofttcpservice.dll
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
[-] Geplante Aufgabe Gelöscht : Software Updater
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DPBHO.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1C6F51F8-BCE6-4702-8952-6A8233359FBC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Schlüssel Gelöscht : HKCU\Software\eSupport.com
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Reg\Clean
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Reg\Clean
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverAgent_is1
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel Gelöscht : HKU\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel Gelöscht : HKU\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
***** [ Internetbrowser ] *****
[-] [C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.quick_start.enable_search1", false);
[-] [C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [5131 Bytes] ##########
Code:
ATTFilter C:\Program Files\FileViewPro\Aspose.Slides.lic->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Aspose.Slides.lic.vir
C:\Program Files\FileViewPro\axvlc.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\axvlc.dll.vir
C:\Program Files\FileViewPro\axvlc.dll.manifest->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\axvlc.dll.manifest.vir
C:\Program Files\FileViewPro\Be.Windows.Forms.HexBox.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Be.Windows.Forms.HexBox.dll.vir
C:\Program Files\FileViewPro\Declarations.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Declarations.dll.vir
C:\Program Files\FileViewPro\DevExpress.Data.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Data.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.Data.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Data.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.dll.vir
C:\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.xml.vir
C:\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.dll.vir
C:\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.xml.vir
C:\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.dll.vir
C:\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.xml.vir
C:\Program Files\FileViewPro\DevExpress.Utils.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Utils.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.Utils.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Utils.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Design.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Design.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Extensions.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Extensions.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Printing.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Printing.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.xml.vir
C:\Program Files\FileViewPro\EULA_FileViewPro.rtf->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\EULA_FileViewPro.rtf.vir
C:\Program Files\FileViewPro\Facebook.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Facebook.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Common.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Common.dll.vir
C:\Program Files\FileViewPro\FileViewPro.exe.config->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.exe.config.vir
C:\Program Files\FileViewPro\FileViewPro.Facebook.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Facebook.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Licensing.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Licensing.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Localization.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Localization.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Strings.3.resources->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Strings.3.resources.vir
C:\Program Files\FileViewPro\FileViewPro.Views.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Document.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Document.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Media.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Media.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Message.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Message.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Mime.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Mime.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Pdf.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Pdf.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Torrent.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Torrent.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Wpd.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Wpd.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Wps.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Wps.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Xps.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Xps.dll.vir
C:\Program Files\FileViewPro\FileViewPro.vshost.exe->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.vshost.exe.vir
C:\Program Files\FileViewPro\FileViewPro.vshost.exe.config->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.vshost.exe.config.vir
C:\Program Files\FileViewPro\FileViewPro.vshost.exe.manifest->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.vshost.exe.manifest.vir
C:\Program Files\FileViewPro\ICSharpCode.SharpZipLib.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\ICSharpCode.SharpZipLib.dll.vir
C:\Program Files\FileViewPro\ICSharpCode.TextEditor.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\ICSharpCode.TextEditor.dll.vir
C:\Program Files\FileViewPro\ImageView.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\ImageView.dll.vir
C:\Program Files\FileViewPro\Implementation.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Implementation.dll.vir
C:\Program Files\FileViewPro\Interop.WIA.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Interop.WIA.dll.vir
C:\Program Files\FileViewPro\IsLicense50.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\IsLicense50.dll.vir
C:\Program Files\FileViewPro\libvlc.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\libvlc.dll.vir
C:\Program Files\FileViewPro\libvlccore.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\libvlccore.dll.vir
C:\Program Files\FileViewPro\LibVlcWrapper.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\LibVlcWrapper.dll.vir
C:\Program Files\FileViewPro\licenses.licx->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\licenses.licx.vir
C:\Program Files\FileViewPro\new_icon.ico->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\new_icon.ico.vir
C:\Program Files\FileViewPro\NLog.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\NLog.dll.vir
C:\Program Files\FileViewPro\O2S.Components.PDFRender4NET.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFRender4NET.dll.vir
C:\Program Files\FileViewPro\O2S.Components.PDFRender4NET.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFRender4NET.xml.vir
C:\Program Files\FileViewPro\O2S.Components.PDFView4NET.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFView4NET.dll.vir
C:\Program Files\FileViewPro\O2S.Components.PDFView4NET.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFView4NET.xml.vir
C:\Program Files\FileViewPro\PaintDotNet.Base.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Base.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Core.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Data.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Data.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Effects.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Effects.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Resources.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Resources.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.SystemLayer.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.SystemLayer.dll.vir
C:\Program Files\FileViewPro\Plugins.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Plugins.xml.vir
C:\Program Files\FileViewPro\QlmControls.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\QlmControls.dll.vir
C:\Program Files\FileViewPro\QlmLicenseLib.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\QlmLicenseLib.dll.vir
C:\Program Files\FileViewPro\SDL.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SDL.dll.vir
C:\Program Files\FileViewPro\SevenZipSharp.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SevenZipSharp.dll.vir
C:\Program Files\FileViewPro\SimplePsd.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SimplePsd.dll.vir
C:\Program Files\FileViewPro\SocialExplorer.FastDBF.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SocialExplorer.FastDBF.dll.vir
C:\Program Files\FileViewPro\SpreadsheetGear.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SpreadsheetGear.dll.vir
C:\Program Files\FileViewPro\SpreadsheetGear.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SpreadsheetGear.xml.vir
C:\Program Files\FileViewPro\Svg.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Svg.dll.vir
C:\Program Files\FileViewPro\swscale-0.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\swscale-0.dll.vir
C:\Program Files\FileViewPro\System.Windows.Forms.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\System.Windows.Forms.dll.vir
C:\Program Files\FileViewPro\TorrentParser.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\TorrentParser.dll.vir
C:\Program Files\FileViewPro\unassoc.bat->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\unassoc.bat.vir
C:\Program Files\FileViewPro\unins000.dat->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\unins000.dat.vir
C:\Program Files\FileViewPro\unins000.msg->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\unins000.msg.vir
C:\Program Files\FileViewPro\Wps\wps2html.exe->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Wps\wps2html.exe.vir
C:\Program Files\FileViewPro\Raw\dcraw.exe->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Raw\dcraw.exe.vir
C:\Program Files\FileViewPro\Langs\ar.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ar.xml.vir
C:\Program Files\FileViewPro\Langs\cs.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\cs.xml.vir
C:\Program Files\FileViewPro\Langs\da.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\da.xml.vir
C:\Program Files\FileViewPro\Langs\de.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\de.xml.vir
C:\Program Files\FileViewPro\Langs\el.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\el.xml.vir
C:\Program Files\FileViewPro\Langs\en-US.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\en-US.xml.vir
C:\Program Files\FileViewPro\Langs\en.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\en.xml.vir
C:\Program Files\FileViewPro\Langs\es.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\es.xml.vir
C:\Program Files\FileViewPro\Langs\fi.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\fi.xml.vir
C:\Program Files\FileViewPro\Langs\fr.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\fr.xml.vir
C:\Program Files\FileViewPro\Langs\hi.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\hi.xml.vir
C:\Program Files\FileViewPro\Langs\hu.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\hu.xml.vir
C:\Program Files\FileViewPro\Langs\it.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\it.xml.vir
C:\Program Files\FileViewPro\Langs\ja.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ja.xml.vir
C:\Program Files\FileViewPro\Langs\ko.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ko.xml.vir
C:\Program Files\FileViewPro\Langs\nl.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\nl.xml.vir
C:\Program Files\FileViewPro\Langs\no.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\no.xml.vir
C:\Program Files\FileViewPro\Langs\pl.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\pl.xml.vir
C:\Program Files\FileViewPro\Langs\pt-br.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\pt-br.xml.vir
C:\Program Files\FileViewPro\Langs\pt-pt.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\pt-pt.xml.vir
C:\Program Files\FileViewPro\Langs\ro.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ro.xml.vir
C:\Program Files\FileViewPro\Langs\ru.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ru.xml.vir
C:\Program Files\FileViewPro\Langs\sv.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\sv.xml.vir
C:\Program Files\FileViewPro\Langs\tr.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\tr.xml.vir
C:\Program Files\FileViewPro\Langs\zh-cn.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\zh-cn.xml.vir
C:\Program Files\FileViewPro\Langs\zh-tw.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\zh-tw.xml.vir
C:\Program Files\FileViewPro\Cursors\PanToolCursor.cur->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Cursors\PanToolCursor.cur.vir
C:\Program Files\FileViewPro\Code\Extended\Patch-Mode.xshd->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Code\Extended\Patch-Mode.xshd.vir
C:\Program Files\FileViewPro\Code\Extended\Python-Mode.xshd->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Code\Extended\Python-Mode.xshd.vir
C:\Program Files\FileViewPro\Code\Extended\SQL-Mode.xshd->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Code\Extended\SQL-Mode.xshd.vir
C:\Program Files\FileViewPro\7z\7z.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\7z\7z.dll.vir
C:\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\config.json->C:\AdwCleaner\Quarantine\C\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\config.json.vir
C:\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\def.bin->C:\AdwCleaner\Quarantine\C\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\def.bin.vir
C:\Program Files (x86)\eSupport.com\driveragent\DriverAgent.exe->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\DriverAgent.exe.vir
C:\Program Files (x86)\eSupport.com\driveragent\launcher64.dll->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\launcher64.dll.vir
C:\Program Files (x86)\eSupport.com\driveragent\unins000.dat->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\unins000.dat.vir
C:\Program Files (x86)\eSupport.com\driveragent\unins000.exe->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\unins000.exe.vir
C:\Program Files (x86)\SoftwareUpdater\config->C:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\config.vir
C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe->C:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe.vir
C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.dll->C:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.dll.vir
C:\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\config.json->C:\AdwCleaner\Quarantine\C\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\config.json.vir
C:\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\def.bin->C:\AdwCleaner\Quarantine\C\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\def.bin.vir
C:\ProgramData\AVG Security Toolbar\TBCampaignINSP.txt->C:\AdwCleaner\Quarantine\C\ProgramData\AVG Security Toolbar\TBCampaignINSP.txt.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\DriverAgent.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\DriverAgent.lnk.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\Uninstall DriverAgent.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\Uninstall DriverAgent.lnk.vir
C:\Users\Godlike\AppData\Local\FileViewPro\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm\1.5.0.0\user.config->C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Local\FileViewPro\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm\1.5.0.0\user.config.vir
C:\Windows\Installer\{895529FD-A18D-4387-9613-0E72DBE542F8}\{4DEDD96D-51ED-4597-9EA2-1E6FE5768B08}.xpi->C:\AdwCleaner\Quarantine\C\Windows\Installer\{895529FD-A18D-4387-9613-0E72DBE542F8}\{4DEDD96D-51ED-4597-9EA2-1E6FE5768B08}.xpi.vir
C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml->C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml.vir
C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\foxydeal.sqlite->C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\foxydeal.sqlite.vir
C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\user.js->C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\user.js.vir
C:\Users\Godlike\Desktop\Find Drivers with DriverAgent.lnk->C:\AdwCleaner\Quarantine\C\Users\Godlike\Desktop\Find Drivers with DriverAgent.lnk.vir
C:\Windows\SysNative\roboot64.exe->C:\AdwCleaner\Quarantine\C\Windows\SysNative\roboot64.exe.vir
C:\Windows\SysNative\GroupPolicy\Machine\Registry.pol->C:\AdwCleaner\Quarantine\C\Windows\SysNative\GroupPolicy\Machine\Registry.pol.vir
C:\Windows\SysNative\GroupPolicy\GPT.ini->C:\AdwCleaner\Quarantine\C\Windows\SysNative\GroupPolicy\GPT.ini.vir
C:\Windows\SysWOW64\lavasofttcpservice.dll->C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\lavasofttcpservice.dll.vir
Sind auch noch logs von 2015 Oktober da, auf anforderung poste ich diese auch gerne . Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 23.01.2016 Suchlaufzeit: 13:00 Protokolldatei: Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2016.01.23.02 Rootkit-Datenbank: v2016.01.20.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Godlike Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 360511 Abgelaufene Zeit: 14 Min., 30 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 4 PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll, , [ea24d26bfd9c3006fb057d3058acd030], PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll, , [b35b84b99dfc191d6eb9238b44c09868], Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, , [0e00fa437425fe383bc6ce107b86fb05], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat, , [6ba3ed50831674c2901ab235ab59f808], Registrierungsschlüssel: 3 PUP.Optional.CrossRider, HKU\S-1-5-21-1581255019-2042543514-717909806-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{95BBB557-50F8-82B9-EE41-A834434DB4DE}, , [38d676c7a2f787af837df0bdf50f9070], PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, , [61ad033abddc96a08bfbb934a85abe42], PUP.Optional.SystemSpeedup, HKU\S-1-5-21-1581255019-2042543514-717909806-1000\SOFTWARE\SYSTWEAK\ssd, , [5ab470cdcecb2214dfa6b93459a9cf31], Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 6 PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\jetpack\@77AF5469C15DBB102B74AB45D727C2C877AF, , [e02ec578118802340924396c49b910f0], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\jetpack\@77AF5469C15DBB102B74AB45D727C2C877AF\simple-storage, , [e02ec578118802340924396c49b910f0], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component2, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}, , [6ba3ed50831674c2901ab235ab59f808], Dateien: 19 PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll, , [ea24d26bfd9c3006fb057d3058acd030], PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll, , [b35b84b99dfc191d6eb9238b44c09868], Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, , [0e00fa437425fe383bc6ce107b86fb05], RiskWare.Injector.DC, C:\Users\Godlike\Desktop\Extreme Injector v3.exe, , [c84679c4ebae1c1a356e43e317eaaf51], RiskWare.Injector.DC, C:\Users\Godlike\Downloads\Extreme Injector v3.6.1 - by master131_mpgh.net.rar, , [d33bb18c8118c571e7bc8c9ad62b8f71], PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{30D5C149-054C-E0A0-969E-E0793FCFA3B3}.dll, , [38d676c7a2f787af837df0bdf50f9070], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi, , [35d9b9844d4cd660cd3ca40cfd0626da], PUP.Optional.FireFoxHijack, C:\Program Files (x86)\Mozilla Firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js, , [7e901a23415839fd8f207eb807fde31d], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\jetpack\@77AF5469C15DBB102B74AB45D727C2C877AF\simple-storage\store.json, , [e02ec578118802340924396c49b910f0], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\config.json, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\hello.js, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\log.html, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\manifest.json, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\scriptTagContext.js, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\tmp_bg.js, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\uconfig.json, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component2\plugin, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\c.dat, , [6ba3ed50831674c2901ab235ab59f808], PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat, , [6ba3ed50831674c2901ab235ab59f808], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Hier der JRT(scan) Log : Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.2 (01.06.2016)
Operating System: Windows 7 Home Premium x64
Ran by Godlike (Administrator) on 23.01.2016 at 13:18:54,86
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 12
Successfully deleted: C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8 (Folder)
Successfully deleted: C:\ProgramData\97cab95400000c6c (Folder)
Successfully deleted: C:\ProgramData\c7d2cf1f50cccfec (Folder)
Successfully deleted: C:\Windows\system32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 (Task)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1G5902JA (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7HT2W55Q (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E8X0QYDM (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0QRZ3L8 (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NE8P4M6T (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P0B5PDYY (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P3UO2S7B (Folder)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XP7A5IFP (Folder)
Deleted the following from C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\prefs.js
user_pref(browser.search.searchengine.alias, istartsurf);
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.iconURL, hxxp://www.istartsurf.com/web/favicon.ico);
user_pref(browser.search.searchengine.name, istartsurf);
user_pref(browser.search.searchengine.ptid, cor);
user_pref(browser.search.searchengine.uid, SAMSUNGXHD502HJ_S20BJA0B580295);
user_pref(browser.search.searchengine.url, hxxp://www.istartsurf.com/web/?type=dspp&ts=1435589941&z=25aa2b235240af3686dd3b9g2z9c0w0w6bat5tcbab&from=cor&uid=SAMSUNGXHD502HJ_
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.01.2016 at 13:21:07,72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
24.01.2016, 18:27
| #5 |
| /// Malwareteam   | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen. Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
 Wenn du in deinem ersten Postings mehrere "Antworten" schreibst, tauchst du nicht mehr in unseren internen Suche von "unbeantwortete Themen" auf, darum wurde hier noch nicht geantwortet... Zunächst erstelle bitte mal neue, aktuelle Logs mit FRST damit ich mich mal auskenne hier Schritt 1 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
24.01.2016, 18:41
| #6 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten.Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-24 18:38:40)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version: - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version: - Blue Mammoth Games)
Browser Max (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\{95BBB557-50F8-82B9-EE41-A834434DB4DE}) (Version: 1.4.9 - Experience Plugin corp) <==== ACHTUNG
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version: - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version: - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version: - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version: - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version: - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version: - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version: - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version: - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe
Task: {0830D47B-264C-4C5D-8FF2-D9AD87D11414} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG
Task: {674515C9-A0D8-456F-87F3-BA014568940D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9172961A-E770-4E0A-83B0-48F9EA672D15} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00012800 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00011264 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat
2016-01-21 01:58 - 2016-01-21 01:58 - 00028160 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll
2015-08-22 07:54 - 2015-08-23 22:51 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-12-14 12:58 - 2016-01-21 09:41 - 50679920 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libcef.dll
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-14 12:58 - 2016-01-21 09:41 - 01882224 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libglesv2.dll
2015-12-14 12:58 - 2016-01-21 09:41 - 00082544 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libegl.dll
2015-08-14 17:58 - 2015-08-23 22:51 - 00005120 _____ () C:\Windows\syswow64\ktmw3232.dll
2016-01-21 03:02 - 2016-01-21 03:02 - 17882304 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E39E1162-1AAA-411B-A02A-846CA9BFFF10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
23-01-2016 13:18:55 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/22/2016 11:51:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 38.0.5.5623 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ba8
Startzeit: 01d1555a178d160c
Endzeit: 90
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: b871bce0-c15a-11e5-afa2-1c6f65d41233
Error: (01/22/2016 11:51:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x188
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1730
Startzeit: 01d135cd59c12231
Endzeit: 156
Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe
Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233
Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 233c
Startzeit: 01d12cf4aca80f57
Endzeit: 2698
Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe
Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233
Error: (11/24/2015 10:01:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x17ac
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/23/2015 05:28:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x4958
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/20/2015 06:47:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x76bc
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/17/2015 06:00:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x844c
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/15/2015 04:56:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0xad88
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/13/2015 12:41:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Steam.exe, Version 3.1.81.43 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 280
Startzeit: 01d11e07d08b12ab
Endzeit: 16
Anwendungspfad: D:\Steam\Steam.exe
Berichts-ID: 70cf4151-89fb-11e5-938b-4494fcf2eb50
Systemfehler:
=============
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:10:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:10:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WSWNDA3100v2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AVG PC TuneUp Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===================================
Date: 2016-01-21 01:46:32.761
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.626
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.232
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.943
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.756
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.279
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.781
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.693
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.600
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 67%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 1340.06 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 4758.07 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:97.56 GB) (Free:1.35 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:11.25 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
Code:
ATTFilter
LastRegBack: 2016-01-21 10:59
==================== Ende von FRST.txt ============================
|
|
24.01.2016, 18:43
| #7 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. 2.ter Scan, weil ich denke das die frst falsch gescannt wurde . Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (24-01-2016 18:41:01)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8316528 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG
Chrome:
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S3 cpuz138; C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [43304 2015-11-30] (CPUID)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-24] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-23] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-24 18:39 - 2016-01-24 18:41 - 00018963 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-24 18:38 - 2016-01-24 18:39 - 00065612 _____ C:\Users\Godlike\Desktop\Addition.txt
2016-01-23 13:26 - 2016-01-23 13:26 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2016-01-23 12:59 - 2016-01-23 12:59 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-23 12:46 - 2016-01-23 12:46 - 01600184 _____ (Malwarebytes) C:\Users\Godlike\Desktop\JRT.exe
2016-01-22 23:23 - 2016-01-22 23:51 - 00199698 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_23.23.12_log.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-24 18:41 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-21 11:07 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-21 10:15 - 00051200 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00003162 _____ C:\Windows\System32\Tasks\Browser Max
2016-01-21 01:58 - 2016-01-21 01:58 - 00003150 _____ C:\Windows\System32\Tasks\Browser Max2
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-24 18:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-24 18:40 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-24 18:39 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-24 18:39 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-24 18:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-24 17:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-24 16:50 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-24 16:50 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-24 16:09 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-24 12:30 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-24 12:30 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-24 12:30 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-24 12:30 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-24 12:29 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-24 12:29 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-24 12:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-24 02:54 - 2015-01-17 10:39 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\TS3Client
2016-01-23 13:00 - 2015-08-23 22:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-01-21 01:58 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
Einige Dateien in TEMP:
====================
C:\Users\Godlike\AppData\Local\Temp\410cd83c4cb3ea4f078cf76a6fb32361.dll
C:\Users\Godlike\AppData\Local\Temp\532018948649ce2b41018b827bc595f3.dll
C:\Users\Godlike\AppData\Local\Temp\73bb9f9c.exe
C:\Users\Godlike\AppData\Local\Temp\98fec1cbe.dll
C:\Users\Godlike\AppData\Local\Temp\b802a.dll
C:\Users\Godlike\AppData\Local\Temp\b875a87b4.dll
C:\Users\Godlike\AppData\Local\Temp\cf8e2b5e3.dll
C:\Users\Godlike\AppData\Local\Temp\dba40eb.exe
C:\Users\Godlike\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp60jpac.dll
C:\Users\Godlike\AppData\Local\Temp\e63fa933.dll
C:\Users\Godlike\AppData\Local\Temp\e856a7fb7.dll
C:\Users\Godlike\AppData\Local\Temp\eea7d0.dll
C:\Users\Godlike\AppData\Local\Temp\fe50d.dll
C:\Users\Godlike\AppData\Local\Temp\Gw2.exe
C:\Users\Godlike\AppData\Local\Temp\UNINSTALL.EXE
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-21 10:59
==================== Ende von FRST.txt ============================
|
|
25.01.2016, 15:39
| #8 |
| /// Malwareteam | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Schritt 1 Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Schritt 2 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG
Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG
Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
cmd: netsh advfirewall set allprofiles state on
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 3 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.  Hast du noch irgendwelche Probleme mit deinem Rechner? Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... Geändert von burningice (25.01.2016 um 15:48 Uhr) |
|
25.01.2016, 17:08
| #9 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-25 17:00:08) Run:1
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG
Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG
Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
cmd: netsh advfirewall set allprofiles state on
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
emptytemp:
*****************
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} => Schlüssel nicht gefunden.
C:\Windows\System32\Tasks\Browser Max => nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Max => Schlüssel nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} => Schlüssel nicht gefunden.
C:\Windows\System32\Tasks\Browser Max2 => nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Max2 => Schlüssel nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2}" => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Speedial => Schlüssel nicht gefunden.
C:\ProgramData\TEMP => ":CB0AACC9" ADS erfolgreich entfernt.
========= netsh advfirewall set allprofiles state on =========
OK.
========= Ende von CMD: =========
"HKLM\Software\Wow6432Node\MozillaPlugins\@perfectworld.com/npArcPlayNowPlugin" => Schlüssel erfolgreich entfernt
C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi => nicht gefunden.
"C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js" => nicht gefunden.
"C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF" => nicht gefunden.
ALSysIO => Dienst erfolgreich entfernt
MSICDSetup => Dienst erfolgreich entfernt
X6va015 => Dienst erfolgreich entfernt
X6va031 => Dienst erfolgreich entfernt
X6va060 => Dienst erfolgreich entfernt
xhunter1 => Dienst erfolgreich entfernt
C:\Users\Godlike\AppData\Local\Browser Max => erfolgreich verschoben
EmptyTemp: => 2.2 GB temporäre Dateien entfernt.
Das System musste neu gestartet werden.
==== Ende von Fixlog 17:00:33 ====
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-25 17:07:12)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version: - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version: - Blue Mammoth Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version: - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version: - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version: - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version: - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version: - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version: - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version: - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version: - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {49239E6F-18B2-4004-92BC-4D5DA321A699} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9172961A-E770-4E0A-83B0-48F9EA672D15} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {F86B3000-0FF6-4135-917C-7E275734E519} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-08-14 17:58 - 2015-08-23 22:51 - 00005120 _____ () C:\Windows\syswow64\ktmw3232.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E39E1162-1AAA-411B-A02A-846CA9BFFF10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
25-01-2016 16:57:31 Revo Uninstaller's restore point - Browser Max
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/25/2016 04:57:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x1af4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (01/22/2016 11:51:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 38.0.5.5623 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ba8
Startzeit: 01d1555a178d160c
Endzeit: 90
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: b871bce0-c15a-11e5-afa2-1c6f65d41233
Error: (01/22/2016 11:51:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x188
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1730
Startzeit: 01d135cd59c12231
Endzeit: 156
Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe
Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233
Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 233c
Startzeit: 01d12cf4aca80f57
Endzeit: 2698
Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe
Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233
Error: (11/24/2015 10:01:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x17ac
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/23/2015 05:28:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x4958
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/20/2015 06:47:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x76bc
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/17/2015 06:00:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x844c
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Error: (11/15/2015 04:56:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0xad88
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3
Systemfehler:
=============
Error: (01/25/2016 01:03:33 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:10:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
Modulpfad: C:\Windows\System32\bcmihvsrv64.dll
Error: (01/22/2016 10:10:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WSWNDA3100v2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2016-01-21 01:46:32.761
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.626
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.232
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.943
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.756
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.279
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.781
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.693
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-11-27 10:16:40.600
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 1857.22 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 6075.55 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:97.56 GB) (Free:4.66 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:10.46 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
25.01.2016, 17:13
| #10 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (25-01-2016 17:05:47)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8316528 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]
Chrome:
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-25] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-23] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 cpuz138; \??\C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-25 17:00 - 2016-01-25 17:00 - 00004120 _____ C:\Users\Godlike\Desktop\Fixlog.txt
2016-01-25 16:55 - 2016-01-25 16:55 - 00001264 _____ C:\Users\Godlike\Desktop\Revo Uninstaller.lnk
2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2016-01-25 16:54 - 2016-01-25 16:54 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Godlike\Desktop\revosetup95.exe
2016-01-24 18:39 - 2016-01-25 17:06 - 00017355 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-24 18:38 - 2016-01-24 18:41 - 00065612 _____ C:\Users\Godlike\Desktop\Addition.txt
2016-01-23 13:26 - 2016-01-23 13:26 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2016-01-23 12:59 - 2016-01-23 12:59 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-23 12:46 - 2016-01-23 12:46 - 01600184 _____ (Malwarebytes) C:\Users\Godlike\Desktop\JRT.exe
2016-01-22 23:23 - 2016-01-22 23:51 - 00199698 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_23.23.12_log.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-25 17:05 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-21 11:07 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-25 17:04 - 00061952 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-01-25 17:04 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-25 17:04 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-25 17:03 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-25 17:03 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-25 17:03 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-25 17:03 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-25 17:03 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-25 17:03 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-25 17:02 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-25 17:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-25 16:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-25 16:57 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-25 16:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-25 14:14 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-25 14:14 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-24 21:46 - 2015-01-17 10:39 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\TS3Client
2016-01-24 21:34 - 2015-06-05 12:59 - 00000000 ____D C:\Users\Godlike\AppData\Local\Steam
2016-01-24 21:19 - 2015-07-27 14:53 - 00000000 ____D C:\Users\Godlike\Desktop\Doks
2016-01-24 19:36 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-24 19:18 - 2014-05-20 16:07 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\LolClient
2016-01-24 18:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-23 13:00 - 2015-08-23 22:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-21 10:59
==================== Ende von FRST.txt ============================
 aber kommt das von denen ? oder generell nur von downloads ?.Werde aber weiterhin den threat verfolgen um sicher zu gehen das alles weg ist ! Ein danke post wirst du auch noch von mir bekommen . |
|
25.01.2016, 18:29
| #11 | |
| /// Malwareteam | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Wir brauchen auch noch einen abschließenden Scan ESET Online Scanner
Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern... In deinem Fall hast du die Infektion vermutlich von dem Installer von diesem Programm gekriegt: Zitat:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
26.01.2016, 18:40
| #12 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Mhmm das programm hat wohl noch einiges gefunden . Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e6fdb0e1ea738c45be1f78361ee9a35f
# end=init
# utc_time=2016-01-26 08:47:30
# local_time=2016-01-26 09:47:30 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 27816
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e6fdb0e1ea738c45be1f78361ee9a35f
# end=updated
# utc_time=2016-01-26 08:50:42
# local_time=2016-01-26 09:50:42 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=e6fdb0e1ea738c45be1f78361ee9a35f
# engine=27816
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-01-26 01:37:09
# local_time=2016-01-26 02:37:09 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 158141 205445279 0 0
# scanned=452578
# found=103
# cleaned=0
# scan_time=17186
sh=A89CBB855D1D817504C73A97928E20B769467312 ft=1 fh=eb62d49b9a4a84ce vn="Variante von Win32/Conduit.SearchProtect.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir"
sh=150F3C518C04F43587191CF74B64A60B3481D2B1 ft=1 fh=7b5f7deea3da51cd vn="Variante von Win32/Conduit.SearchProtect.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir"
sh=A84D20259894D103902B7793478C92F6074D91F8 ft=1 fh=756bcba5a17bf9e9 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir"
sh=8EDB805A1CCE376CE49A7596AC32DECF5CBE97EF ft=1 fh=13592d25c84570d3 vn="Variante von Win32/Conduit.SearchProtect.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir"
sh=C3BA588339DAD76E9A0ACD182045E60CD53BF81D ft=1 fh=1d0dde9de0d7f56a vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir"
sh=395FACDD5FB1DDCF88C890017B2B6D1B3577959B ft=1 fh=75b444e12abf0f79 vn="Variante von Win32/Conduit.SearchProtect.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir"
sh=E0309A9DE1725D7A1D9A6A31FBE9D24829159995 ft=1 fh=e34227a016969ae1 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir"
sh=75590FE2ECB98E82A3ED659C99E6237632765764 ft=1 fh=f4256eaeddc59ec2 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir"
sh=A4439885E159383833A11A793B4D1635E75F867F ft=1 fh=b3bb1e3868e6e0a3 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir"
sh=147A0302D0A75A5CBD4056936E0EAA09FF3E18CE ft=1 fh=6569f7c240c29224 vn="Variante von Win32/Conduit.SearchProtect.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir"
sh=C7C0F42A23562AA6DCCD60326FD8CC2AA41B5448 ft=1 fh=c053642cee9f3def vn="Win32/Thinknice.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir"
sh=4E5E1B36910AD12E0E328F71A7CDC6EA6C009F9E ft=1 fh=ad050ae056d7e21e vn="Win32/Thinknice.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir"
sh=8EB72E101395FEBB37131078A884E25D05BB51C9 ft=1 fh=c71c00113a7cc125 vn="Variante von Win32/AdWare.MultiPlug.T Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\DiscounTLoCatOr\u8kAxb3fr.dll.vir"
sh=458A7DCB3C85CBE3C93EB7876FA0E6CD7E07F0F6 ft=1 fh=c71c0011129d357b vn="Variante von Win32/AdWare.MultiPlug.S Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\DiscounTLoCatOr\u8kAxb3fr.exe.vir"
sh=21FA935C037CDD4DA753895AA750262A3056B871 ft=1 fh=c71c001127f5a6d6 vn="Variante von Win64/Adware.MultiPlug.B Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\DiscounTLoCatOr\u8kAxb3fr.x64.dll.vir"
sh=A0D52DCF369EF5A26EDD02F381A30BC06D6159F1 ft=1 fh=c71c00110a80296a vn="Variante von Win64/SProtector.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\Fast And Safe\FastAndSafe_x64.dll.vir"
sh=56659F7FF1F1FA7906A77228E315F65F38BCEF73 ft=1 fh=0ff759dfc352fd03 vn="Variante von Win32/ELEX.AD evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir"
sh=1D03A81886EDF9606846569E1D438666B78AACBB ft=1 fh=c71c0011b1721274 vn="Variante von Win32/AdWare.MultiPlug.Y Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\savingtoyoou\nc6PAn.dll.vir"
sh=3234CF556DE3998C997B452E43B9F6AEF16FAAA6 ft=1 fh=c71c00117e710243 vn="Variante von Win32/AdWare.MultiPlug.AB Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\savingtoyoou\nc6PAn.exe.vir"
sh=240BB47ACE5BFBB0480A55613304EBEDF2C9E8AD ft=1 fh=dbd092d9f12ad0e6 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\TubeDimmer.exe.vir"
sh=C119154F2505246F2F1FF21B0AC3F96667B300CD ft=1 fh=18e7345265268015 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\TubeDimmer64.exe.vir"
sh=60B2A72AE5FF3CDC5B25B451F478E917D74DB6A8 ft=1 fh=3b179ee9367fefd1 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\TubeDimmerService.exe.vir"
sh=B3C358F8D90C52607175D8EBCDFCBB2C50B7F73D ft=1 fh=64ecea5d0a77208e vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmer.exe.vir"
sh=C119154F2505246F2F1FF21B0AC3F96667B300CD ft=1 fh=18e7345265268015 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmer64.exe.vir"
sh=92DFB296C55107E1FF003B05034FC06EE419F4C3 ft=1 fh=5c30942c78325abd vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmerService.exe.vir"
sh=E2702E15F00C3ECD2699295A34BC10AA347E56B6 ft=1 fh=a0e2dd5d83ce6880 vn="MSIL/Adware.PullUpdate.I Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmerUpdate.exe.vir"
sh=4B438C9B64DD27C64140EC83EA5020B761BA94B3 ft=1 fh=c35f7b16075203da vn="Variante von Win32/ELEX.AE evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\WPM\wprotectmanager.exe.vir"
sh=705761CE546199C3EF51F4BBDC30B49DB4D96A35 ft=1 fh=feecfd7c534a9d83 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Local\Temp\OCS\ocs_v71b.exe.vir"
sh=79308F52434579AE91CE42EF4E032BBBE95B728E ft=0 fh=0000000000000000 vn="JS/Adware.MultiPlug.I Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\2bdbm4v8@llhgs-.edu\content\bg.js.vir"
sh=C4420C6E94B8CAACCB3811384280D8A93CB0A37D ft=1 fh=25f111c507a31a21 vn="Win32/Toolbar.Conduit.R evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\OpenCandy\0B6E912F691E46FBA32893082D45CBE8\sp-downloader.exe.vir"
sh=DA1A38E6C4F6C3D735C094F41EB6BA73194E95DA ft=1 fh=e6a12e5ba6d150fb vn="Variante von Win32/DealPly.S evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Speedial\UpdateProc\UpdateTask.exe.vir"
sh=C1515799C5063A5CAAD8CAB51725104041B7D5C1 ft=1 fh=bae9daf254c5bb84 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\SysNative\roboot64.exe.vir"
sh=01B3B3ACA52DBB2039411FE9439BDA6918C08005 ft=1 fh=be6702d52ffb235f vn="Variante von Win64/BrowseFox.AC evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys.vir"
sh=94823B4BF2F736A41D956075DBA58FF793851136 ft=0 fh=0000000000000000 vn="Variante von Win32/Delf.QDK Trojaner" ac=I fn="C:\Users\Godlike\Downloads\FeenixDash.rar"
sh=D9CD6E3C5B7D4305C73BC03DF91F35506489E4A5 ft=1 fh=9b7812153d57257c vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Godlike\Downloads\Matrix Screensaver - CHIP-Installer.exe"
sh=3425236BF120CD2C07351BA76341A45D37A5C5C1 ft=1 fh=7453b3f759f8fb4e vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Godlike\Downloads\spotydl_setup.exe"
sh=D45985A4A3152CAD455E60DDCD0B5B84EF51BA17 ft=1 fh=6baa6a20e4167795 vn="Win32/FireHooker.A Trojaner" ac=I fn="C:\Windows\SysWOW64\ktmw3232.dll"
sh=201DFDE604D9369DA4630503EA9BF4682B95DE0E ft=0 fh=0000000000000000 vn="Win32/SoftonicDownloader.E evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-04-21 045158\Backup Files 2013-04-21 190001\Backup files 1.zip"
sh=CFCA6F1F932B59864A284BA27CF47276E41B0A72 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-04-21 045158\Backup Files 2013-04-28 190001\Backup files 2.zip"
sh=94256CBF2B26C81084129ACBE0CCB262AC61FC87 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-12 190002\Backup files 2.zip"
sh=B1B9903D4004569B2FA868F1C3361F73282EEBDB ft=0 fh=0000000000000000 vn="Win32/SoftonicDownloader.E evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-12 190002\Backup files 3.zip"
sh=8F2D525B0079441983F33398B9B1F54D5D5C82F0 ft=0 fh=0000000000000000 vn="JS/Kryptik.ALH Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-19 190001\Backup files 1.zip"
sh=78CC8C0B65DBC58B512E87DB6A7E2A750D23F545 ft=0 fh=0000000000000000 vn="Java/Exploit.Agent.OHO Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-19 190001\Backup files 3.zip"
sh=A3AF88B16F6CEFF96AA4C6DABABD49CEA3837C77 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-26 190002\Backup files 1.zip"
sh=69391A2B842FB1CF7726D93D3D6D8A8609724817 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-26 190002\Backup files 3.zip"
sh=0EBEF6FB81311B4C091A294284DAA2C01DDC73C5 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 1.zip"
sh=AC5FC18947FBA31D4038C4AB88B66A748F5A205D ft=0 fh=0000000000000000 vn="JS/Kryptik.ALH Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 2.zip"
sh=57E46EB08F2E099C250DB6193A787F77D41F63B3 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 3.zip"
sh=0DD646EF8392BF3EAC28CD0E9219F50BDDBE4233 ft=0 fh=0000000000000000 vn="Win32/SoftonicDownloader.E evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 4.zip"
sh=4E488F427B2E5598708442270FFF5DC6387B8443 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 7.zip"
sh=B97A1C88C838340F26DEA6EEC9996A59E9124B9B ft=0 fh=0000000000000000 vn="Java/Exploit.Agent.ONS Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-16 190008\Backup files 2.zip"
sh=15AA7C121A7BF02E06BFF66994E1EF4DFC914768 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 1.zip"
sh=D119A8924EFB53AB170A433ADCA986FCAF968B88 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 3.zip"
sh=D88010994DB391591A88DBC3461D61B99FBCD2CF ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 4.zip"
sh=0579561D5614A50588429CED998C67303ED57441 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 8.zip"
sh=7695B81B4CC575480947BE52CAC014C7279E6A7E ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 1.zip"
sh=DFF10DAE4C9FA65F2C5F6463DEEA168255533F93 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 3.zip"
sh=DF550B8DE6D536C08599FBBCE71725A53BC7D69F ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 4.zip"
sh=1D6A3DCC90A6E384A8BB039D81823C6095957D67 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 8.zip"
sh=446E7F3A04E0FD128C23118474FEC107AFA1F2E6 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.Themida.AAL Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-28 190002\Backup files 12.zip"
sh=C9293AA26D118E3EA58970294B161E94A667AD3A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-28 190002\Backup files 2.zip"
sh=CB4521DA3F8EBB6965982DDA96613674A3B12D07 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-04 190002\Backup files 10.zip"
sh=479233D056686192D0ABCCA1A8273DA0D3CED784 ft=0 fh=0000000000000000 vn="Win32/Packed.Autoit.H verdächtige Datei" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-04 190002\Backup files 3.zip"
sh=52561583FBDC3FE75F804EBA1C2A3942332B7234 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-11 190005\Backup files 1.zip"
sh=38FA13647CA558A0692993055D3376D4E9C81E5A ft=0 fh=0000000000000000 vn="Win32/Somoto.I evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-11 190005\Backup files 2.zip"
sh=1E8661C54CEF05C78367246216818FCE51E6DD9A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-11 190005\Backup files 3.zip"
sh=9AB5078E5204F901B8CFC1AE803C5EE243CB2CCC ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-18 190003\Backup files 1.zip"
sh=AF2E57DD117979C2667B393CE1421A3C9FE4353A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-25 190002\Backup files 1.zip"
sh=EFA2EFC270D64749A4793C90214149F8AB1B0282 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-01 190002\Backup files 1.zip"
sh=8ABB4FC155B276D532C0BA141CFA89F1BEB5097C ft=0 fh=0000000000000000 vn="Win32/Toolbar.Babylon.AE evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-08 190013\Backup files 1.zip"
sh=3A97CAB944BFA37CFBEFE6D22F92ED13959E3D14 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-15 190004\Backup files 2.zip"
sh=C4EE247FD1990B5490DACF41333CC34CDC81D147 ft=0 fh=0000000000000000 vn="Win32/Packed.Autoit.H verdächtige Datei" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-15 190004\Backup files 3.zip"
sh=7BE8F5CDB0C240869B5E991EC5B28877C2061627 ft=0 fh=0000000000000000 vn="Variante von Win32/FileScout.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-22 190002\Backup files 1.zip"
sh=6008C4C9207766E16DEF0ABC019ECD4526B9E170 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 1.zip"
sh=09B63D3A7037037C166905464A1743DC65C2EA9D ft=0 fh=0000000000000000 vn="Win32/Somoto.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 15.zip"
sh=E0F648AA61F119D04A014848F581E62D1CA8294A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 16.zip"
sh=61F381F314616B46BCD94E131DA4AE6A0B8FF31F ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 2.zip"
sh=EF2F78B6D3F82BBEC326C6F9EDF908EDC41306FC ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 32.zip"
sh=32477F32EBEEB3CA21B836D4F545B6239B7E64A0 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.Themida.AAL Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 40.zip"
sh=149C885BB5373D687B038F5DE380D799B32CAD86 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 41.zip"
sh=5A08981D4F4FD939318FFF4B4D160372E7D26FBD ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 8.zip"
sh=8E7E884A8D8B494B54181C93DDD1A73DC425A2F1 ft=0 fh=0000000000000000 vn="Win32/WinloadSDA.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-27 190006\Backup files 3.zip"
sh=1714C5E02BB4B85BFDE02BDB88DF1EC7C826110F ft=0 fh=0000000000000000 vn="Variante von Win32/YourFileDownloader.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-11-03 190003\Backup files 1.zip"
sh=CBBB548CE8B92C2474E30EAE9EB444A83926AF84 ft=0 fh=0000000000000000 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-11-24 190005\Backup files 2.zip"
sh=A4DC44F64B7457A374B97A28E10B052B5994E99E ft=0 fh=0000000000000000 vn="Variante von Win32/Verti.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-12-01 190002\Backup files 2.zip"
sh=F9E2277F9CF322DC4D771B5E0B903CC6D7A86ED2 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 1.zip"
sh=2365F14EAFEEEA14D4BA95F2EC9484953441D1DE ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 10.zip"
sh=A0258FB1897CAC758C36E8FE5C7EE63A37A508F5 ft=0 fh=0000000000000000 vn="Win32/Somoto.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 17.zip"
sh=B002BCAFCBC68FC709595B1D170BA700FC64BFE1 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 18.zip"
sh=49FEA55DB0F1FA27D3A23F93860227216DEBEA59 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 2.zip"
sh=3912689DEC423F384D5636DB00EAECEB9158643C ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 3.zip"
sh=EE80396BCF6CCAFD39818F4AAE2176EBE321019E ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 37.zip"
sh=6A900AF4B15948C2252347209D3EABB148D57270 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.Themida.AAL Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 44.zip"
sh=6EA4D866CEEE56C868A3D42DFBF063759C0B235C ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 48.zip"
sh=9DBD84B47BB947D6E5D9E3EAC24F7C9B93785272 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 1.zip"
sh=93FA03BBEAA4AE9800E721C755FA94C17BF44A11 ft=0 fh=0000000000000000 vn="Variante von Win32/Amonetize.AB evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 2.zip"
sh=8F748103794323E742340123118AEC91A81D0BF6 ft=0 fh=0000000000000000 vn="Variante von Win32/YourFileDownloader.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 3.zip"
sh=015A306C6BC48A4FCF6A7B8BE06D205AED3709F9 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 4.zip"
sh=2365579D387663E6248FA4B4792989660BA93B37 ft=0 fh=0000000000000000 vn="Win32/Systweak.G evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-04-06 190004\Backup files 1.zip"
sh=643F1CB9FB1BF7D982E1C935D1D2B79C358229AF ft=0 fh=0000000000000000 vn="Variante von Win32/BSDownloader evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-04-06 190004\Backup files 2.zip"
sh=601EACDCA74F3EEC28747EAF74D011223EB527F0 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-05-11 190002\Backup files 1.zip"
sh=7F090FB8F0EE551922F1187C2EF6E5DBA2C1A6F2 ft=0 fh=0000000000000000 vn="Variante von Win32/DownloadGuide.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-05-11 190002\Backup files 2.zip"
sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Win32/FireHooker.A Trojaner" ac=I fn="${Memory}"
|
|
27.01.2016, 01:33
| #13 |
| /// Malwareteam | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. Schritt 1 Du hast den Malwarebytes-Scan zu Beginn nicht richtig ausgeführt.  Starte bitte wieder Malwarebytes Anti-Malware
Schritt 2 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
30.01.2016, 14:35
| #14 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten.Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 30.01.2016 Suchlaufzeit: 13:44 Protokolldatei: mbam.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2016.01.30.02 Rootkit-Datenbank: v2016.01.20.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Godlike Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 363360 Abgelaufene Zeit: 22 Min., 30 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 1 Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, Löschen bei Neustart, [9139f14e2b6e57df143ccf16b74ab54b], Registrierungsschlüssel: 2 PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, In Quarantäne, [23a7b38c960363d37228b3440df5718f], PUP.Optional.SystemSpeedup, HKU\S-1-5-21-1581255019-2042543514-717909806-1000\SOFTWARE\SYSTWEAK\ssd, In Quarantäne, [5872db649aff0036861354a32cd6a15f], Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 3 Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, Löschen bei Neustart, [9139f14e2b6e57df143ccf16b74ab54b], RiskWare.Injector.DC, C:\Users\Godlike\Desktop\Extreme Injector v3.exe, In Quarantäne, [04c672cd5a3f75c1265bd8500001d32d], RiskWare.Injector.DC, C:\Users\Godlike\Downloads\Extreme Injector v3.6.1 - by master131_mpgh.net.rar, In Quarantäne, [2e9ce25d1d7c57dfa3debb6dc0410ef2], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-30 14:34:01)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version: - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version: - Blue Mammoth Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version: - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version: - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version: - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version: - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version: - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version: - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version: - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version: - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version: - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version: - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version: - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version: - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.21.143.g76c19bcd - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version: - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {66322F75-ED94-46D8-963F-33F771002E05} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9172961A-E770-4E0A-83B0-48F9EA672D15} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {CD962B17-5B95-47CC-B702-8705BF84E10A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-11-30 10:44 - 2013-10-08 13:23 - 00890016 _____ () C:\Program Files\Core Temp\Core Temp.exe
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-12-14 12:58 - 2016-01-29 21:19 - 50679920 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libcef.dll
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-14 12:58 - 2016-01-29 21:19 - 01882224 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libglesv2.dll
2015-12-14 12:58 - 2016-01-29 21:19 - 00082544 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{19AD8EC3-063B-4605-A438-F100BAE1836D}C:\users\godlike\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\godlike\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{D7C5A6B1-4764-4085-9ABF-4D68FF818992}C:\users\godlike\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\godlike\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6C9F8BFE-7AF1-4953-8110-D0B720E000AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
28-01-2016 18:35:21 Geplanter Prüfpunkt
29-01-2016 16:22:56 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/29/2016 04:19:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm GWXUX.exe, Version 6.3.9600.18155 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1004
Startzeit: 01d15aa85a969247
Endzeit: 1
Anwendungspfad: C:\Windows\System32\GWX\GWXUX.exe
Berichts-ID: b2bbf6e4-c69b-11e5-88a1-1c6f65d41233
Error: (01/28/2016 06:00:26 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (01/26/2016 06:38:37 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (01/26/2016 09:47:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (01/26/2016 09:47:13 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (01/25/2016 04:57:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x1af4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (01/22/2016 11:51:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 38.0.5.5623 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ba8
Startzeit: 01d1555a178d160c
Endzeit: 90
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: b871bce0-c15a-11e5-afa2-1c6f65d41233
Error: (01/22/2016 11:51:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x188
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1730
Startzeit: 01d135cd59c12231
Endzeit: 156
Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe
Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233
Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 233c
Startzeit: 01d12cf4aca80f57
Endzeit: 2698
Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe
Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233
Systemfehler:
=============
Error: (01/28/2016 06:26:31 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (01/26/2016 09:50:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (01/26/2016 09:50:39 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/26/2016 09:50:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (01/26/2016 09:50:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/26/2016 09:50:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (01/26/2016 09:50:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/26/2016 09:48:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (01/26/2016 09:48:02 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (01/26/2016 09:48:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
CodeIntegrity:
===================================
Date: 2016-01-28 17:59:30.910
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-28 17:59:30.801
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-28 17:59:30.660
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.761
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.626
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:46:32.232
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.943
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.756
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-01-21 01:40:27.279
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 2247.95 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 5951.65 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:97.56 GB) (Free:3.97 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:10.46 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
30.01.2016, 14:36
| #15 |
| | Firefox werbung in neuen tabs + werbung auf jeglichen seiten. FRST : Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016 durchgeführt von Godlike (Administrator) auf GODLIKE-PC (30-01-2016 14:33:18) Gestartet von C:\Users\Godlike\Desktop Geladene Profile: Godlike (Verfügbare Profile: Godlike) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe () C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe (Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe (AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe (AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe (Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyCrashService.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe () C:\Program Files\Core Temp\Core Temp.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (CPUID) C:\Program Files\CPUID\CPU-Z\cpuz.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor) HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.) HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] () HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.) HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2355312 2016-01-29] (Spotify Ltd) HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8449136 2016-01-29] (Spotify Ltd) HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD) HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16] ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe () Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] () CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default FF DefaultSearchEngine: Google Default FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] () FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17] FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16] FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22] Chrome: ======= CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21] CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21] CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25] CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27] CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25] CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21] CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21] CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert] S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd) R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] () S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert] S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies) S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies) S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] () S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X] S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices) R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] () R3 cpuz139; C:\Users\Godlike\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [43312 2016-01-30] (CPUID) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-30] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-30] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software) R3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X] S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X] S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-30 14:31 - 2016-01-30 14:31 - 00001878 _____ C:\Users\Godlike\Desktop\mbam.txt 2016-01-30 14:27 - 2016-01-30 14:28 - 01665568 _____ ( ) C:\Users\Godlike\Downloads\cpu-z_1.75-en.exe 2016-01-26 09:47 - 2016-01-26 09:47 - 00000000 ____D C:\Program Files (x86)\ESET 2016-01-26 09:46 - 2016-01-26 09:46 - 02870984 _____ (ESET) C:\Users\Godlike\Downloads\esetsmartinstaller_deu.exe 2016-01-25 17:00 - 2016-01-25 17:00 - 00004120 _____ C:\Users\Godlike\Desktop\Fixlog.txt 2016-01-25 16:55 - 2016-01-25 16:55 - 00001264 _____ C:\Users\Godlike\Desktop\Revo Uninstaller.lnk 2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2016-01-25 16:54 - 2016-01-25 16:54 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Godlike\Desktop\revosetup95.exe 2016-01-24 18:39 - 2016-01-30 14:33 - 00017708 _____ C:\Users\Godlike\Desktop\FRST.txt 2016-01-24 18:38 - 2016-01-25 17:08 - 00063845 _____ C:\Users\Godlike\Desktop\Addition.txt 2016-01-23 13:26 - 2016-01-23 13:26 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 2016-01-23 12:59 - 2016-01-23 12:59 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2016-01-23 12:46 - 2016-01-23 12:46 - 01600184 _____ (Malwarebytes) C:\Users\Godlike\Desktop\JRT.exe 2016-01-22 23:23 - 2016-01-22 23:51 - 00199698 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_23.23.12_log.txt 2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe 2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe 2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt 2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt 2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt 2016-01-22 22:43 - 2016-01-30 14:33 - 00000000 ____D C:\FRST 2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt 2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe 2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt 2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek 2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll 2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll 2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll 2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll 2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe 2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD 2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI 2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD 2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD 2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} 2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD 2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe 2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe 2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe 2016-01-21 11:06 - 2016-01-30 14:23 - 00000000 ____D C:\Windows\rescache 2016-01-21 10:15 - 2016-01-25 17:04 - 00061952 ___SH C:\Users\Godlike\Desktop\Thumbs.db 2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll 2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll 2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe 2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll 2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll 2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe 2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll 2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL 2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll 2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll 2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL 2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll 2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll 2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys 2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys 2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl 2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe 2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk 2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-30 14:32 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-01-30 14:32 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-01-30 14:31 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify 2016-01-30 14:29 - 2015-08-23 22:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-01-30 14:28 - 2015-11-30 10:47 - 00000869 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2016-01-30 14:27 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox 2016-01-30 14:26 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify 2016-01-30 14:26 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys 2016-01-30 14:26 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys 2016-01-30 14:26 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref 2016-01-30 14:25 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-30 14:25 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2016-01-30 14:23 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-01-30 14:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-01-30 13:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-30 13:52 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds 2016-01-30 13:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2016-01-29 16:59 - 2015-08-21 04:04 - 00002234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-01-25 17:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2016-01-25 16:57 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-01-24 21:46 - 2015-01-17 10:39 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\TS3Client 2016-01-24 21:34 - 2015-06-05 12:59 - 00000000 ____D C:\Users\Godlike\AppData\Local\Steam 2016-01-24 21:19 - 2015-07-27 14:53 - 00000000 ____D C:\Users\Godlike\Desktop\Doks 2016-01-24 19:18 - 2014-05-20 16:07 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\LolClient 2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner 2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol 2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy 2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp 2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek 2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies 2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache 2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk 2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat 2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat 2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI 2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT 2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser 2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT 2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg 2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg 2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG 2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\ProgramData\hash.dat ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-01-29 16:58 ==================== Ende von FRST.txt ============================ |
|
| Themen zu Firefox werbung in neuen tabs + werbung auf jeglichen seiten. |
| adobe, avg, defender, desktop, dnsapi.dll, firefox, flash player, google, home, homepage, installation, kaspersky, maleware, mozilla, netgear, popups, prozesse, realtek, registry, rundll, scan, secur, services.exe, software, svchost.exe, system, virus, werbung, windows |
dann auf 
und dann auf 
. 
Linear-Darstellung
