| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: MPC CleanerWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
27.03.2016, 20:08
| #1 |
 |  MPC Cleaner Hallo, da ich mal wieder nach Jahren ein Spiel spielen wollte und dieses unter Win7 nicht mehr lief hab ich dummerweise versucht einen no-cd crack zu installieren. Ich bekam sofort von Avira und dem windows defender warnungen und hab alles gelöscht was mir gesagt wurde. Dazu hat sich das Programm MPC-Cleaner installiert.Es steht unter Programme in der Systemsteuerung nicht drin und manuell lässt es sich auch nicht löschen (ich muss adminstratorrechte vergeben um löschen zu können). Hab dann über chip.de den adwcleaner runtergeladen und ausgeführt. Er hat es gefunden und versucht zu löschen es ist aber immernoch da. Anbei mal die Reports von adwcleaner und avira adwcleaner:AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v5.106 - Bericht erstellt am 27/03/2016 um 19:31:24
# Aktualisiert am 27/03/2016 von Xplode
# Datenbank : 2016-03-27.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Patrick - PATRICK-PC
# Gestartet von : C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
[-] Dienst Gelöscht : BCUService
[-] Dienst Gelöscht : MPCProtectService
[-] Dienst Gelöscht : MPCKpt
[-] Dienst Gelöscht : ggbugreport
[-] Dienst Gelöscht : Winsere
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\Program Files (x86)\DeviceVM
[#] Ordner Gelöscht : C:\Program Files (x86)\MPC Cleaner
[-] Ordner Gelöscht : C:\Program Files (x86)\Yahoo!\Companion
[-] Ordner Gelöscht : C:\Program Files (x86)\SearchesToYesbnd
[-] Ordner Gelöscht : C:\Program Files (x86)\Winsere
[-] Ordner Gelöscht : C:\Program Files (x86)\WinTaske
[-] Ordner Gelöscht : C:\Program Files (x86)\1E005C80-1459095401-4300-B060-BCAEC5783ADB
[-] Ordner Gelöscht : C:\Program Files (x86)\win_en_77
[-] Ordner Gelöscht : C:\ProgramData\apn
[-] Ordner Gelöscht : C:\ProgramData\DeviceVM
[-] Ordner Gelöscht : C:\ProgramData\Yahoo! Companion
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Local\YSearchUtil
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Local\Temp\MPC
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Roaming\DeviceVM
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Roaming\Yahoo!\Companion
[-] Ordner Gelöscht : C:\Windows\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\END
[-] Datei Gelöscht : C:\Users\Patrick\AppData\Local\Temp\ziengine.ini.log
[-] Datei Gelöscht : C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\dd1b66d4.xml
[-] Datei Gelöscht : C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\searchplugins\smod.xml
[-] Datei Gelöscht : C:\Users\Public\Desktop\MPC Cleaner.lnk
[#] Datei Gelöscht : C:\Windows\SysNative\drivers\MPCKpt.sys
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
[-] Geplante Aufgabe Gelöscht : WinTaske
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\YMERemote.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.apn.native_messaging_host_aaaaacalgebmfelllfiaoknifldpngjh
[-] Schlüssel Gelöscht : HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8233093C-178B-484B-979E-3C6B5B147DBC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{B722ED8B-0B38-408E-BB89-260C73BCF3D4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8233093C-178B-484B-979E-3C6B5B147DBC}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Schlüssel Gelöscht : HKCU\Software\ICQ\ICQToolbar
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Softonic
[-] Schlüssel Gelöscht : HKCU\Software\Yahoo\Companion
[-] Schlüssel Gelöscht : HKCU\Software\Yahoo\YFriendsBar
[-] Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\adawarebp
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Yahoo\Companion
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\MPC
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Yahoo\Companion
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\yessearchesSoftware
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\WIN
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Daten Wiederhergestellt : HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1B23FE29-A6EE-4CAF-9C06-B129A164640B}
[#] Wert Gelöscht : HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\search.mpc.am
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.com
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.com
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]
***** [ Internetbrowser ] *****
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.newtab.url", "hxxp://www-mysearch.com/?site=shyosffdefault&prd=set_ff&s=G3RzFTPTN095001,e7f35c52-e9f9-4274-92b8-ebc79df6f465,");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.defaultenginename", "yessearches");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.searchengine.hp", "hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffsengext");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.searchengine.sp", "hxxp://www.yessearches.com/chrome.php?mode=ffsengext&ptid=wak&q={searchTerms}&ts=AHEpCH0tBH8tA0..&uid=EC8FF4E0E140795FEB32448B33C8D3C1&v=20160323");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.searchengine.url", "hxxp://www.yessearches.com/chrome.php?mode=ffsengext&ptid=wak&q={searchTerms}&ts=AHEpCH0tBH8tA0..&uid=EC8FF4E0E140795FEB32448B33C8D3C1&v=20160323");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.selectedEngine", "yessearches");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.startup.homepage", "hxxp://www-mysearch.com/?site=shyosffdefault&prd=set_ff&s=G3RzFTPTN095001,e7f35c52-e9f9-4274-92b8-ebc79df6f465,");
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [14514 Bytes] - [27/03/2016 19:31:24]
C:\AdwCleaner\AdwCleaner[S1].txt - [15308 Bytes] - [27/03/2016 19:29:32]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [14662 Bytes] ##########
avira: Free Antivirus Erstellungsdatum der Reportdatei: Sonntag, 27. März 2016 19:43 Das Programm läuft als uneingeschränkte Vollversion. Online-Dienste stehen zur Verfügung. Lizenznehmer : Free Seriennummer : 0000149996-AVHOE-0000001 Plattform : Windows 7 Home Premium Windowsversion : (Service Pack 1) [6.1.7601] Boot Modus : Normal gebootet Benutzername : Patrick Computername : PATRICK-PC Versionsinformationen: build.dat : 15.0.16.282 92460 Bytes 22.02.2016 16:45:00 AVSCAN.EXE : 15.0.16.276 1235360 Bytes 09.03.2016 21:19:26 AVSCANRC.DLL : 15.0.16.269 65256 Bytes 09.03.2016 21:19:26 LUKE.DLL : 15.0.16.273 67840 Bytes 09.03.2016 21:19:47 AVSCPLR.DLL : 15.0.16.280 130712 Bytes 09.03.2016 21:19:26 REPAIR.DLL : 15.0.16.251 596760 Bytes 09.03.2016 21:19:23 repair.rdf : 1.0.15.92 1439582 Bytes 26.03.2016 08:55:33 AVREG.DLL : 15.0.16.273 350584 Bytes 09.03.2016 21:19:23 avlode.dll : 15.0.16.276 721384 Bytes 09.03.2016 21:19:21 avlode.rdf : 14.0.5.36 94056 Bytes 01.03.2016 15:49:06 XBV00007.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00008.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00009.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00010.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00011.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00012.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00013.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00014.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00015.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00016.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00017.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00018.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00019.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00020.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00021.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00022.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00023.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00024.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00025.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45 XBV00026.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00027.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00028.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00029.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00030.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00031.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00032.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00033.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00034.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00035.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00036.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00037.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00038.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00039.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00040.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00041.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46 XBV00111.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28 XBV00112.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28 XBV00113.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28 XBV00114.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28 XBV00115.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00116.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00117.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00118.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00119.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00120.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00121.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00122.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00123.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00124.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00125.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00126.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00127.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00128.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00129.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00130.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00131.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00132.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00133.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00134.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00135.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29 XBV00136.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00137.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00138.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00139.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00140.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00141.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00142.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00143.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00144.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00145.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00146.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00147.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00148.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00149.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00150.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00151.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00152.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00153.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00154.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00155.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00156.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00157.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00158.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00159.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30 XBV00160.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00161.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00162.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00163.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00164.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00165.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00166.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00167.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00168.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00169.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00170.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00171.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00172.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00173.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00174.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00175.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00176.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00177.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00178.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00179.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00180.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00181.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00182.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00183.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31 XBV00184.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00185.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00186.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00187.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00188.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00189.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00190.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00191.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00192.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00193.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00194.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00195.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00196.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00197.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00198.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00199.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00200.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00201.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00202.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00203.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00204.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00205.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00206.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00207.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32 XBV00208.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00209.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00210.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00211.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00212.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00213.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00214.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00215.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00216.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00217.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00218.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00219.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00220.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00221.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00222.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00223.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00224.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00225.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00226.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00227.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00228.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00229.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00230.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00231.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33 XBV00232.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00233.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00234.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00235.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00236.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00237.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00238.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00239.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00240.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00241.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00242.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00243.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00244.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00245.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00246.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00247.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34 XBV00248.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00249.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00250.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00251.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00252.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00253.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00254.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00255.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35 XBV00000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 11:01:19 XBV00001.VDF : 7.11.237.0 48041984 Bytes 02.06.2015 15:22:23 XBV00002.VDF : 7.12.37.36 16452096 Bytes 17.12.2015 15:22:45 XBV00003.VDF : 8.12.44.142 3948032 Bytes 09.01.2016 15:41:30 XBV00004.VDF : 8.12.52.208 4036096 Bytes 02.02.2016 15:05:37 XBV00005.VDF : 8.12.62.184 2779136 Bytes 26.02.2016 20:10:18 XBV00006.VDF : 8.12.71.186 2191360 Bytes 19.03.2016 17:33:25 XBV00042.VDF : 8.12.71.214 53248 Bytes 20.03.2016 09:46:52 XBV00043.VDF : 8.12.71.242 6656 Bytes 20.03.2016 16:36:58 XBV00044.VDF : 8.12.72.14 13312 Bytes 20.03.2016 16:36:58 XBV00045.VDF : 8.12.72.90 2048 Bytes 20.03.2016 16:36:58 XBV00046.VDF : 8.12.72.146 54272 Bytes 21.03.2016 15:03:19 XBV00047.VDF : 8.12.72.174 10240 Bytes 21.03.2016 15:03:19 XBV00048.VDF : 8.12.72.202 7680 Bytes 21.03.2016 15:03:19 XBV00049.VDF : 8.12.72.204 22528 Bytes 21.03.2016 15:03:20 XBV00050.VDF : 8.12.72.206 8704 Bytes 21.03.2016 15:03:20 XBV00051.VDF : 8.12.72.210 17408 Bytes 21.03.2016 19:03:17 XBV00052.VDF : 8.12.72.230 2048 Bytes 21.03.2016 19:03:17 XBV00053.VDF : 8.12.72.250 26112 Bytes 21.03.2016 21:03:18 XBV00054.VDF : 8.12.72.254 2048 Bytes 21.03.2016 21:03:18 XBV00055.VDF : 8.12.73.18 9728 Bytes 21.03.2016 15:06:36 XBV00056.VDF : 8.12.73.38 5120 Bytes 21.03.2016 15:06:36 XBV00057.VDF : 8.12.73.58 8704 Bytes 21.03.2016 15:06:36 XBV00058.VDF : 8.12.73.80 27136 Bytes 22.03.2016 15:06:36 XBV00059.VDF : 8.12.73.82 14848 Bytes 22.03.2016 15:06:37 XBV00060.VDF : 8.12.73.102 15872 Bytes 22.03.2016 15:06:37 XBV00061.VDF : 8.12.73.120 10752 Bytes 22.03.2016 15:06:37 XBV00062.VDF : 8.12.73.172 95232 Bytes 22.03.2016 15:06:37 XBV00063.VDF : 8.12.73.190 11264 Bytes 22.03.2016 15:06:37 XBV00064.VDF : 8.12.73.212 18432 Bytes 22.03.2016 19:06:35 XBV00065.VDF : 8.12.73.232 9216 Bytes 22.03.2016 19:06:35 XBV00066.VDF : 8.12.73.250 7680 Bytes 22.03.2016 19:06:35 XBV00067.VDF : 8.12.74.12 12800 Bytes 22.03.2016 21:06:36 XBV00068.VDF : 8.12.74.30 9728 Bytes 22.03.2016 15:27:29 XBV00069.VDF : 8.12.74.32 12288 Bytes 22.03.2016 15:27:29 XBV00070.VDF : 8.12.74.52 25600 Bytes 23.03.2016 15:27:30 XBV00071.VDF : 8.12.74.68 15872 Bytes 23.03.2016 15:27:30 XBV00072.VDF : 8.12.74.84 57856 Bytes 23.03.2016 17:27:28 XBV00073.VDF : 8.12.74.100 2048 Bytes 23.03.2016 17:27:28 XBV00074.VDF : 8.12.74.118 21504 Bytes 23.03.2016 19:27:27 XBV00075.VDF : 8.12.74.120 9728 Bytes 23.03.2016 19:27:27 XBV00076.VDF : 8.12.74.122 9728 Bytes 23.03.2016 15:10:12 XBV00077.VDF : 8.12.74.124 10240 Bytes 23.03.2016 15:10:12 XBV00078.VDF : 8.12.74.126 8704 Bytes 23.03.2016 15:10:12 XBV00079.VDF : 8.12.74.144 39936 Bytes 24.03.2016 15:10:12 XBV00080.VDF : 8.12.74.160 2048 Bytes 24.03.2016 15:10:12 XBV00081.VDF : 8.12.74.176 19456 Bytes 24.03.2016 15:10:13 XBV00082.VDF : 8.12.74.192 4096 Bytes 24.03.2016 15:10:13 XBV00083.VDF : 8.12.74.208 14336 Bytes 24.03.2016 15:10:13 XBV00084.VDF : 8.12.74.210 10240 Bytes 24.03.2016 15:10:13 XBV00085.VDF : 8.12.74.212 16896 Bytes 24.03.2016 15:10:13 XBV00086.VDF : 8.12.74.214 10752 Bytes 24.03.2016 15:10:13 XBV00087.VDF : 8.12.74.216 8192 Bytes 24.03.2016 17:09:44 XBV00088.VDF : 8.12.74.218 9728 Bytes 24.03.2016 19:09:45 XBV00089.VDF : 8.12.74.220 2048 Bytes 24.03.2016 19:09:45 XBV00090.VDF : 8.12.74.222 13312 Bytes 24.03.2016 21:09:42 XBV00091.VDF : 8.12.74.224 9216 Bytes 24.03.2016 21:09:42 XBV00092.VDF : 8.12.74.226 8704 Bytes 24.03.2016 08:21:59 XBV00093.VDF : 8.12.74.228 6656 Bytes 24.03.2016 08:21:59 XBV00094.VDF : 8.12.74.234 27136 Bytes 25.03.2016 08:22:00 XBV00095.VDF : 8.12.74.236 2560 Bytes 25.03.2016 08:22:00 XBV00096.VDF : 8.12.74.238 2560 Bytes 25.03.2016 10:21:58 XBV00097.VDF : 8.12.74.240 14848 Bytes 25.03.2016 13:20:18 XBV00098.VDF : 8.12.74.242 14848 Bytes 25.03.2016 13:20:18 XBV00099.VDF : 8.12.74.244 18432 Bytes 25.03.2016 13:20:18 XBV00100.VDF : 8.12.74.250 41472 Bytes 25.03.2016 17:20:18 XBV00101.VDF : 8.12.74.252 6656 Bytes 25.03.2016 17:20:18 XBV00102.VDF : 8.12.75.12 89600 Bytes 26.03.2016 12:24:43 XBV00103.VDF : 8.12.75.26 2048 Bytes 26.03.2016 12:24:43 XBV00104.VDF : 8.12.75.40 41472 Bytes 26.03.2016 16:24:43 XBV00105.VDF : 8.12.75.54 2048 Bytes 26.03.2016 16:24:43 XBV00106.VDF : 8.12.75.68 99840 Bytes 27.03.2016 11:57:01 XBV00107.VDF : 8.12.75.94 20992 Bytes 27.03.2016 11:57:01 XBV00108.VDF : 8.12.75.108 11776 Bytes 27.03.2016 11:57:01 XBV00109.VDF : 8.12.75.122 12288 Bytes 27.03.2016 13:57:01 XBV00110.VDF : 8.12.75.136 9728 Bytes 27.03.2016 13:57:01 LOCAL001.VDF : 8.12.75.136 147047936 Bytes 27.03.2016 13:57:25 Engineversion : 8.3.38.2 AEBB.DLL : 8.1.3.0 59296 Bytes 19.11.2015 15:33:34 AECORE.DLL : 8.3.12.4 247720 Bytes 21.03.2016 15:03:18 AEDROID.DLL : 8.4.3.348 1800104 Bytes 06.11.2015 13:43:16 AEEMU.DLL : 8.1.3.8 404328 Bytes 18.03.2016 14:16:25 AEEXP.DLL : 8.4.2.152 293744 Bytes 11.03.2016 13:33:21 AEGEN.DLL : 8.1.8.64 519016 Bytes 23.03.2016 15:27:29 AEHELP.DLL : 8.3.2.10 284584 Bytes 15.02.2016 13:29:24 AEHEUR.DLL : 8.1.4.2222 10169200 Bytes 17.03.2016 14:38:53 AEMOBILE.DLL : 8.1.8.10 301936 Bytes 26.11.2015 15:03:11 AEOFFICE.DLL : 8.3.3.22 456616 Bytes 21.03.2016 15:03:19 AEPACK.DLL : 8.4.2.12 805744 Bytes 15.03.2016 13:47:20 AERDL.DLL : 8.2.1.42 813928 Bytes 18.03.2016 14:16:26 AESBX.DLL : 8.2.21.4 1629032 Bytes 16.03.2016 13:51:00 AESCN.DLL : 8.3.4.4 142456 Bytes 11.03.2016 13:33:21 AESCRIPT.DLL : 8.3.0.80 588656 Bytes 21.03.2016 15:03:19 AEVDF.DLL : 8.3.3.4 142184 Bytes 21.03.2016 15:03:19 AVWINLL.DLL : 15.0.16.227 27680 Bytes 09.03.2016 21:19:18 AVPREF.DLL : 15.0.16.227 53944 Bytes 09.03.2016 21:19:23 AVREP.DLL : 15.0.16.227 223400 Bytes 09.03.2016 21:19:23 AVARKT.DLL : 15.0.16.227 230080 Bytes 09.03.2016 21:19:18 AVEVTLOG.DLL : 15.0.16.251 200192 Bytes 09.03.2016 21:19:20 SQLITE3.DLL : 15.0.16.227 459752 Bytes 09.03.2016 21:19:50 AVSMTP.DLL : 15.0.16.227 80200 Bytes 09.03.2016 21:19:27 NETNT.DLL : 15.0.16.227 16880 Bytes 09.03.2016 21:19:47 CommonImageRc.dll: 15.0.16.222 4307832 Bytes 09.03.2016 21:19:18 CommonTextRc.dll: 15.0.16.222 68864 Bytes 09.03.2016 21:19:18 Konfiguration für den aktuellen Suchlauf: Job Name..............................: Schnelle Systemprüfung Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\quicksysscan.avp Protokollierung.......................: standard Primäre Aktion........................: Interaktiv Sekundäre Aktion......................: Ignorieren Durchsuche Masterbootsektoren.........: ein Durchsuche Bootsektoren...............: ein Durchsuche aktive Programme...........: ein Durchsuche Registrierung..............: ein Suche nach Rootkits...................: aus Integritätsprüfung von Systemdateien..: aus Prüfe alle Dateien....................: Intelligente Dateiauswahl Durchsuche Archive....................: ein Rekursionstiefe einschränken..........: 20 Archiv Smart Extensions...............: ein Makrovirenheuristik...................: ein Dateiheuristik........................: erweitert Auszulassende Dateien.................: Beginn des Suchlaufs: Sonntag, 27. März 2016 19:43 Der Suchlauf über die Bootsektoren wird begonnen: Der Suchlauf über gestartete Prozesse wird begonnen: Durchsuche Prozess 'svchost.exe' - '60' Modul(e) wurden durchsucht Durchsuche Prozess 'nvvsvc.exe' - '35' Modul(e) wurden durchsucht Durchsuche Prozess 'nvSCPAPISvr.exe' - '34' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '43' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '98' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '103' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '90' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '151' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '75' Modul(e) wurden durchsucht Durchsuche Prozess 'spoolsv.exe' - '83' Modul(e) wurden durchsucht Durchsuche Prozess 'nvxdsync.exe' - '54' Modul(e) wurden durchsucht Durchsuche Prozess 'nvvsvc.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'sched.exe' - '82' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'taskhost.exe' - '70' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'armsvc.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'ipoint.exe' - '64' Modul(e) wurden durchsucht Durchsuche Prozess 'itype.exe' - '66' Modul(e) wurden durchsucht Durchsuche Prozess 'avguard.exe' - '106' Modul(e) wurden durchsucht Durchsuche Prozess 'FourEngine.exe' - '52' Modul(e) wurden durchsucht Durchsuche Prozess 'Dwm.exe' - '37' Modul(e) wurden durchsucht Durchsuche Prozess 'Explorer.EXE' - '184' Modul(e) wurden durchsucht Durchsuche Prozess 'SkypeC2CAutoUpdateSvc.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'SkypeC2CPNRSvc.exe' - '25' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '57' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'MPCProtectService.exe' - '72' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '21' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '21' Modul(e) wurden durchsucht Durchsuche Prozess 'PnkBstrA.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'MPCTray.exe' - '111' Modul(e) wurden durchsucht Durchsuche Prozess 'MPCTray64.exe' - '13' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '38' Modul(e) wurden durchsucht Durchsuche Prozess 'viakaraokesrv.exe' - '24' Modul(e) wurden durchsucht Durchsuche Prozess 'GWX.exe' - '38' Modul(e) wurden durchsucht Durchsuche Prozess 'WLIDSVC.EXE' - '75' Modul(e) wurden durchsucht Durchsuche Prozess 'Avira.ServiceHost.exe' - '131' Modul(e) wurden durchsucht Durchsuche Prozess 'WLIDSvcM.exe' - '17' Modul(e) wurden durchsucht Durchsuche Prozess 'avshadow.exe' - '21' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '42' Modul(e) wurden durchsucht Durchsuche Prozess 'sppsvc.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht Durchsuche Prozess 'NvBackend.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'AmazonMP3DownloaderHelper.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'hpqtra08.exe' - '85' Modul(e) wurden durchsucht Durchsuche Prozess 'NOTEPAD.EXE' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'VDeck.exe' - '59' Modul(e) wurden durchsucht Durchsuche Prozess 'DevDetect.exe' - '44' Modul(e) wurden durchsucht Durchsuche Prozess 'avgnt.exe' - '118' Modul(e) wurden durchsucht Durchsuche Prozess 'DivXUpdate.exe' - '84' Modul(e) wurden durchsucht Durchsuche Prozess 'hpwuSchd2.exe' - '25' Modul(e) wurden durchsucht Durchsuche Prozess 'Avira.Systray.exe' - '150' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchIndexer.exe' - '65' Modul(e) wurden durchsucht Durchsuche Prozess 'wmpnetwk.exe' - '117' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'hpqSTE08.exe' - '66' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '59' Modul(e) wurden durchsucht Durchsuche Prozess 'hpqbam08.exe' - '35' Modul(e) wurden durchsucht Durchsuche Prozess 'hpqgpc01.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'wmiprvse.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'DllHost.exe' - '45' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '62' Modul(e) wurden durchsucht Durchsuche Prozess 'opera.exe' - '90' Modul(e) wurden durchsucht Durchsuche Prozess 'TrustedInstaller.exe' - '49' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'Skype.exe' - '173' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '92' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '116' Modul(e) wurden durchsucht Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht Durchsuche Prozess 'services.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'winlogon.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'lsass.exe' - '69' Modul(e) wurden durchsucht Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen: Die Datei wurde im Zwischenspeicher in 'D:\vallen\jpegger\jpegger.exe' gefunden; der Scan Cloud-Sicherheit wurde übersprungen. SHA256 = 6AC87D4078939D59C07F9BFBA5E806F1C862FFC9DB8C75C7F7315AFF944E72C9 Die Datei wurde im Zwischenspeicher in 'D:\Program Files (x86)\EA Games\Command & Conquer Die ersten 10 Jahre\support\EReg.exe' gefunden; der Scan Cloud-Sicherheit wurde übersprungen. SHA256 = 4DE007B026FC290FD48FC7E5FAB9E5942738CDF5705D6C5804C650C7855BEB38 Die Registry wurde durchsucht ( '2437' Dateien ). Ende des Suchlaufs: Sonntag, 27. März 2016 19:44 Benötigte Zeit: 00:35 Minute(n) Der Suchlauf wurde vollständig durchgeführt. 0 Verzeichnisse wurden überprüft 3397 Dateien wurden geprüft 0 Viren bzw. unerwünschte Programme wurden gefunden 0 Dateien wurden als verdächtig eingestuft 0 Dateien wurden gelöscht 0 Viren bzw. unerwünschte Programme wurden repariert 0 Dateien wurden in die Quarantäne verschoben 0 Dateien wurden umbenannt 0 Dateien konnten nicht durchsucht werden 3397 Dateien ohne Befall 41 Archive wurden durchsucht 0 Warnungen 0 Hinweise Von Avira war es der letzte Report.Hab drei von heute mit Funden. Ich hoffe ihr könnt mir helfen! Gruss Patrick Kleine Erfolgsmeldung. Habe im Verzeichnis vom MPC Cleaner die deinstallation gefunden und das Programm deinstalliert. Allerdings öffnen sich beim starten der Browser unterschiedliche Startseiten. bei Mozilla öffnet sich search.mpc.am . Bei Opera und dem internet explorer öffnet sich mysearch.com Da sich mit Sicherheit auch sonst noch Spuren auf dem Rechner befinden wäre ich für weitere Hilfe immernoch sehr dankbar  Geändert von Patrick123 (27.03.2016 um 20:40 Uhr) |
|
27.03.2016, 22:53
| #2 |
| /// TB-Ausbilder   | MPC Cleaner Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Der MPC Cleaner schützt sich durch diverse Hooks vor dem Löschen. Bitte nichts mehr selber versuchen. Ich helfe dir bei der Bereinigung. Zur ersten Analyse bitte FRST und TDSS-Killer ausführen: Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
28.03.2016, 08:26
| #3 |
| | MPC Cleaner Hi,
__________________danke für deine Hilfe. Das Startseitenproblem hab ich gelöst. Habe mal Cookies,Browsercache gelöscht. Da ich noch Antimalewarebytes drauf hatte hab ich das gestern Abend auch mal laufen lassen. Falls du davon noch was sehen möchtest einfach sagen. Hier die logdateien: TDSSKiller Code:
ATTFilter 09:16:48.0873 0x0e50 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
09:16:52.0190 0x0e50 ============================================================
09:16:52.0190 0x0e50 Current date / time: 2016/03/28 09:16:52.0190
09:16:52.0190 0x0e50 SystemInfo:
09:16:52.0190 0x0e50
09:16:52.0190 0x0e50 OS Version: 6.1.7601 ServicePack: 1.0
09:16:52.0190 0x0e50 Product type: Workstation
09:16:52.0190 0x0e50 ComputerName: PATRICK-PC
09:16:52.0190 0x0e50 UserName: Patrick
09:16:52.0190 0x0e50 Windows directory: C:\Windows
09:16:52.0190 0x0e50 System windows directory: C:\Windows
09:16:52.0190 0x0e50 Running under WOW64
09:16:52.0190 0x0e50 Processor architecture: Intel x64
09:16:52.0190 0x0e50 Number of processors: 4
09:16:52.0190 0x0e50 Page size: 0x1000
09:16:52.0190 0x0e50 Boot type: Normal boot
09:16:52.0190 0x0e50 ============================================================
09:16:55.0497 0x0e50 KLMD registered as C:\Windows\system32\drivers\97587045.sys
09:16:57.0008 0x0e50 System UUID: {F09684BB-32ED-E035-2F54-E4774EBFBC65}
09:16:57.0334 0x0e50 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:16:57.0350 0x0e50 ============================================================
09:16:57.0350 0x0e50 \Device\Harddisk0\DR0:
09:16:57.0350 0x0e50 MBR partitions:
09:16:57.0350 0x0e50 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x32F8E
09:16:57.0350 0x0e50 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x190029BD
09:16:57.0350 0x0e50 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1903598A, BlocksNum 0x5B6D0037
09:16:57.0350 0x0e50 ============================================================
09:16:57.0370 0x0e50 C: <-> \Device\Harddisk0\DR0\Partition2
09:16:57.0396 0x0e50 D: <-> \Device\Harddisk0\DR0\Partition3
09:16:57.0396 0x0e50 ============================================================
09:16:57.0396 0x0e50 Initialize success
09:16:57.0396 0x0e50 ============================================================
09:17:00.0210 0x0ca0 ============================================================
09:17:00.0210 0x0ca0 Scan started
09:17:00.0210 0x0ca0 Mode: Manual;
09:17:00.0210 0x0ca0 ============================================================
09:17:00.0210 0x0ca0 KSN ping started
09:17:02.0917 0x0ca0 KSN ping finished: true
09:17:04.0399 0x0ca0 ================ Scan system memory ========================
09:17:04.0399 0x0ca0 System memory - ok
09:17:04.0399 0x0ca0 ================ Scan services =============================
09:17:04.0546 0x0ca0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:17:04.0546 0x0ca0 1394ohci - ok
09:17:04.0600 0x0ca0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:17:04.0600 0x0ca0 ACPI - ok
09:17:04.0616 0x0ca0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:17:04.0616 0x0ca0 AcpiPmi - ok
09:17:04.0753 0x0ca0 [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:17:04.0758 0x0ca0 AdobeARMservice - ok
09:17:04.0840 0x0ca0 [ A9D55370A0CBADD1E1E2B4796ACD26DF, 9FD0C2B1206321B34D97FF3D01C5C811022DA76DA667DB6ECCF2746437A706A2 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:17:04.0856 0x0ca0 AdobeFlashPlayerUpdateSvc - ok
09:17:04.0892 0x0ca0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:17:04.0908 0x0ca0 adp94xx - ok
09:17:04.0926 0x0ca0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:17:04.0926 0x0ca0 adpahci - ok
09:17:04.0947 0x0ca0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:17:04.0947 0x0ca0 adpu320 - ok
09:17:04.0962 0x0ca0 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:17:04.0962 0x0ca0 AeLookupSvc - ok
09:17:05.0014 0x0ca0 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
09:17:05.0030 0x0ca0 AFD - ok
09:17:05.0045 0x0ca0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
09:17:05.0045 0x0ca0 agp440 - ok
09:17:05.0063 0x0ca0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
09:17:05.0063 0x0ca0 ALG - ok
09:17:05.0089 0x0ca0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
09:17:05.0089 0x0ca0 aliide - ok
09:17:05.0114 0x0ca0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
09:17:05.0114 0x0ca0 amdide - ok
09:17:05.0117 0x0ca0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:17:05.0117 0x0ca0 AmdK8 - ok
09:17:05.0133 0x0ca0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:17:05.0133 0x0ca0 AmdPPM - ok
09:17:05.0164 0x0ca0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:17:05.0166 0x0ca0 amdsata - ok
09:17:05.0194 0x0ca0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:17:05.0194 0x0ca0 amdsbs - ok
09:17:05.0210 0x0ca0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:17:05.0210 0x0ca0 amdxata - ok
09:17:05.0329 0x0ca0 [ 37CD9EB03B36D8329F96BA921470DB54, 0CD3BFBA51F84D83E3B208D2BED7CE8E91B447B2037014663EC7CB8E5A925201 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
09:17:05.0331 0x0ca0 AntiVirMailService - ok
09:17:05.0383 0x0ca0 [ 98C06275DB53A1E70AB8CB94013B20D4, 5DE48C829A66B0F4C8119E75D985D63C1020FA318696BD19E44E0A07CD6F1ED0 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
09:17:05.0398 0x0ca0 AntiVirSchedulerService - ok
09:17:05.0445 0x0ca0 [ 98C06275DB53A1E70AB8CB94013B20D4, 5DE48C829A66B0F4C8119E75D985D63C1020FA318696BD19E44E0A07CD6F1ED0 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
09:17:05.0460 0x0ca0 AntiVirService - ok
09:17:05.0543 0x0ca0 [ 1F5CC3C23E10290A3FF9CAA74AA30D07, A4F1F3465A5E0A914EE5A4FEF4A6B639956BA04B7145EF68820BC2A15DEE4162 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
09:17:05.0571 0x0ca0 AntiVirWebService - ok
09:17:05.0602 0x0ca0 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
09:17:05.0602 0x0ca0 AppID - ok
09:17:05.0623 0x0ca0 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:17:05.0623 0x0ca0 AppIDSvc - ok
09:17:05.0659 0x0ca0 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
09:17:05.0674 0x0ca0 Appinfo - ok
09:17:05.0679 0x0ca0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
09:17:05.0679 0x0ca0 arc - ok
09:17:05.0695 0x0ca0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:17:05.0695 0x0ca0 arcsas - ok
09:17:05.0744 0x0ca0 [ A82C01606DC27D05D9D3BFB6BB807E32, CE231637422709D927FB6FA0C4F2215B9C0E3EBBD951FB2FA97B8E64DA479B96 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
09:17:05.0744 0x0ca0 AsIO - ok
09:17:05.0822 0x0ca0 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:17:05.0822 0x0ca0 aspnet_state - ok
09:17:05.0858 0x0ca0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:17:05.0858 0x0ca0 AsyncMac - ok
09:17:05.0889 0x0ca0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
09:17:05.0889 0x0ca0 atapi - ok
09:17:05.0938 0x0ca0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:17:05.0974 0x0ca0 AudioEndpointBuilder - ok
09:17:05.0995 0x0ca0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:17:06.0010 0x0ca0 AudioSrv - ok
09:17:06.0064 0x0ca0 [ 742D578C28F6F58B8B576F91A1D8EB4E, 6C49EC198E67CE40728F0C19CB2BDCB59310BA59324F58E4D456DA2C8CC28BA6 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
09:17:06.0064 0x0ca0 avgntflt - ok
09:17:06.0098 0x0ca0 [ FBC2483AD62FBC8BD76A4254C50874BA, 04398AB0221535DD5D0A1AF6CA107F815CD607E668E2E7887D061FCED7373728 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
09:17:06.0098 0x0ca0 avipbb - ok
09:17:06.0217 0x0ca0 [ 98BB62ABFD17F284C3C5DE40F8266F3C, CD08C737BE9FC32FF98252FCFFCAE779EC6FAB76BF80F0835ACE71F1E155D70D ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
09:17:06.0233 0x0ca0 Avira.ServiceHost - ok
09:17:06.0256 0x0ca0 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
09:17:06.0256 0x0ca0 avkmgr - ok
09:17:06.0292 0x0ca0 [ 7FDC860B34BDFFDFCE98622F81F24FA9, 3EF774A7F2EB741633611400161B6D4F642F9357BF6E957E14E70D1645BE6466 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
09:17:06.0295 0x0ca0 avnetflt - ok
09:17:06.0328 0x0ca0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:17:06.0328 0x0ca0 AxInstSV - ok
09:17:06.0367 0x0ca0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
09:17:06.0393 0x0ca0 b06bdrv - ok
09:17:06.0426 0x0ca0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:17:06.0426 0x0ca0 b57nd60a - ok
09:17:06.0447 0x0ca0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
09:17:06.0463 0x0ca0 BDESVC - ok
09:17:06.0463 0x0ca0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
09:17:06.0463 0x0ca0 Beep - ok
09:17:06.0535 0x0ca0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
09:17:06.0540 0x0ca0 BFE - ok
09:17:06.0581 0x0ca0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
09:17:06.0597 0x0ca0 BITS - ok
09:17:06.0617 0x0ca0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:17:06.0617 0x0ca0 blbdrive - ok
09:17:06.0649 0x0ca0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:17:06.0651 0x0ca0 bowser - ok
09:17:06.0708 0x0ca0 BRDriver64 - ok
09:17:06.0739 0x0ca0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:17:06.0739 0x0ca0 BrFiltLo - ok
09:17:06.0757 0x0ca0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:17:06.0757 0x0ca0 BrFiltUp - ok
09:17:06.0806 0x0ca0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
09:17:06.0806 0x0ca0 Browser - ok
09:17:06.0842 0x0ca0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:17:06.0850 0x0ca0 Brserid - ok
09:17:06.0855 0x0ca0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:17:06.0855 0x0ca0 BrSerWdm - ok
09:17:06.0898 0x0ca0 [ 10813741F5DED490D989602E8EAFD305, 599ACC097E11A65524DA98A2FF36E212664A5EB7C7AB8BC2586A957EDF4BC4AC ] BRSptSvc C:\ProgramData\BitRaider\BRSptSvc.exe
09:17:06.0914 0x0ca0 BRSptSvc - ok
09:17:06.0914 0x0ca0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:17:06.0914 0x0ca0 BrUsbMdm - ok
09:17:06.0930 0x0ca0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:17:06.0930 0x0ca0 BrUsbSer - ok
09:17:06.0950 0x0ca0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:17:06.0950 0x0ca0 BTHMODEM - ok
09:17:06.0966 0x0ca0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
09:17:06.0966 0x0ca0 bthserv - ok
09:17:07.0097 0x0ca0 [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
09:17:07.0129 0x0ca0 c2cautoupdatesvc - ok
09:17:07.0180 0x0ca0 [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
09:17:07.0206 0x0ca0 c2cpnrsvc - ok
09:17:07.0224 0x0ca0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:17:07.0224 0x0ca0 cdfs - ok
09:17:07.0265 0x0ca0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:17:07.0268 0x0ca0 cdrom - ok
09:17:07.0283 0x0ca0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
09:17:07.0299 0x0ca0 CertPropSvc - ok
09:17:07.0333 0x0ca0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:17:07.0333 0x0ca0 circlass - ok
09:17:07.0369 0x0ca0 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
09:17:07.0376 0x0ca0 CLFS - ok
09:17:07.0429 0x0ca0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:17:07.0434 0x0ca0 clr_optimization_v2.0.50727_32 - ok
09:17:07.0466 0x0ca0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:17:07.0469 0x0ca0 clr_optimization_v2.0.50727_64 - ok
09:17:07.0513 0x0ca0 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:17:07.0513 0x0ca0 clr_optimization_v4.0.30319_32 - ok
09:17:07.0528 0x0ca0 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:17:07.0544 0x0ca0 clr_optimization_v4.0.30319_64 - ok
09:17:07.0549 0x0ca0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:17:07.0549 0x0ca0 CmBatt - ok
09:17:07.0569 0x0ca0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:17:07.0569 0x0ca0 cmdide - ok
09:17:07.0616 0x0ca0 [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
09:17:07.0626 0x0ca0 CNG - ok
09:17:07.0648 0x0ca0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:17:07.0648 0x0ca0 Compbatt - ok
09:17:07.0691 0x0ca0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:17:07.0694 0x0ca0 CompositeBus - ok
09:17:07.0699 0x0ca0 COMSysApp - ok
09:17:07.0699 0x0ca0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:17:07.0699 0x0ca0 crcdisk - ok
09:17:07.0730 0x0ca0 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:17:07.0746 0x0ca0 CryptSvc - ok
09:17:07.0769 0x0ca0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:17:07.0784 0x0ca0 DcomLaunch - ok
09:17:07.0800 0x0ca0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
09:17:07.0818 0x0ca0 defragsvc - ok
09:17:07.0823 0x0ca0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:17:07.0823 0x0ca0 DfsC - ok
09:17:07.0854 0x0ca0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
09:17:07.0854 0x0ca0 Dhcp - ok
09:17:07.0944 0x0ca0 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
09:17:07.0975 0x0ca0 DiagTrack - ok
09:17:07.0987 0x0ca0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
09:17:07.0990 0x0ca0 discache - ok
09:17:08.0010 0x0ca0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:17:08.0010 0x0ca0 Disk - ok
09:17:08.0046 0x0ca0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:17:08.0049 0x0ca0 Dnscache - ok
09:17:08.0080 0x0ca0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
09:17:08.0080 0x0ca0 dot3svc - ok
09:17:08.0126 0x0ca0 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
09:17:08.0129 0x0ca0 Dot4 - ok
09:17:08.0129 0x1040 Object required for P2P: [ 37CD9EB03B36D8329F96BA921470DB54 ] AntiVirMailService
09:17:08.0144 0x0ca0 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
09:17:08.0144 0x0ca0 Dot4Print - ok
09:17:08.0165 0x0ca0 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
09:17:08.0165 0x0ca0 dot4usb - ok
09:17:08.0209 0x0ca0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
09:17:08.0216 0x0ca0 DPS - ok
09:17:08.0289 0x0ca0 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:17:08.0289 0x0ca0 drmkaud - ok
09:17:08.0361 0x0ca0 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:17:08.0377 0x0ca0 DXGKrnl - ok
09:17:08.0405 0x0ca0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
09:17:08.0405 0x0ca0 EapHost - ok
09:17:08.0515 0x0ca0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
09:17:08.0565 0x0ca0 ebdrv - ok
09:17:08.0575 0x0ca0 [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] EFS C:\Windows\System32\lsass.exe
09:17:08.0575 0x0ca0 EFS - ok
09:17:08.0663 0x0ca0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:17:08.0666 0x0ca0 ehRecvr - ok
09:17:08.0702 0x0ca0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
09:17:08.0702 0x0ca0 ehSched - ok
09:17:08.0736 0x0ca0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:17:08.0738 0x0ca0 elxstor - ok
09:17:08.0754 0x0ca0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:17:08.0754 0x0ca0 ErrDev - ok
09:17:08.0785 0x0ca0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
09:17:08.0793 0x0ca0 EventSystem - ok
09:17:08.0803 0x0ca0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
09:17:08.0803 0x0ca0 exfat - ok
09:17:08.0818 0x0ca0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:17:08.0818 0x0ca0 fastfat - ok
09:17:08.0857 0x0ca0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
09:17:08.0875 0x0ca0 Fax - ok
09:17:08.0891 0x0ca0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:17:08.0891 0x0ca0 fdc - ok
09:17:08.0906 0x0ca0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
09:17:08.0906 0x0ca0 fdPHost - ok
09:17:08.0911 0x0ca0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
09:17:08.0911 0x0ca0 FDResPub - ok
09:17:08.0919 0x0ca0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:17:08.0919 0x0ca0 FileInfo - ok
09:17:08.0924 0x0ca0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:17:08.0924 0x0ca0 Filetrace - ok
09:17:08.0942 0x0ca0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:17:08.0942 0x0ca0 flpydisk - ok
09:17:08.0960 0x0ca0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:17:08.0980 0x0ca0 FltMgr - ok
09:17:09.0045 0x0ca0 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
09:17:09.0065 0x0ca0 FontCache - ok
09:17:09.0091 0x0ca0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:17:09.0091 0x0ca0 FontCache3.0.0.0 - ok
09:17:09.0107 0x0ca0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:17:09.0107 0x0ca0 FsDepends - ok
09:17:09.0122 0x0ca0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:17:09.0122 0x0ca0 Fs_Rec - ok
09:17:09.0170 0x0ca0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:17:09.0170 0x0ca0 fvevol - ok
09:17:09.0204 0x0ca0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:17:09.0204 0x0ca0 gagp30kx - ok
09:17:09.0240 0x0ca0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
09:17:09.0266 0x0ca0 gpsvc - ok
09:17:09.0268 0x0ca0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:17:09.0268 0x0ca0 hcw85cir - ok
09:17:09.0299 0x0ca0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:17:09.0315 0x0ca0 HdAudAddService - ok
09:17:09.0315 0x08fc Object required for P2P: [ 98BB62ABFD17F284C3C5DE40F8266F3C ] Avira.ServiceHost
09:17:09.0333 0x0ca0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:17:09.0333 0x0ca0 HDAudBus - ok
09:17:09.0351 0x0ca0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:17:09.0351 0x0ca0 HidBatt - ok
09:17:09.0351 0x0ca0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:17:09.0367 0x0ca0 HidBth - ok
09:17:09.0367 0x0ca0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:17:09.0367 0x0ca0 HidIr - ok
09:17:09.0390 0x0ca0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
09:17:09.0390 0x0ca0 hidserv - ok
09:17:09.0413 0x0ca0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:17:09.0413 0x0ca0 HidUsb - ok
09:17:09.0444 0x0ca0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:17:09.0444 0x0ca0 hkmsvc - ok
09:17:09.0480 0x0ca0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:17:09.0480 0x0ca0 HomeGroupListener - ok
09:17:09.0517 0x0ca0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:17:09.0517 0x0ca0 HomeGroupProvider - ok
09:17:09.0631 0x0ca0 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05, 7B3F117C1D606DDA7623BEC0BFBC362C33A12213E899F049AC56A55826984134 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
09:17:09.0646 0x0ca0 hpqcxs08 - ok
09:17:09.0680 0x0ca0 [ F3F72A2A86C22610BCA5439FA789DD52, DA5A8F09DCC512AA1558863AD4FAC12F72DD83CA8FB4D8D9831E4AFBB6B3C616 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
09:17:09.0680 0x0ca0 hpqddsvc - ok
09:17:09.0711 0x0ca0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:17:09.0711 0x0ca0 HpSAMD - ok
09:17:09.0793 0x0ca0 [ D972F48D0CE396759B788693CD665926, 13C32575F1BD5D75067B288D1669AE1F1829B434F97CB211EC3C189F7D2D7C38 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
09:17:09.0811 0x0ca0 HPSLPSVC - ok
09:17:09.0849 0x0ca0 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:17:09.0849 0x0ca0 HTTP - ok
09:17:09.0881 0x0ca0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:17:09.0881 0x0ca0 hwpolicy - ok
09:17:09.0901 0x0ca0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:17:09.0917 0x0ca0 i8042prt - ok
09:17:09.0945 0x0ca0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:17:09.0960 0x0ca0 iaStorV - ok
09:17:10.0038 0x0ca0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:17:10.0053 0x0ca0 idsvc - ok
09:17:10.0069 0x0ca0 IEEtwCollectorService - ok
09:17:10.0074 0x0ca0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:17:10.0074 0x0ca0 iirsp - ok
09:17:10.0131 0x0ca0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
09:17:10.0151 0x0ca0 IKEEXT - ok
09:17:10.0183 0x0ca0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
09:17:10.0183 0x0ca0 intelide - ok
09:17:10.0216 0x0ca0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:17:10.0216 0x0ca0 intelppm - ok
09:17:10.0231 0x0ca0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:17:10.0249 0x0ca0 IPBusEnum - ok
09:17:10.0273 0x0ca0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:17:10.0273 0x0ca0 IpFilterDriver - ok
09:17:10.0329 0x0ca0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:17:10.0345 0x0ca0 iphlpsvc - ok
09:17:10.0345 0x0ca0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:17:10.0361 0x0ca0 IPMIDRV - ok
09:17:10.0366 0x0ca0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:17:10.0366 0x0ca0 IPNAT - ok
09:17:10.0381 0x0ca0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:17:10.0381 0x0ca0 IRENUM - ok
09:17:10.0397 0x0ca0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:17:10.0397 0x0ca0 isapnp - ok
09:17:10.0433 0x11b4 Object required for P2P: [ C35B91B6777E7C6DB67B8583D2AA66A7 ] c2cpnrsvc
09:17:10.0433 0x0ca0 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:17:10.0449 0x0ca0 iScsiPrt - ok
09:17:10.0472 0x0ca0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
09:17:10.0472 0x0ca0 kbdclass - ok
09:17:10.0492 0x0ca0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
09:17:10.0492 0x0ca0 kbdhid - ok
09:17:10.0492 0x0ca0 [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] KeyIso C:\Windows\system32\lsass.exe
09:17:10.0492 0x0ca0 KeyIso - ok
09:17:10.0523 0x0ca0 [ 211A379BAAB812A7B437319BD85B2435, 4C8B82817B735BEFC0C8E2A42C7EF547D1C179561D3C97B3067B5EA3408F9E4D ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:17:10.0523 0x0ca0 KSecDD - ok
09:17:10.0547 0x0ca0 [ CC1B3B52F33CBC1CE60867DA4E23537C, A373DBCE6A53B77F59D9C83E243E5C1A2B4C38571CA28198229730D612561978 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:17:10.0547 0x0ca0 KSecPkg - ok
09:17:10.0562 0x0ca0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:17:10.0562 0x0ca0 ksthunk - ok
09:17:10.0601 0x0ca0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
09:17:10.0601 0x1040 Object send P2P result: true
09:17:10.0616 0x0ca0 KtmRm - ok
09:17:10.0648 0x0ca0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
09:17:10.0658 0x0ca0 LanmanServer - ok
09:17:10.0678 0x0ca0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:17:10.0678 0x0ca0 LanmanWorkstation - ok
09:17:10.0709 0x0ca0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:17:10.0709 0x0ca0 lltdio - ok
09:17:10.0741 0x0ca0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:17:10.0748 0x0ca0 lltdsvc - ok
09:17:10.0748 0x0ca0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:17:10.0748 0x0ca0 lmhosts - ok
09:17:10.0779 0x0ca0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:17:10.0779 0x0ca0 LSI_FC - ok
09:17:10.0797 0x0ca0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:17:10.0797 0x0ca0 LSI_SAS - ok
09:17:10.0829 0x0ca0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:17:10.0831 0x0ca0 LSI_SAS2 - ok
09:17:10.0834 0x0ca0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:17:10.0849 0x0ca0 LSI_SCSI - ok
09:17:10.0865 0x0ca0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
09:17:10.0865 0x0ca0 luafv - ok
09:17:10.0885 0x0ca0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:17:10.0885 0x0ca0 Mcx2Svc - ok
09:17:10.0901 0x0ca0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:17:10.0901 0x0ca0 megasas - ok
09:17:10.0932 0x0ca0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:17:10.0937 0x0ca0 MegaSR - ok
09:17:10.0953 0x0ca0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
09:17:10.0953 0x0ca0 MMCSS - ok
09:17:10.0968 0x0ca0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
09:17:10.0971 0x0ca0 Modem - ok
09:17:10.0981 0x0ca0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:17:10.0981 0x0ca0 monitor - ok
09:17:10.0997 0x0ca0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:17:10.0997 0x0ca0 mouclass - ok
09:17:11.0012 0x0ca0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:17:11.0012 0x0ca0 mouhid - ok
09:17:11.0033 0x0ca0 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:17:11.0033 0x0ca0 mountmgr - ok
09:17:11.0082 0x0ca0 [ 5961C5D8EDD2E2A3B99F1782AE1AC21F, C383A4724A335737C4C7C3211AFCFB82D373267EC634BC47EE078A1C66E1F62A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:17:11.0085 0x0ca0 MozillaMaintenance - ok
09:17:11.0100 0x0ca0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
09:17:11.0116 0x0ca0 mpio - ok
09:17:11.0136 0x0ca0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:17:11.0136 0x0ca0 mpsdrv - ok
09:17:11.0183 0x0ca0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:17:11.0188 0x0ca0 MpsSvc - ok
09:17:11.0222 0x0ca0 [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:17:11.0222 0x0ca0 MRxDAV - ok
09:17:11.0237 0x0ca0 [ 07F8F6B0CAEC7ADD30EBD94940A315D7, 288429A146B74E88D93C5BC19D878A42AC6F411EE31D9A6D36A2A2FFCF7B9436 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:17:11.0237 0x0ca0 mrxsmb - ok
09:17:11.0237 0x0ca0 [ 8856E45D23BFF4D977BF06D0543BCD96, 0066C061A3516A16C2477590859865E46E522A290CCE17C3EC1B69F81E466E9E ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:17:11.0256 0x0ca0 mrxsmb10 - ok
09:17:11.0261 0x0ca0 [ 8D383CED28332B5F3894658857472F47, CB3872543D08C6432CF884C11A5897637A6FC7E9AC40F424444BAAA49C9FC32A ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:17:11.0261 0x0ca0 mrxsmb20 - ok
09:17:11.0276 0x0ca0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
09:17:11.0276 0x0ca0 msahci - ok
09:17:11.0292 0x0ca0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:17:11.0292 0x0ca0 msdsm - ok
09:17:11.0310 0x0ca0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
09:17:11.0312 0x0ca0 MSDTC - ok
09:17:11.0312 0x0ca0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:17:11.0328 0x0ca0 Msfs - ok
09:17:11.0328 0x0ca0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:17:11.0328 0x0ca0 mshidkmdf - ok
09:17:11.0344 0x0ca0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:17:11.0344 0x0ca0 msisadrv - ok
09:17:11.0382 0x0ca0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:17:11.0382 0x0ca0 MSiSCSI - ok
09:17:11.0382 0x0ca0 msiserver - ok
09:17:11.0398 0x0ca0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:17:11.0398 0x0ca0 MSKSSRV - ok
09:17:11.0426 0x0ca0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:17:11.0429 0x0ca0 MSPCLOCK - ok
09:17:11.0429 0x0ca0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:17:11.0429 0x0ca0 MSPQM - ok
09:17:11.0475 0x0ca0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:17:11.0485 0x0ca0 MsRPC - ok
09:17:11.0493 0x0ca0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:17:11.0493 0x0ca0 mssmbios - ok
09:17:11.0508 0x0ca0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:17:11.0511 0x0ca0 MSTEE - ok
09:17:11.0516 0x0ca0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:17:11.0516 0x0ca0 MTConfig - ok
09:17:11.0547 0x0ca0 [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
09:17:11.0547 0x0ca0 MTsensor - ok
09:17:11.0547 0x0ca0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
09:17:11.0563 0x0ca0 Mup - ok
09:17:11.0580 0x0ca0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
09:17:11.0603 0x0ca0 napagent - ok
09:17:11.0641 0x0ca0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:17:11.0641 0x0ca0 NativeWifiP - ok
09:17:11.0710 0x0ca0 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:17:11.0726 0x08fc Object send P2P result: true
09:17:11.0726 0x0ca0 NDIS - ok
09:17:11.0741 0x0ca0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:17:11.0741 0x0ca0 NdisCap - ok
09:17:11.0762 0x0ca0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:17:11.0762 0x0ca0 NdisTapi - ok
09:17:11.0778 0x0ca0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:17:11.0778 0x0ca0 Ndisuio - ok
09:17:11.0793 0x0ca0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:17:11.0793 0x0ca0 NdisWan - ok
09:17:11.0829 0x0ca0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:17:11.0829 0x0ca0 NDProxy - ok
09:17:11.0897 0x0ca0 [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
09:17:11.0897 0x0ca0 Net Driver HPZ12 - ok
09:17:11.0917 0x0ca0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:17:11.0920 0x0ca0 NetBIOS - ok
09:17:11.0956 0x0ca0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:17:11.0966 0x0ca0 NetBT - ok
09:17:11.0982 0x0ca0 [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] Netlogon C:\Windows\system32\lsass.exe
09:17:11.0982 0x0ca0 Netlogon - ok
09:17:12.0031 0x0ca0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
09:17:12.0036 0x0ca0 Netman - ok
09:17:12.0067 0x0ca0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0067 0x0ca0 NetMsmqActivator - ok
09:17:12.0083 0x0ca0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0085 0x0ca0 NetPipeActivator - ok
09:17:12.0090 0x0ca0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
09:17:12.0106 0x0ca0 netprofm - ok
09:17:12.0106 0x0ca0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0106 0x0ca0 NetTcpActivator - ok
09:17:12.0106 0x0ca0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0121 0x0ca0 NetTcpPortSharing - ok
09:17:12.0142 0x0ca0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:17:12.0142 0x0ca0 nfrd960 - ok
09:17:12.0158 0x0ca0 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
09:17:12.0173 0x0ca0 NlaSvc - ok
09:17:12.0189 0x0ca0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:17:12.0189 0x0ca0 Npfs - ok
09:17:12.0191 0x0ca0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
09:17:12.0191 0x0ca0 nsi - ok
09:17:12.0207 0x0ca0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:17:12.0207 0x0ca0 nsiproxy - ok
09:17:12.0261 0x0ca0 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:17:12.0297 0x0ca0 Ntfs - ok
09:17:12.0313 0x0ca0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
09:17:12.0313 0x0ca0 Null - ok
09:17:12.0352 0x0ca0 [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
09:17:12.0367 0x0ca0 NVHDA - ok
09:17:12.0640 0x0ca0 [ 3B99271224C43ADAB5A7F8D4B574AE3F, 931B011EA7796C61922D892C11D880BCC0383FCECABC4F4855AF89BA20B9B01B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:17:12.0802 0x0ca0 nvlddmkm - ok
09:17:12.0841 0x0ca0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:17:12.0841 0x0ca0 nvraid - ok
09:17:12.0841 0x11b4 Object send P2P result: true
09:17:12.0857 0x0ca0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:17:12.0857 0x0ca0 nvstor - ok
09:17:12.0911 0x0ca0 [ 97ADEBE576474D4CEC53F8E06590FFC8, 2CC8587AAB595D7621AA57A33D94789BD9DC6DBFB4FA9BDEFBB425B7ACCB65AB ] NVSvc C:\Windows\system32\nvvsvc.exe
09:17:12.0927 0x0ca0 NVSvc - ok
09:17:12.0950 0x0ca0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:17:12.0950 0x0ca0 nv_agp - ok
09:17:12.0965 0x0ca0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:17:12.0965 0x0ca0 ohci1394 - ok
09:17:12.0981 0x0ca0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:17:12.0999 0x0ca0 p2pimsvc - ok
09:17:13.0020 0x0ca0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
09:17:13.0035 0x0ca0 p2psvc - ok
09:17:13.0053 0x0ca0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:17:13.0053 0x0ca0 Parport - ok
09:17:13.0078 0x0ca0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:17:13.0078 0x0ca0 partmgr - ok
09:17:13.0099 0x0ca0 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:17:13.0115 0x0ca0 PcaSvc - ok
09:17:13.0135 0x0ca0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
09:17:13.0135 0x0ca0 pci - ok
09:17:13.0156 0x0ca0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
09:17:13.0156 0x0ca0 pciide - ok
09:17:13.0189 0x0ca0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:17:13.0189 0x0ca0 pcmcia - ok
09:17:13.0218 0x0ca0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
09:17:13.0220 0x0ca0 pcw - ok
09:17:13.0261 0x0ca0 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:17:13.0277 0x0ca0 PEAUTH - ok
09:17:13.0341 0x0ca0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:17:13.0343 0x0ca0 PerfHost - ok
09:17:13.0351 0x0ca0 pfc - ok
09:17:13.0436 0x0ca0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
09:17:13.0459 0x0ca0 pla - ok
09:17:13.0492 0x0ca0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:17:13.0513 0x0ca0 PlugPlay - ok
09:17:13.0565 0x0ca0 [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
09:17:13.0565 0x0ca0 Pml Driver HPZ12 - ok
09:17:13.0596 0x0ca0 PnkBstrA - ok
09:17:13.0616 0x0ca0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:17:13.0616 0x0ca0 PNRPAutoReg - ok
09:17:13.0632 0x0ca0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:17:13.0648 0x0ca0 PNRPsvc - ok
09:17:13.0686 0x0ca0 [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
09:17:13.0689 0x0ca0 Point64 - ok
09:17:13.0720 0x0ca0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:17:13.0738 0x0ca0 PolicyAgent - ok
09:17:13.0754 0x0ca0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
09:17:13.0754 0x0ca0 Power - ok
09:17:13.0790 0x0ca0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:17:13.0806 0x0ca0 PptpMiniport - ok
09:17:13.0821 0x0ca0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:17:13.0821 0x0ca0 Processor - ok
09:17:13.0821 0x0ca0 prodrv06 - ok
09:17:13.0865 0x0ca0 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
09:17:13.0870 0x0ca0 ProfSvc - ok
09:17:13.0885 0x0ca0 prohlp02 - ok
09:17:13.0885 0x0ca0 prosync1 - ok
09:17:13.0904 0x0ca0 [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:17:13.0904 0x0ca0 ProtectedStorage - ok
09:17:13.0924 0x0ca0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:17:13.0940 0x0ca0 Psched - ok
09:17:13.0999 0x0ca0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:17:14.0024 0x0ca0 ql2300 - ok
09:17:14.0029 0x0ca0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:17:14.0029 0x0ca0 ql40xx - ok
09:17:14.0045 0x0ca0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
09:17:14.0060 0x0ca0 QWAVE - ok
09:17:14.0076 0x0ca0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:17:14.0076 0x0ca0 QWAVEdrv - ok
09:17:14.0081 0x0ca0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:17:14.0081 0x0ca0 RasAcd - ok
09:17:14.0112 0x0ca0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:17:14.0112 0x0ca0 RasAgileVpn - ok
09:17:14.0112 0x0ca0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
09:17:14.0112 0x0ca0 RasAuto - ok
09:17:14.0130 0x0ca0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:17:14.0130 0x0ca0 Rasl2tp - ok
09:17:14.0148 0x0ca0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
09:17:14.0169 0x0ca0 RasMan - ok
09:17:14.0169 0x0ca0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:17:14.0169 0x0ca0 RasPppoe - ok
09:17:14.0184 0x0ca0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:17:14.0184 0x0ca0 RasSstp - ok
09:17:14.0184 0x0ca0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:17:14.0200 0x0ca0 rdbss - ok
09:17:14.0218 0x0ca0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:17:14.0218 0x0ca0 rdpbus - ok
09:17:14.0221 0x0ca0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:17:14.0221 0x0ca0 RDPCDD - ok
09:17:14.0254 0x0ca0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:17:14.0254 0x0ca0 RDPENCDD - ok
09:17:14.0264 0x0ca0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:17:14.0264 0x0ca0 RDPREFMP - ok
09:17:14.0329 0x0ca0 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:17:14.0329 0x0ca0 RdpVideoMiniport - ok
09:17:14.0367 0x0ca0 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:17:14.0367 0x0ca0 RDPWD - ok
09:17:14.0409 0x0ca0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:17:14.0411 0x0ca0 rdyboost - ok
09:17:14.0442 0x0ca0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:17:14.0447 0x0ca0 RemoteAccess - ok
09:17:14.0470 0x0ca0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:17:14.0470 0x0ca0 RemoteRegistry - ok
09:17:14.0488 0x0ca0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:17:14.0493 0x0ca0 RpcEptMapper - ok
09:17:14.0498 0x0ca0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
09:17:14.0498 0x0ca0 RpcLocator - ok
09:17:14.0530 0x0ca0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
09:17:14.0530 0x0ca0 RpcSs - ok
09:17:14.0545 0x0ca0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:17:14.0545 0x0ca0 rspndr - ok
09:17:14.0584 0x0ca0 [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:17:14.0600 0x0ca0 RTL8167 - ok
09:17:14.0600 0x0ca0 [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] SamSs C:\Windows\system32\lsass.exe
09:17:14.0600 0x0ca0 SamSs - ok
09:17:14.0620 0x0ca0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:17:14.0620 0x0ca0 sbp2port - ok
09:17:14.0636 0x0ca0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:17:14.0636 0x0ca0 SCardSvr - ok
09:17:14.0667 0x0ca0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:17:14.0667 0x0ca0 scfilter - ok
09:17:14.0719 0x0ca0 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
09:17:14.0747 0x0ca0 Schedule - ok
09:17:14.0762 0x0ca0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
09:17:14.0762 0x0ca0 SCPolicySvc - ok
09:17:14.0777 0x0ca0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:17:14.0777 0x0ca0 SDRSVC - ok
09:17:14.0793 0x0ca0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:17:14.0793 0x0ca0 secdrv - ok
09:17:14.0819 0x0ca0 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
09:17:14.0821 0x0ca0 seclogon - ok
09:17:14.0821 0x0ca0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
09:17:14.0821 0x0ca0 SENS - ok
09:17:14.0837 0x0ca0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:17:14.0837 0x0ca0 SensrSvc - ok
09:17:14.0875 0x0ca0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:17:14.0875 0x0ca0 Serenum - ok
09:17:14.0888 0x0ca0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:17:14.0888 0x0ca0 Serial - ok
09:17:14.0922 0x0ca0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:17:14.0922 0x0ca0 sermouse - ok
09:17:14.0945 0x0ca0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
09:17:14.0960 0x0ca0 SessionEnv - ok
09:17:14.0960 0x0ca0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:17:14.0960 0x0ca0 sffdisk - ok
09:17:14.0976 0x0ca0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:17:14.0976 0x0ca0 sffp_mmc - ok
09:17:14.0999 0x0ca0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:17:14.0999 0x0ca0 sffp_sd - ok
09:17:15.0015 0x0ca0 sfhlp01 - ok
09:17:15.0030 0x0ca0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:17:15.0030 0x0ca0 sfloppy - ok
09:17:15.0066 0x0ca0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:17:15.0082 0x0ca0 SharedAccess - ok
09:17:15.0126 0x0ca0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:17:15.0131 0x0ca0 ShellHWDetection - ok
09:17:15.0164 0x0ca0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:17:15.0164 0x0ca0 SiSRaid2 - ok
09:17:15.0180 0x0ca0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:17:15.0180 0x0ca0 SiSRaid4 - ok
09:17:15.0250 0x0ca0 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
09:17:15.0271 0x0ca0 SkypeUpdate - ok
09:17:15.0281 0x0ca0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:17:15.0296 0x0ca0 Smb - ok
09:17:15.0312 0x0ca0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:17:15.0312 0x0ca0 SNMPTRAP - ok
09:17:15.0335 0x0ca0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
09:17:15.0337 0x0ca0 spldr - ok
09:17:15.0381 0x0ca0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
09:17:15.0397 0x0ca0 Spooler - ok
09:17:15.0505 0x0ca0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
09:17:15.0557 0x0ca0 sppsvc - ok
09:17:15.0573 0x0ca0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:17:15.0573 0x0ca0 sppuinotify - ok
09:17:15.0609 0x0ca0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
09:17:15.0609 0x0ca0 srv - ok
09:17:15.0624 0x0ca0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:17:15.0624 0x0ca0 srv2 - ok
09:17:15.0645 0x0ca0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:17:15.0645 0x0ca0 srvnet - ok
09:17:15.0676 0x0ca0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:17:15.0676 0x0ca0 SSDPSRV - ok
09:17:15.0692 0x0ca0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:17:15.0694 0x0ca0 SstpSvc - ok
09:17:15.0769 0x0ca0 [ 2A6EDC2FBB4B9C11BB21BE3881C7A692, 74482CA4EC2B98C069A32C224BA5449AE10A8B41BFC053A4C23B6F65113A97A4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
09:17:15.0769 0x0ca0 Steam Client Service - ok
09:17:15.0875 0x0ca0 [ 49B1E5AF3AA400752A20BE169CB73DFA, D990BC79B289912EB07F3FD50F1236C593A45C5E9B7BD8162269687258E07CE2 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
09:17:15.0890 0x0ca0 Stereo Service - ok
09:17:15.0890 0x0ca0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:17:15.0890 0x0ca0 stexstor - ok
09:17:15.0940 0x0ca0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
09:17:15.0945 0x0ca0 stisvc - ok
09:17:15.0960 0x0ca0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
09:17:15.0960 0x0ca0 swenum - ok
09:17:15.0994 0x0ca0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
09:17:15.0999 0x0ca0 swprv - ok
09:17:16.0046 0x0ca0 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
09:17:16.0079 0x0ca0 SysMain - ok
09:17:16.0102 0x0ca0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:17:16.0104 0x0ca0 TabletInputService - ok
09:17:16.0122 0x0ca0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
09:17:16.0138 0x0ca0 TapiSrv - ok
09:17:16.0163 0x0ca0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
09:17:16.0163 0x0ca0 TBS - ok
09:17:16.0269 0x0ca0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:17:16.0287 0x0ca0 Tcpip - ok
09:17:16.0334 0x0ca0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:17:16.0372 0x0ca0 TCPIP6 - ok
09:17:16.0392 0x0ca0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:17:16.0392 0x0ca0 tcpipreg - ok
09:17:16.0410 0x0ca0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:17:16.0410 0x0ca0 TDPIPE - ok
09:17:16.0431 0x0ca0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:17:16.0431 0x0ca0 TDTCP - ok
09:17:16.0456 0x0ca0 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:17:16.0456 0x0ca0 tdx - ok
09:17:16.0472 0x0ca0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
09:17:16.0472 0x0ca0 TermDD - ok
09:17:16.0531 0x0ca0 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
09:17:16.0551 0x0ca0 TermService - ok
09:17:16.0567 0x0ca0 TFsExDisk - ok
09:17:16.0583 0x0ca0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
09:17:16.0583 0x0ca0 Themes - ok
09:17:16.0603 0x0ca0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
09:17:16.0603 0x0ca0 THREADORDER - ok
09:17:16.0621 0x0ca0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
09:17:16.0624 0x0ca0 TrkWks - ok
09:17:16.0639 0x0ca0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:17:16.0639 0x0ca0 TrustedInstaller - ok
09:17:16.0671 0x0ca0 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:17:16.0671 0x0ca0 tssecsrv - ok
09:17:16.0696 0x0ca0 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:17:16.0699 0x0ca0 TsUsbFlt - ok
09:17:16.0740 0x0ca0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:17:16.0747 0x0ca0 tunnel - ok
09:17:16.0747 0x0ca0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:17:16.0763 0x0ca0 uagp35 - ok
09:17:16.0799 0x0ca0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:17:16.0815 0x0ca0 udfs - ok
09:17:16.0830 0x0ca0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:17:16.0830 0x0ca0 UI0Detect - ok
09:17:16.0851 0x0ca0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:17:16.0851 0x0ca0 uliagpkx - ok
09:17:16.0879 0x0ca0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
09:17:16.0879 0x0ca0 umbus - ok
09:17:16.0894 0x0ca0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:17:16.0894 0x0ca0 UmPass - ok
09:17:16.0910 0x0ca0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
09:17:16.0925 0x0ca0 upnphost - ok
09:17:16.0969 0x0ca0 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
09:17:16.0969 0x0ca0 USBAAPL64 - ok
09:17:17.0000 0x0ca0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
09:17:17.0016 0x0ca0 usbaudio - ok
09:17:17.0049 0x0ca0 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:17:17.0049 0x0ca0 usbccgp - ok
09:17:17.0077 0x0ca0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:17:17.0077 0x0ca0 usbcir - ok
09:17:17.0108 0x0ca0 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
09:17:17.0108 0x0ca0 usbehci - ok
09:17:17.0139 0x0ca0 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:17:17.0147 0x0ca0 usbhub - ok
09:17:17.0147 0x0ca0 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
09:17:17.0147 0x0ca0 usbohci - ok
09:17:17.0178 0x0ca0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:17:17.0178 0x0ca0 usbprint - ok
09:17:17.0196 0x0ca0 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
09:17:17.0196 0x0ca0 usbscan - ok
09:17:17.0212 0x0ca0 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
09:17:17.0212 0x0ca0 USBSTOR - ok
09:17:17.0243 0x0ca0 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
09:17:17.0243 0x0ca0 usbuhci - ok
09:17:17.0253 0x0ca0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
09:17:17.0269 0x0ca0 UxSms - ok
09:17:17.0269 0x0ca0 [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] VaultSvc C:\Windows\system32\lsass.exe
09:17:17.0269 0x0ca0 VaultSvc - ok
09:17:17.0289 0x0ca0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:17:17.0289 0x0ca0 vdrvroot - ok
09:17:17.0328 0x0ca0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
09:17:17.0333 0x0ca0 vds - ok
09:17:17.0349 0x0ca0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:17:17.0349 0x0ca0 vga - ok
09:17:17.0349 0x0ca0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
09:17:17.0349 0x0ca0 VgaSave - ok
09:17:17.0385 0x0ca0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:17:17.0385 0x0ca0 vhdmp - ok
09:17:17.0488 0x0ca0 [ 84FFC3CCA60A1B52A021BC894D529735, F5D98240BF671D792F62669E793080AC1C421C9D1AC3218582622A4C0648C368 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
09:17:17.0520 0x0ca0 VIAHdAudAddService - ok
09:17:17.0561 0x0ca0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
09:17:17.0561 0x0ca0 viaide - ok
09:17:17.0583 0x0ca0 [ F4310278E6CE1C507B5555B662369E26, 179645BCA78FD52F6A370FF885E8A5579B21E6FB721E4FA3D48B5ABCD2A72B3A ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
09:17:17.0583 0x0ca0 VIAKaraokeService - ok
09:17:17.0599 0x0ca0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:17:17.0599 0x0ca0 volmgr - ok
09:17:17.0635 0x0ca0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:17:17.0651 0x0ca0 volmgrx - ok
09:17:17.0679 0x0ca0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:17:17.0679 0x0ca0 volsnap - ok
09:17:17.0712 0x0ca0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:17:17.0715 0x0ca0 vsmraid - ok
09:17:17.0764 0x0ca0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
09:17:17.0795 0x0ca0 VSS - ok
09:17:17.0815 0x0ca0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
09:17:17.0815 0x0ca0 vwifibus - ok
09:17:17.0859 0x0ca0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
09:17:17.0859 0x0ca0 W32Time - ok
09:17:17.0879 0x0ca0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:17:17.0879 0x0ca0 WacomPen - ok
09:17:17.0882 0x0ca0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:17:17.0897 0x0ca0 WANARP - ok
09:17:17.0897 0x0ca0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:17:17.0897 0x0ca0 Wanarpv6 - ok
09:17:17.0946 0x0ca0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
09:17:17.0977 0x0ca0 WatAdminSvc - ok
09:17:18.0013 0x0ca0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
09:17:18.0047 0x0ca0 wbengine - ok
09:17:18.0088 0x0ca0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:17:18.0093 0x0ca0 WbioSrvc - ok
09:17:18.0116 0x0ca0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:17:18.0116 0x0ca0 wcncsvc - ok
09:17:18.0131 0x0ca0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:17:18.0131 0x0ca0 WcsPlugInService - ok
09:17:18.0147 0x0ca0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:17:18.0147 0x0ca0 Wd - ok
09:17:18.0211 0x0ca0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:17:18.0232 0x0ca0 Wdf01000 - ok
09:17:18.0263 0x0ca0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:17:18.0263 0x0ca0 WdiServiceHost - ok
09:17:18.0263 0x0ca0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:17:18.0263 0x0ca0 WdiSystemHost - ok
09:17:18.0299 0x0ca0 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
09:17:18.0304 0x0ca0 WebClient - ok
09:17:18.0317 0x0ca0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:17:18.0322 0x0ca0 Wecsvc - ok
09:17:18.0347 0x0ca0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:17:18.0347 0x0ca0 wercplsupport - ok
09:17:18.0404 0x0ca0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
09:17:18.0409 0x0ca0 WerSvc - ok
09:17:18.0427 0x0ca0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:17:18.0427 0x0ca0 WfpLwf - ok
09:17:18.0461 0x0ca0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:17:18.0461 0x0ca0 WIMMount - ok
09:17:18.0482 0x0ca0 WinDefend - ok
09:17:18.0500 0x0ca0 WinHttpAutoProxySvc - ok
09:17:18.0538 0x0ca0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:17:18.0554 0x0ca0 Winmgmt - ok
09:17:18.0634 0x0ca0 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
09:17:18.0664 0x0ca0 WinRM - ok
09:17:18.0695 0x0ca0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
09:17:18.0695 0x0ca0 WinUsb - ok
09:17:18.0744 0x0ca0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:17:18.0759 0x0ca0 Wlansvc - ok
09:17:18.0880 0x0ca0 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:17:18.0903 0x0ca0 wlidsvc - ok
09:17:18.0937 0x0ca0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:17:18.0937 0x0ca0 WmiAcpi - ok
09:17:18.0955 0x0ca0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:17:18.0955 0x0ca0 wmiApSrv - ok
09:17:18.0970 0x0ca0 WMPNetworkSvc - ok
09:17:18.0991 0x0ca0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:17:18.0991 0x0ca0 WPCSvc - ok
09:17:19.0007 0x0ca0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:17:19.0012 0x0ca0 WPDBusEnum - ok
09:17:19.0012 0x0ca0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:17:19.0012 0x0ca0 ws2ifsl - ok
09:17:19.0027 0x0ca0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
09:17:19.0027 0x0ca0 wscsvc - ok
09:17:19.0027 0x0ca0 WSearch - ok
09:17:19.0133 0x0ca0 [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
09:17:19.0164 0x0ca0 wuauserv - ok
09:17:19.0200 0x0ca0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:17:19.0200 0x0ca0 WudfPf - ok
09:17:19.0216 0x0ca0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\drivers\WUDFRd.sys
09:17:19.0216 0x0ca0 WUDFRd - ok
09:17:19.0236 0x0ca0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:17:19.0236 0x0ca0 wudfsvc - ok
09:17:19.0252 0x0ca0 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
09:17:19.0267 0x0ca0 WwanSvc - ok
09:17:19.0267 0x0ca0 ================ Scan global ===============================
09:17:19.0288 0x0ca0 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
09:17:19.0327 0x0ca0 [ DE4812AB2E6926D0FF2423F3B774585A, 77604B47F2A91F77DDF778D8D362A0145636ED060596760ED55D76DD12E04B79 ] C:\Windows\system32\winsrv.dll
09:17:19.0347 0x0ca0 [ DE4812AB2E6926D0FF2423F3B774585A, 77604B47F2A91F77DDF778D8D362A0145636ED060596760ED55D76DD12E04B79 ] C:\Windows\system32\winsrv.dll
09:17:19.0363 0x0ca0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:17:19.0397 0x0ca0 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
09:17:19.0399 0x0ca0 [ Global ] - ok
09:17:19.0399 0x0ca0 ================ Scan MBR ==================================
09:17:19.0415 0x0ca0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:17:19.0573 0x0ca0 \Device\Harddisk0\DR0 - ok
09:17:19.0573 0x0ca0 ================ Scan VBR ==================================
09:17:19.0573 0x0ca0 [ 268C96959E6BD877A065959930023686 ] \Device\Harddisk0\DR0\Partition1
09:17:19.0611 0x0ca0 \Device\Harddisk0\DR0\Partition1 - ok
09:17:19.0611 0x0ca0 [ BC3A675FD3DBEEBF9EE4EDE9E7B25B1C ] \Device\Harddisk0\DR0\Partition2
09:17:19.0653 0x0ca0 \Device\Harddisk0\DR0\Partition2 - ok
09:17:19.0655 0x0ca0 [ E942436E35142068794E52B9CC967448 ] \Device\Harddisk0\DR0\Partition3
09:17:19.0673 0x0ca0 \Device\Harddisk0\DR0\Partition3 - ok
09:17:19.0673 0x0ca0 ================ Scan generic autorun ======================
09:17:19.0787 0x0ca0 [ 4F46EA70C7579052F764D0F9B81D23C2, EABE443ABC39AFDA49762A78711FAB4C7367680BE4F0B79F3144362D4A272238 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
09:17:19.0825 0x0ca0 NvBackend - ok
09:17:19.0913 0x0ca0 [ B4707C1DB877378C0D0CA715B7388E32, 130ABA211B32E83F5AB4770E16781B0913298960DA3312BB734835AC6F33611C ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
09:17:19.0950 0x0ca0 HDAudDeck - ok
09:17:20.0004 0x0ca0 [ EB6299B13573433744A6582966F760C7, 3D2FE7AB8533331566D449F9DD8FEC4B03C6E341E82D651DD778BDF8B0AEE663 ] C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
09:17:20.0004 0x0ca0 Device Detector - ok
09:17:20.0084 0x0ca0 [ 0A8C7CDE76A44A98E1B1CE34D27AC926, 26B86CA609DD15F86981C1FC4667814A2A7EE5D4BC944B5306A06C00DA35E1D0 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
09:17:20.0099 0x0ca0 DivXMediaServer - ok
09:17:20.0177 0x0ca0 [ 1CE11C53E562D5F7EAFCF47E0E696516, 4E8264DB3CA9B2344905BC2CAE6A9E73190A3CCF3D154B3CBDAF4F73F8FCD64B ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
09:17:20.0177 0x0ca0 avgnt - ok
09:17:20.0247 0x0ca0 [ 16AFB34618E1286FF856DC600AC49C79, 431EC110507685A0F4472EAE35383B4C1E3DC0B56E01CDECFB18F753181DC995 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
09:17:20.0262 0x0ca0 DivXUpdate - ok
09:17:20.0327 0x0ca0 [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
09:17:20.0327 0x0ca0 HP Software Update - ok
09:17:20.0361 0x0ca0 [ 86069F4F421FB355C41FD734500E477F, CB4CE22C3298280B033105875079A373D7E1ADEA15F0F71A2095CCA50CF7E5A5 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
09:17:20.0363 0x0ca0 Avira SystrayStartTrigger - ok
09:17:20.0425 0x0ca0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:17:20.0448 0x0ca0 Sidebar - ok
09:17:20.0466 0x0ca0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:17:20.0466 0x0ca0 mctadmin - ok
09:17:20.0500 0x0ca0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:17:20.0515 0x0ca0 Sidebar - ok
09:17:20.0515 0x0ca0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:17:20.0515 0x0ca0 mctadmin - ok
09:17:20.0626 0x0ca0 [ E8405C87CD06FF5D69BC6F3B24D766D0, C82171BEDBFE593A04D09C2E20B0528AA3CEC722D6919F8A5C70C6EFFB9EFEAE ] C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
09:17:20.0642 0x0ca0 AmazonMP3DownloaderHelper - ok
09:17:20.0644 0x0ca0 Waiting for KSN requests completion. In queue: 278
09:17:21.0645 0x0ca0 Waiting for KSN requests completion. In queue: 278
09:17:22.0660 0x0ca0 Waiting for KSN requests completion. In queue: 278
09:17:23.0690 0x0ca0 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.16.273 ), 0x41000 ( enabled : updated )
09:17:23.0690 0x0ca0 Win FW state via NFP2: enabled ( trusted )
09:17:26.0123 0x0ca0 ============================================================
09:17:26.0123 0x0ca0 Scan finished
09:17:26.0123 0x0ca0 ============================================================
09:17:26.0136 0x0cdc Detected object count: 0
09:17:26.0136 0x0cdc Actual detected object count: 0
09:19:05.0840 0x0ec8 Deinitialize success
|
|
28.03.2016, 08:27
| #4 |
| | MPC Cleaner FRST Addition Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-28 09:00:43)
Gestartet von D:\
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-11 12:11:54)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3779484281-1756450511-2492205697-500 - Administrator - Disabled)
Gast (S-1-5-21-3779484281-1756450511-2492205697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3779484281-1756450511-2492205697-1004 - Limited - Enabled)
Patrick (S-1-5-21-3779484281-1756450511-2492205697-1000 - Administrator - Enabled) => C:\Users\Patrick
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4500_G510gm_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510gm (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
4500G510gm_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ACDSee 6.0 PowerPack (HKLM-x32\...\{1A20BC22-8F21-4A2A-9F4A-E31FC0E5C7E3}) (Version: 6.0.2 - ACD Systems Ltd.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version: - )
Armageddon (HKLM-x32\...\{E163BB62-2840-4C55-9A8E-5C5B9E9FF86C}) (Version: - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Birth of the Federation (HKLM-x32\...\Birth of the Federation) (Version: - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
Browser Configuration Utility (HKLM-x32\...\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}) (Version: 1.0.12.1 - DeviceVM, Inc.) <==== ACHTUNG
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty - United Offensive (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Command & Conquer Die ersten 10 Jahre (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528D}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Die ersten 10 Jahre-Patch 1.02 (HKLM-x32\...\{CBB0ABFB-4668-4172-952D-2CEF5C14F4D2}) (Version: - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of the Tentacle Remastered (HKLM-x32\...\Steam App 388210) (Version: - Double Fine Productions)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo II (HKLM-x32\...\Diablo II) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DocMgr (x32 Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hearts of Iron III (HKLM-x32\...\{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}) (Version: - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510g-m (HKLM\...\{E5083D57-D93F-404C-A91F-1C50D67C2BEB}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version: - )
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Controller-Treiber 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.2.3 (HKLM-x32\...\OpenTTD) (Version: 1.2.3 - OpenTTD)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 36.0.2130.32 (HKLM-x32\...\Opera 36.0.2130.32) (Version: 36.0.2130.32 - Opera Software)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version: - )
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.0.0 - Electronic Arts)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sid Meier's Colonization 1.0 (HKLM-x32\...\Sid Meier's Colonization) (Version: 1.0 - 2K Games)
Sierra-Dienstprogramme (HKLM-x32\...\Sierra-Dienstprogramme) (Version: - )
Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft)
simfy (HKLM-x32\...\Simfy) (Version: 1.6.2 - simfy GmbH)
simfy (x32 Version: 1.6.2 - simfy GmbH) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version: - )
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tropico 3 1.00 (HKLM-x32\...\Tropico3) (Version: 1.00 - Kalypso Media)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Vallen JPegger (HKLM-x32\...\{73182AC3-5CC3-4161-AE97-F23E09B13147}) (Version: V5.70 (Build: 14.0924) - Vallen Systeme GmbH)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.61 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0047D97F-82A4-4888-8E7C-47AC907D76B0} - System32\Tasks\{B6288156-B6A5-41E5-AB28-FE71E587B474} => pcalua.exe -a "C:\Program Files (x86)\Java\jre6\bin\javacpl.exe" -d C:\Windows\system32
Task: {05F7C29C-D76E-4A27-8336-807AF0310399} - System32\Tasks\Opera scheduled Autoupdate 1418232650 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-14] (Opera Software)
Task: {0DB7B184-595B-4856-B0F4-AADCAFC707DD} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {1648D46D-CAEE-4802-89F4-232D9AB28447} - System32\Tasks\{E5BA36D8-FBCB-492C-814C-C01FC0D68945} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {26A6AA09-96AA-4A14-9067-8E22ED566AD2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {290E186C-4866-47D5-A71E-A68A176CE6FB} - System32\Tasks\{997BBDD4-01CD-4A6C-BECD-B768246E0A0F} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly
Task: {2DB641E6-F5E1-4992-A829-46733C4B1C8B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {53240E2C-09C8-433F-B676-E4B8557303B5} - System32\Tasks\{BE3FED53-E047-4060-92A7-2C0351AD1EC3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-02-10] (Skype Technologies S.A.)
Task: {57D4DA5D-CA0C-47C1-B802-28086DC70B64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {5863F53F-89A6-4A1B-A458-5762650648AF} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {6B2309B9-7C6E-4831-8381-379EC9F9128B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {76990081-9D55-490B-947D-5D4D63657CAD} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {87DAAAA0-4DCF-4A99-91A7-907DEF7CFC66} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A458DE9E-A37C-440D-B98E-A0165829035F} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20] (Oracle Corporation)
Task: {A9FB9D69-F562-42C7-8F7A-8D0FB11C332D} - System32\Tasks\Samsung-Online-Aktualisierungsprogramm => C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe
Task: {B51F4F57-3D09-40B3-895D-B28B9D51D0E0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BB660F43-FC39-4CC1-93D2-0A8F5B14AA58} - System32\Tasks\{7C6732F4-33FA-48CE-8A11-814478F176AE} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {D0943722-068A-4952-B465-BAE44AEBDE27} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2011-10-26 10:59 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-11 17:50 - 2011-08-14 10:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2011-05-11 14:17 - 2011-04-06 18:20 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-11 14:19 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2011-05-11 14:19 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2011-05-11 14:19 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2011-05-11 14:19 - 2009-03-25 16:53 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2011-12-09 17:02 - 2014-04-22 21:26 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
2016-03-24 21:29 - 2016-03-24 21:29 - 19397824 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{C32984CB-584C-43E9-95A0-9095F6397D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0DBE4CE2-7290-4F45-8452-A1B228808D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{624A342D-57A1-45B9-84C4-AF749461B87C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{43FEF54A-ECCA-4C98-8826-20AC3B1007B6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5A39D4AB-2354-4DCE-B0C8-F0246ABC76BA}] => (Allow) LPort=2869
FirewallRules: [{BD3F6624-5C77-4856-A223-3D6F191085A4}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{A6BC6C2C-0BA3-4E30-9360-DF0B093BE7BC}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{4E75F0FD-5F7E-4C6E-ACDC-37EEDA2340A8}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{ADB97BF7-44AB-47B2-8F93-AE043CC8A570}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{05667FFF-D0F8-4D3F-9AB2-3D15ABC06E97}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8ECD16C6-91DF-4625-BD7E-46515E0AF576}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{3C2A3C26-78DF-443C-BD3B-9FB6274843CD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{5A5BCB59-87EB-4D28-8DFE-A3BFDD93A54B}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{6333C699-0768-4EE0-9045-B051C8B6E112}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{25EE640D-15A0-4281-83B8-31A6F824F684}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{378FE6A3-E8D7-4689-BDBF-86B0434102F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4FC8356D-354E-43A8-AD51-DD7BCFEE1673}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D294339F-1EB0-4AD9-8BE6-5E49A1A3C917}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6387AAD7-DBC1-43B3-8922-3906A2DA1EB7}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{49562064-7E28-45E6-B715-8F3435F14A26}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{2240193D-5BF2-40CE-9399-A0432E2C774D}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{DA5F9BAA-34D9-4785-A9CE-9844679CCB21}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D6DA1C3D-26A8-49C6-A846-847B5D701C48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{F735CC49-391F-4DD2-86BC-A5DFA52670B1}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{0CAD3A0B-B2FC-459B-A41A-68EE8A3D7B55}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{9293C9E0-A94E-48AD-A0D6-49FF83683938}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{FB76B658-56AF-402D-B9AF-65799624CB5A}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [UDP Query User{3DDA228D-02E6-4813-A0CF-F7F7F044485C}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{02190F4B-165E-410E-A6FB-391882415CC9}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{D329D921-EC96-4553-9B20-D09AD7FB93B7}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [TCP Query User{7473EFAC-A698-4843-BF56-E2D489DEF4FA}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0BE7A2CA-3A16-4515-824C-8BA75F4B051F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{4B80DF41-3BF6-4398-8703-E41B544538F4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9C4BF73C-0B71-4B16-AF30-D279073442A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{459B32AC-5267-4EF7-9673-75C7DA979980}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [{FA3EA983-53CA-47E8-98DF-82156F4B7824}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [TCP Query User{ECEFA33E-DE78-458D-A745-C1691FD30E9A}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [UDP Query User{A811B78A-FE9E-41F5-A3A9-20FBF08753DE}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{8FF5605F-EFA9-4DD4-97F8-B3F7394747E7}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{9FE4A8B3-7A1E-4669-A049-84E53A0F5A57}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [TCP Query User{4DDEA0E4-704D-4DA3-8F99-47D32FC4572B}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2AC2AC37-8C27-4493-85C3-D97052DFDA1C}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E25A8788-5049-49D8-8648-E4634CEF36B0}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{93DFD1DA-F47E-4C98-AB1C-C770F2C007A3}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FCC2A810-C55B-4DB8-AB31-C4A912FB7D47}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{87597222-8A96-49FA-A318-5AFD868823D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{EF063043-D8C9-4E3C-A477-33BF1EB43B9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{4063C165-21E5-408F-9D3F-9E253D3BE2E9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{229CF85B-1420-4640-9DE9-A1301671A017}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{065DF7BD-E2EE-4C38-86E1-D493D3B41BC6}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{FA78F6DF-1C8E-4F50-95E2-D9A7A8534C99}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{3A3EA13C-D24B-4C7D-B767-28B165DE7EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [TCP Query User{FE8E9E6A-9263-4139-8E8C-B6DC52B323ED}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [UDP Query User{AB20D579-041B-4C1A-B333-B0E12506A9DD}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [{5E5D2079-B4B4-47A2-BE26-FD544B6A9CFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{ECEF128C-CBFD-4E4A-9F0C-F76F65EA3780}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{D59AA56B-A8E8-4FEB-AFAA-683B4F4C9816}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{C472F769-E15B-462E-88EB-B7524A0BA2E7}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [TCP Query User{EEE03B2C-0FC5-48C4-B022-B48B560C8BC4}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{E2B83EE9-0164-4C82-B41B-FA3AF59F3922}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{E56DAA2B-7337-4C7C-92AD-E6200476BDF9}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{CE56DAB9-780F-4ED3-AB65-76CC22FACAEB}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{2C6CC2C5-4282-4596-BE37-77B73646253D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1B986CDA-1724-4268-81AB-1C3743BED4F0}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E36EA5F-F900-420E-AAE3-2C232DFCA9AA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{EF529C20-ECB5-4961-ABF9-B5A91CE5E5BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [TCP Query User{EF5FCF5A-6BC9-4B64-B74F-646F89B48006}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{19E6565B-96E4-4D32-81F6-121815B5C22D}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{801900C4-77CC-439F-9F72-57375117FC7C}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{0395FF3B-C528-49E7-9F00-8BEE871B4EEE}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{2AA628D4-2C71-4299-A2D8-857BA35FD8FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{E6C307E9-B837-43A2-B990-E46CEECFDBE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [TCP Query User{B51E0C45-CB19-41C9-BB3F-555AE8E2690C}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [UDP Query User{3B510D0D-E5F4-4AA0-A913-A339205A81FA}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [{CDE95D20-9C75-4FC9-8411-CF3696269E95}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{7DF73B6E-C44D-4436-AC69-B3E006975FC8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{DF42F708-9521-4453-B99E-0713668F166D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{8DC95206-76E9-4E46-BCB8-31633A366654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{7095C02D-4BBA-4C7C-928C-20494C1E517B}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{1D9F5187-6AAC-4AA3-850B-45AA5F141D10}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{54840F41-5AA8-4CFF-A2D3-FD74A38E70B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{420D4372-2BA1-43E3-ACDA-63E05E7FCD0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E992E954-196B-4FDD-8353-65CF0BD2309F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B8783539-B66C-4EE5-AC46-49D141F95337}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B7A49E58-DA80-4568-98D3-FD1062E932E9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{46C72477-6000-47D2-A1BD-188777EF572E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{563E450C-D1F7-4F4B-97F9-586CEDFD072A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{9B1E57DF-096B-4216-8D43-57D7DC2B767B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1A3C5741-7751-437F-8EF6-7C471E179E09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{53E0635B-9838-4A4B-8BD3-16EF5E5A8651}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FB9FEF18-A4A1-44A0-AAF8-2FA3CEF665C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{B1FED601-9F01-474A-BC16-BDCAE9F6D550}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{3ED7010A-DD24-438F-A7AA-C2FD31F44334}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A29251D-0926-4B6C-8CBE-88C07CBF1A82}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7FE49A7-ACE0-479A-9059-A2EB64595DC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{D4226C21-0DAE-41AA-B4A9-6E7CB54A4B87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{0E2E6FEE-D31D-410B-944D-C0E7E9C8660D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{927C6C1A-D142-4701-A831-D0E806A8E392}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{52CBA9EE-879D-48A8-B0CB-2C29A03A7F87}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{21D17140-1447-474F-B4A0-96BB217A93A8}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [TCP Query User{FB145B01-CDA4-4910-B871-C0C063BF0B53}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{DAA21334-E6B3-4A8D-81C4-62D6CDDAF88F}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{F19DC922-F6F9-4F3A-85A8-C1C79F47486C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{2B670CB9-C181-400D-A5FF-7F7FF36BC1D3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{DF47DB6E-8324-406D-9D0B-DDD250C98274}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{7AC44544-59CA-4A25-910F-5905CAECE913}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C35A1D5-CA88-44F5-BDF5-9E5F219530F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{ADFB721A-E8CC-4343-A17E-5D4161DEF896}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8D415CE1-1D3A-4F24-8A7D-20B148CB870C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{55A1F745-D8D3-4C5D-8A74-9CE9D9560E4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7D6942F5-48A6-4B0A-B5E5-C7AAA05BE4E2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B1678A39-59CF-4439-BD5E-C5B5220B66C8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7FC273BC-5F50-4CAE-9742-F4CFBF3CD423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{1FB5C5CB-8F9F-45AF-8B82-0DE7A11693E7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{1D5A1C6B-BEC4-44DB-A343-A93120D0AE62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E11D49C-5CB0-42D6-9AC0-9553CB1CD1EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{13DFE636-8B8B-475C-AA35-698EC0F65135}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{3F020619-865C-4AB6-A931-29F9055D70C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{932BBCFD-048D-4D3C-8EF2-2D538D012277}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F4A7349A-7005-4B21-A5F7-C2904F9F29FE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{8C36F0BE-C005-4FE1-A95F-769069489455}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{5786A6AC-A14B-42BA-9B68-4F31261CB8E7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{B75263D3-D958-4290-9BC9-6902DA0A7C23}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D4CCB33-0CA0-40F5-9CA3-DAEA3C779153}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{33F2371D-5E62-4B9A-85CD-37596933A86E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{B111818D-995C-42FF-9709-97C6BBD948F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E4ADB540-2066-4DDF-A049-42C4F2D853CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{5A4C8C9C-B3C7-4533-BA7D-BED64856CAC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{BCD10E1B-3BE4-48AF-8230-6A5B42885516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{081D7107-A1F8-4E59-9E43-FB369C3FFC03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{3E49CC7E-8AEB-4FB2-89B6-FC0DF2AB98C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{C076010B-DF57-4B00-835E-FE6AA8E87687}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{D10DD33A-0506-439A-A005-72B386C8D113}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{CD3979EE-62E6-4669-A9A1-1AAE77DCA0FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{9FAFAE95-748A-46C3-8465-E264A385A31A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{BE1D7ADE-02C9-45A2-90D3-51444B25BFFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{EE1FA5A9-28CF-45D0-BC2E-ED1AC1DEC978}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{EB6EC940-C784-4571-BA7E-6931ADA6E411}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{44D3FCFD-0F3F-4519-B2A8-F8E87195CD61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{E01C6642-ECFC-465D-8036-FB77C5B07F19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{C58C50B8-0DE0-4ECA-ABEC-800012D854E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{7E959230-455A-4823-A2E9-0C912EA4D054}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{95FD7D24-F0E4-4558-B9B5-59E8A90B096E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{06D05AB2-B1EB-48B0-A87B-C6C796D290B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{A93E4C38-F0DC-468A-AF34-9DBBD5077872}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{CE64A636-68F1-4A48-9D24-B34967AB9C28}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{F39B6073-94E3-4900-A519-35C72CB51054}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B0C51CA3-65FA-41E9-8579-3EB3071CD818}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6A7627DA-560D-4AEF-9B04-A91F6F12F752}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [UDP Query User{AE6E3FC0-B7D5-424E-B914-2702B6F49F5B}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [{1498C0BE-43E9-47B8-8BED-0597CD23DDAC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{225870E3-3C82-4B0B-A909-FC814BB82C04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CDC896C2-E025-4530-A4F0-070288C097D2}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{D8413924-4CE8-4412-924A-AE825FDD54AA}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{62534F73-CB55-456C-A469-6CD2212DCC01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{418C28DA-9BF9-4D7B-89DD-0EB67BB8E8D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C4B96FD-A409-493E-8519-67CFA3408695}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{BA1B9ECE-84E0-47B4-B11E-7612B3F47623}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [{1F27C5B3-48F4-4461-9B11-4E56AD3C2F72}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{3CF26DF8-9B0B-44B1-9EE7-1E191E08FB32}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
==================== Wiederherstellungspunkte =========================
15-03-2016 15:42:06 Windows Update
19-03-2016 15:29:27 Windows Update
22-03-2016 17:02:16 Windows Update
24-03-2016 23:26:06 Windows Update
27-03-2016 15:37:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
27-03-2016 15:38:09 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
27-03-2016 18:17:23 Windows Defender Checkpoint
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/27/2016 07:08:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 07:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x83c
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (03/27/2016 07:00:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 06:43:41 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 04:32:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Name des fehlerhaften Moduls: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000efbc7
ID des fehlerhaften Prozesses: 0x141c
Startzeit der fehlerhaften Anwendung: 0xDott.exe0
Pfad der fehlerhaften Anwendung: Dott.exe1
Pfad des fehlerhaften Moduls: Dott.exe2
Berichtskennung: Dott.exe3
Error: (03/10/2016 05:06:40 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5C00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (03/05/2016 09:38:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x860
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (02/19/2016 03:10:19 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5B00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (02/15/2016 03:19:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0xb00
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (02/15/2016 09:33:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x694
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Systemfehler:
=============
Error: (03/28/2016 09:04:03 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:02:55 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:02:45 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:02:15 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:01:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:01:45 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:01:43 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:00:12 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:00:11 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 09:00:10 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Prozentuale Nutzung des RAM: 23%
Installierter physikalischer RAM: 8183.05 MB
Verfügbarer physikalischer RAM: 6286.35 MB
Summe virtueller Speicher: 16364.32 MB
Verfügbarer virtueller Speicher: 14164.45 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:200.01 GB) (Free:95.96 GB) NTFS
Drive d: () (Fixed) (Total:731.41 GB) (Free:649.15 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9FCDF98)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.4 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
28.03.2016, 08:27
| #5 |
| | MPC Cleaner FRST FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Patrick (Administrator) auf PATRICK-PC (28-03-2016 09:00:12)
Gestartet von D:\
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ACD Systems, Ltd.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3031664 2011-04-06] (VIA)
HKLM-x32\...\Run: [Device Detector] => C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe [217088 2003-11-27] (ACD Systems, Ltd.)
HKLM-x32\...\Run: [NPSStartup] => [X]
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-27]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B9C1690C-CDE6-4E02-B8DF-1124B8E084EB}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-06-26] [ist nicht signiert]
FF HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-24] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-08-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-05-23] (Padus, Inc.) [Datei ist nicht signiert]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [65504 2004-03-09] (Protection Technology) [Datei ist nicht signiert]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [Datei ist nicht signiert]
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2015-11-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [Datei ist nicht signiert]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Datei ist nicht signiert]
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-28 08:59 - 2016-03-28 09:00 - 00000000 ____D C:\FRST
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (2).exe
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (1).exe
2016-03-27 20:28 - 2016-03-27 20:29 - 00188150 _____ C:\Windows\ntbtlog.txt
2016-03-27 19:28 - 2016-03-27 21:23 - 00000000 ____D C:\AdwCleaner
2016-03-27 19:28 - 2016-03-27 19:29 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
2016-03-27 18:40 - 2016-03-27 18:40 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\MCorp
2016-03-27 18:14 - 2016-03-27 18:15 - 00000000 ____D C:\Users\Patrick\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-27 18:14 - 2016-03-27 18:14 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\Desktop\Vallen JPegger.lnk
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vallen JPegger.lnk
2016-03-09 18:40 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 18:40 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 18:40 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 18:40 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-08 21:37 - 2016-02-04 19:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-08 21:37 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-08 21:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-08 21:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-08 21:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-08 21:36 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-08 21:36 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-08 21:36 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-08 21:36 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-08 21:36 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-08 21:36 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-08 21:36 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-08 21:36 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-08 21:36 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-08 21:36 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-08 21:36 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-08 21:36 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-08 21:36 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-08 21:36 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-08 21:36 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-08 21:36 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-08 21:36 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-08 21:36 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-08 21:36 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-08 21:36 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-08 21:36 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-08 21:36 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-08 21:36 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-08 21:36 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-08 21:36 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-08 21:36 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-08 21:36 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-08 21:36 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-08 21:36 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 21:36 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-08 21:35 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-08 21:35 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-08 21:35 - 2016-02-11 19:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-08 21:35 - 2016-02-11 19:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-08 21:35 - 2016-02-11 19:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-08 21:35 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-08 21:35 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-08 21:34 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-08 21:34 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-08 21:34 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-08 21:34 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-08 21:34 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-08 21:34 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-28 08:58 - 2015-10-03 21:12 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-28 08:55 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-28 08:55 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-28 08:51 - 2009-07-14 19:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2016-03-28 08:51 - 2009-07-14 19:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2016-03-28 08:51 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-28 08:51 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-03-28 08:39 - 2011-05-11 14:23 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-28 08:39 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-27 23:29 - 2012-04-08 17:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-27 22:59 - 2011-05-11 15:19 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Skype
2016-03-27 22:28 - 2015-11-02 22:48 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-27 22:28 - 2014-12-10 19:30 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 36.lnk
2016-03-27 22:28 - 2014-06-26 19:19 - 00001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-27 22:28 - 2011-09-04 14:35 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-03-27 22:28 - 2011-05-11 14:25 - 00001833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-27 22:28 - 2011-05-11 14:17 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-27 22:28 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-27 22:27 - 2016-02-06 16:45 - 00000897 _____ C:\Users\Public\Desktop\Command & Conquer Die ersten 10 Jahre.lnk
2016-03-27 22:27 - 2015-11-02 22:48 - 00002041 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-27 22:27 - 2015-10-03 21:12 - 00001100 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-27 22:27 - 2015-09-25 19:12 - 00000907 _____ C:\Users\Patrick\Desktop\Star Wars Jedi Knight II Jedi Outcast spielen.lnk
2016-03-27 22:27 - 2015-09-25 16:34 - 00000833 _____ C:\Users\Public\Desktop\DOSBox 0.74.lnk
2016-03-27 22:27 - 2015-09-02 16:21 - 00001132 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-27 22:27 - 2014-11-12 21:54 - 00001851 _____ C:\Users\Public\Desktop\ooVoo.lnk
2016-03-27 22:27 - 2014-10-11 22:42 - 00002013 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-27 22:27 - 2014-09-27 20:26 - 00001386 _____ C:\Users\Patrick\Desktop\CopyTrans Control Center.lnk
2016-03-27 22:27 - 2014-08-31 17:33 - 00001135 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2016-03-27 22:27 - 2014-07-04 14:58 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001345 _____ C:\Users\Public\Desktop\HP Solution Center.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Mehrspieler.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Einzelspieler.lnk
2016-03-27 22:27 - 2013-11-12 20:33 - 00001156 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Mehrspieler.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Einzelspieler.lnk
2016-03-27 22:27 - 2012-12-23 17:06 - 00000670 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-03-27 22:27 - 2012-07-17 21:51 - 00000706 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-27 22:27 - 2012-06-24 19:09 - 00001859 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-27 22:27 - 2012-04-20 16:32 - 00000814 _____ C:\Users\Patrick\Desktop\Diablo II - Lord of Destruction.lnk
2016-03-27 22:27 - 2012-04-20 16:23 - 00000814 _____ C:\Users\Public\Desktop\Diablo II.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001777 _____ C:\Users\Patrick\Desktop\Spotify.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001763 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-03-27 22:27 - 2011-11-04 20:03 - 00001822 _____ C:\Users\Public\Desktop\ICQ7.6.lnk
2016-03-27 22:27 - 2011-10-03 10:02 - 00001577 _____ C:\Users\Patrick\Desktop\DivX Movies.lnk
2016-03-27 22:27 - 2011-09-15 16:31 - 00000860 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-27 22:27 - 2011-08-18 18:45 - 00000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Sierra-Dienstprogramme.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Mehrspieler.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Einzelspieler.lnk
2016-03-27 22:27 - 2011-06-23 11:12 - 00001056 _____ C:\Users\Public\Desktop\Hearts of Iron III.lnk
2016-03-27 22:27 - 2011-06-17 22:02 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-03-27 22:27 - 2011-06-10 19:09 - 00000622 _____ C:\Users\Public\Desktop\simfy.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002881 _____ C:\Users\Public\Desktop\ACD FotoCanvas 3.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002845 _____ C:\Users\Public\Desktop\ACDSee 6.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002721 _____ C:\Users\Public\Desktop\ACD FotoSlate 3.0.lnk
2016-03-27 22:27 - 2011-05-21 11:49 - 00000784 _____ C:\Users\Patrick\Desktop\PATRIZIER II Gold starten.lnk
2016-03-27 22:27 - 2011-05-14 12:15 - 00000767 _____ C:\Users\Public\Desktop\Arsenal of Democracy.lnk
2016-03-27 22:27 - 2011-05-11 16:56 - 00001000 _____ C:\Users\Public\Desktop\Armageddon.lnk
2016-03-27 22:27 - 2011-05-11 16:53 - 00000983 _____ C:\Users\Patrick\Desktop\Winamp.lnk
2016-03-27 22:27 - 2011-05-11 16:48 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-27 22:27 - 2011-05-11 16:33 - 00001446 _____ C:\Users\Patrick\Desktop\Windows Live Mail.lnk
2016-03-27 22:27 - 2011-05-11 14:43 - 00000355 _____ C:\Users\Patrick\Desktop\Computer - Verknüpfung.lnk
2016-03-27 22:27 - 2011-05-11 14:25 - 00001827 _____ C:\Users\Public\Desktop\Opera.lnk
2016-03-27 22:27 - 2011-05-11 14:18 - 00001444 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
2016-03-27 22:27 - 2011-05-11 14:17 - 00001200 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-03-27 22:27 - 2011-05-11 14:12 - 00001425 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-03-27 22:27 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-27 22:27 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-27 22:26 - 2011-10-09 15:27 - 00000000 ____D C:\Windows\Sun
2016-03-27 22:23 - 2011-06-02 10:11 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:23 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-03-27 20:31 - 2016-02-16 14:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-27 20:03 - 2013-08-24 19:52 - 00000000 ____D C:\ProgramData\BitRaider
2016-03-27 19:31 - 2014-06-26 19:21 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Yahoo!
2016-03-27 19:08 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-27 18:19 - 2011-08-18 18:43 - 00000302 _____ C:\Windows\SIERRA.INI
2016-03-27 15:37 - 2014-08-08 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-26 15:05 - 2014-11-01 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 15:05 - 2013-10-16 22:32 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 15:05 - 2012-06-13 08:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-26 15:04 - 2015-08-26 16:55 - 00000000 ____D C:\Users\Patrick\.oracle_jre_usage
2016-03-26 15:04 - 2014-11-01 14:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-24 21:29 - 2012-04-08 17:12 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-24 21:29 - 2012-04-08 17:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-24 21:29 - 2011-06-13 21:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-24 19:17 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-24 18:53 - 2011-10-06 14:59 - 00000000 ____D C:\Windows\Panther
2016-03-20 16:16 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Local\Battle.net
2016-03-20 16:16 - 2013-11-12 20:33 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-03-20 16:08 - 2014-08-22 17:34 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-03-19 20:40 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Battle.net
2016-03-19 20:40 - 2013-11-12 19:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-17 16:35 - 2015-04-22 16:14 - 00003872 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418232650
2016-03-17 16:35 - 2011-05-11 14:25 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-10 14:09 - 2015-10-03 21:12 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2015-10-03 21:12 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2011-06-01 20:57 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-09 23:38 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:20 - 2013-11-26 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-09 23:19 - 2013-11-26 09:51 - 00154816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00133168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00069888 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-03-09 18:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-03-08 22:45 - 2009-07-14 06:45 - 00298264 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-08 22:31 - 2013-07-20 13:58 - 00000000 ____D C:\Windows\system32\MRT
2016-03-08 22:28 - 2011-05-11 15:01 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-06-12 12:15 - 2012-06-12 13:41 - 0000455 _____ () C:\Users\Patrick\AppData\Roaming\SamsungLiveUpdateConfig.ini
2011-11-01 10:23 - 2014-07-17 21:48 - 0007168 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-18 21:51 - 2012-06-18 21:51 - 0000017 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2011-05-11 15:20 - 2011-05-11 15:20 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2014-06-26 19:13 - 2014-06-26 19:45 - 0001331 _____ () C:\ProgramData\hpzinstall.log
2013-01-11 23:51 - 2013-01-11 23:51 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\554815143.exe
C:\Users\Patrick\AppData\Local\Temp\727234035.exe
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe
C:\Users\Patrick\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Patrick\AppData\Local\Temp\detectionui_r.exe
C:\Users\Patrick\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\local.dll
C:\Users\Patrick\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-19 16:36
==================== Ende von FRST.txt ============================
|
|
28.03.2016, 22:02
| #6 | ||
| /// TB-Ausbilder | MPC CleanerZitat:
Und wegen FRST: Zukünftig bitte beachten: Zitat:
Bitte alle Tools direkt auf den Desktop downloaden bzw. dorthin verschieben und vom Desktop starten, da unsere Anleitungen daraufhin ausgelegt sind. Zudem lassen sich dann am Ende der Bereinigung alle verwendeten Tools sehr einfach entfernen. Alle Tools bis zum Ende der Bereinigung auf dem Desktop lassen, evtl. benötigen wir manche öfter. |
|
28.03.2016, 22:06
| #7 |
| | MPC CleanerCode:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 27.03.2016 Suchlaufzeit: 22:09 Protokolldatei: malwarebytes.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.03.27.03 Rootkit-Datenbank: v2016.03.12.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Patrick Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 403563 Abgelaufene Zeit: 13 Min., 27 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 1 PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, , [219ea2ea7524bb7b61e4250244bf9c64], Registrierungswerte: 4 PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffsengext, , [219ea2ea7524bb7b61e4250244bf9c64] PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffsengext, , [ecd3b9d39aff0333ba8b38ef3fc44ab6] PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, hxxp://www.yessearches.com/chrome.php?uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&q={searchTerms}&ts=AHEpCH0tBH8tA0..&v=20160323&mode=ffsengext, , [7c438a02bcdd1323450036f1c63d1ee2] PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, hxxp://www.yessearches.com/chrome.php?uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&ts=AHEpCH0tBH8tA0..&v=20160323&mode=ffexttoolbar&q=, , [13ac55379ffac86e0342af78ee1501ff] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 3 PUP.Optional.ASK, C:\Windows\TEMP\APNLogs, , [6d528804910873c3b9e20a1db25144bc], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7, , [d1ee602caaef9a9c30b1ce4e10f39a66], Dateien: 58 PUP.Optional.ConvertAd, C:\Users\Patrick\AppData\Local\Temp\nsaCE3D.tmp, , [e9d64e3e1e7b5ed8119f1085a55dc33d], Adware.ConvertAd, C:\Users\Patrick\AppData\Local\Temp\nsjF53D.tmp, , [9c239eee9affaf8733d69273ba4817e9], PUP.Optional.NoteUp, C:\Users\Patrick\AppData\Local\Temp\nsp5CC1.tmp, , [3d823a524d4ca4925106a2c935cc54ac], PUP.Optional.StartSurf, C:\Users\Patrick\AppData\Local\Temp\00f559a8.a, , [c1fe37553a5f74c253fbc21a986932ce], Adware.IStartSurf, C:\Users\Patrick\AppData\Local\Temp\00f560e9.a, , [b9066e1edcbd67cf9ef3916c976a9769], PUP.Optional.SpaceSoundPro, C:\Users\Patrick\AppData\Local\Temp\M26U6OLJL2.exe, , [902f96f679208aac3dad7e86679e6799], PUP.Optional.SpaceSoundPro, C:\Users\Patrick\AppData\Local\Temp\R4MUWIOLG5\testversion.exe, , [dae5523a1782e056c5fe33c80af71ce4], PUP.Optional.Tuto4PC, C:\Users\Patrick\AppData\Local\Temp\R4MUWIOLG5\win.exe, , [a41b2a622c6dfe381885dd81fa06fe02], PUP.Optional.Tuto4PC, C:\Users\Patrick\AppData\Local\Temp\FL08TSMCH3\win.exe, , [605f9bf1f2a789ad8d10b1ad8f714eb2], PUP.Optional.Tuto4PC, C:\Users\Patrick\AppData\Local\Temp\TXJW5IG6OL\win.exe, , [704fe3a94c4d2b0b2c71aab413ed9b65], Adware.ConvertAd, C:\Users\Patrick\AppData\Local\Temp\16081378\ic-0.1f4146256a76d8.exe, , [c8f7cac28415a4929376d530fd055da3], PUP.Optional.Amonetize, C:\Users\Patrick\AppData\Local\Temp\16081378\Setup__2140_il2186504.exe, , [bb04f19b5841a0960424c983f312a858], PUP.Optional.CrossAd.Gen, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\extensions\@E9438230-A7DF-4D1F-8F2D-CA1D0F0F7924.xpi, , [ffc03458a3f62511731082a3c63deb15], PUP.Optional.ASK, C:\Windows\TEMP\APNLogs\ic.log, , [6d528804910873c3b9e20a1db25144bc], PUP.Optional.FakeIELaunch, C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk, , [fcc35a32b9e0290d9367212a887c2ed2], Trojan.FakeAlert, C:\Users\Patrick\AppData\Local\Temp\R4MUWIOLG5\testversion.exe, , [3f80bad237629c9a79047b10b0542dd3], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\Stbf72178bb-6165-4bdc-a6b6-243e86e64e5f.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi6f901e40-66f6-4ccb-a020-3d1349c6dce4.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb1bdfdbd0-3308-4cfa-8bd3-6b35ca6cb8ba.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi01394cc2-ca24-4212-92d5-85ace355e250.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi0eb7cc38-c04f-44c6-926a-76b6f3345041.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi1bdfdbd0-3308-4cfa-8bd3-6b35ca6cb8ba.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi2ab7d664-094f-41b2-95d1-695c5494d71b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi2bac68a7-3c61-41b0-9a65-023b16fa16e0.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi2cd0e769-4c25-4279-a0a9-24d9f6e05a43.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi3af117dd-fa85-465e-9e10-aeaa18ee0896.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi4ff56bfa-7286-4c36-bdc8-f098cb31429e.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi606a6274-8949-4ab6-b75f-b3596692b4cb.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb2ab7d664-094f-41b2-95d1-695c5494d71b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb2bac68a7-3c61-41b0-9a65-023b16fa16e0.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb2cd0e769-4c25-4279-a0a9-24d9f6e05a43.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb314db0e0-b415-439e-bc9c-368ecd4e3cdb.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb3adefc5d-f46e-4d8e-9c43-571828b580e1.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb3af117dd-fa85-465e-9e10-aeaa18ee0896.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb4ff56bfa-7286-4c36-bdc8-f098cb31429e.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb606a6274-8949-4ab6-b75f-b3596692b4cb.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb6f901e40-66f6-4ccb-a020-3d1349c6dce4.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbae5c0bb0-4ff0-4e4d-80dd-e503cf14205d.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbb160a911-83b9-4c70-bfaf-9ecdfd74a045.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbc1d0cfc2-2f2e-4c01-86ab-45567bccdf0b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbcbc68cb9-661b-4c35-9eb3-6110400893a1.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbf11fcbdc-b33e-4bb6-b347-01ff3a4cddc9.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbfc584d63-bb84-4ac2-8516-6e42fca25745.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msiae5c0bb0-4ff0-4e4d-80dd-e503cf14205d.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msib160a911-83b9-4c70-bfaf-9ecdfd74a045.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msic1d0cfc2-2f2e-4c01-86ab-45567bccdf0b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msicbc68cb9-661b-4c35-9eb3-6110400893a1.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msif11fcbdc-b33e-4bb6-b347-01ff3a4cddc9.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msifc584d63-bb84-4ac2-8516-6e42fca25745.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb01394cc2-ca24-4212-92d5-85ace355e250.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb0eb7cc38-c04f-44c6-926a-76b6f3345041.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (user_pref("browser.newtab.url", "hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffseng");), ,[b20df99355448da9567f8ec8c93c768a] PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (lor", "#0000FF"); user_pref("browser.bookmarks.restore_default_bookmarks", false); user_pref("browser.cache.disk.capacity", 358400); user_pref("browser.cache.disk.f), ,[7d4267254a4f7fb77362c096a4616a96] PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (hile the application is running, * the changes will be overwritten when the application exits. * * To make a manual change to preferences, you can visit the URL about:config */ user_), ,[922dbcd089106fc783525df98382c13f] PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (nning, * the changes will be overwritten when the application exits. * * To make a manual change to preferences, you can visit the URL about:config */ user_pref("accessibility.typeahe), ,[f4cbfd8fe8b154e2973e6aec2cd9629e] PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (istory", false); user_pref("app.update.enabled", false); user_pref("app.update.lastUpdateTime.addon-background-update-timer", 1458984614); user_pref("app.u), ,[1ea1d6b69bfe2a0c369fba9c16ef4ab6] PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (user_pref("browser.startup.homepage", "https://www.malwarebytes.org/restorebrowser/), Schlecht: (user_pref("browser.startup.homepage", "hxxp://www.yessearches.com), ,[b00ff09cf2a773c3da10aea89f6656aa] PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\searchplugins\DD1B66D4.xml, , [843b523a4c4dfe384aaa1e37b64fdf21], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) |
|
28.03.2016, 22:10
| #8 | |
| /// TB-Ausbilder | MPC Cleaner Servus, Zukünftig bitte beachten: Zitat:
Bitte alle Tools direkt auf den Desktop downloaden bzw. dorthin verschieben und vom Desktop starten, da unsere Anleitungen daraufhin ausgelegt sind. Zudem lassen sich dann am Ende der Bereinigung alle verwendeten Tools sehr einfach entfernen. Alle Tools bis zum Ende der Bereinigung auf dem Desktop lassen, evtl. benötigen wir manche öfter.
|
|
28.03.2016, 22:15
| #9 |
| | MPC CleanerCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Patrick (Administrator) auf PATRICK-PC (28-03-2016 23:11:12)
Gestartet von C:\Users\Patrick\Desktop
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ACD Systems, Ltd.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3031664 2011-04-06] (VIA)
HKLM-x32\...\Run: [Device Detector] => C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe [217088 2003-11-27] (ACD Systems, Ltd.)
HKLM-x32\...\Run: [NPSStartup] => [X]
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-27]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B9C1690C-CDE6-4E02-B8DF-1124B8E084EB}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-06-26] [ist nicht signiert]
FF HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-24] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-08-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-05-23] (Padus, Inc.) [Datei ist nicht signiert]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [65504 2004-03-09] (Protection Technology) [Datei ist nicht signiert]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [Datei ist nicht signiert]
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2015-11-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [Datei ist nicht signiert]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Datei ist nicht signiert]
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-28 23:11 - 2016-03-28 23:11 - 00017724 _____ C:\Users\Patrick\Desktop\FRST.txt
2016-03-28 23:11 - 2016-03-28 08:57 - 02374144 _____ (Farbar) C:\Users\Patrick\Desktop\FRST64.exe
2016-03-28 09:16 - 2016-03-28 09:19 - 00196664 _____ C:\TDSSKiller.3.1.0.9_28.03.2016_09.16.48_log.txt
2016-03-28 08:59 - 2016-03-28 23:11 - 00000000 ____D C:\FRST
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (2).exe
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (1).exe
2016-03-27 20:28 - 2016-03-27 20:29 - 00188150 _____ C:\Windows\ntbtlog.txt
2016-03-27 19:28 - 2016-03-27 21:23 - 00000000 ____D C:\AdwCleaner
2016-03-27 19:28 - 2016-03-27 19:29 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
2016-03-27 18:40 - 2016-03-27 18:40 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\MCorp
2016-03-27 18:14 - 2016-03-27 18:15 - 00000000 ____D C:\Users\Patrick\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-27 18:14 - 2016-03-27 18:14 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\Desktop\Vallen JPegger.lnk
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vallen JPegger.lnk
2016-03-09 18:40 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 18:40 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 18:40 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 18:40 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-08 21:37 - 2016-02-04 19:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-08 21:37 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-08 21:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-08 21:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-08 21:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-08 21:36 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-08 21:36 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-08 21:36 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-08 21:36 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-08 21:36 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-08 21:36 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-08 21:36 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-08 21:36 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-08 21:36 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-08 21:36 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-08 21:36 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-08 21:36 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-08 21:36 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-08 21:36 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-08 21:36 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-08 21:36 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-08 21:36 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-08 21:36 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-08 21:36 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-08 21:36 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-08 21:36 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-08 21:36 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-08 21:36 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-08 21:36 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-08 21:36 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-08 21:36 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-08 21:36 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-08 21:36 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-08 21:36 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 21:36 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-08 21:35 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-08 21:35 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-08 21:35 - 2016-02-11 19:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-08 21:35 - 2016-02-11 19:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-08 21:35 - 2016-02-11 19:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-08 21:35 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-08 21:35 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-08 21:34 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-08 21:34 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-08 21:34 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-08 21:34 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-08 21:34 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-08 21:34 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-28 22:29 - 2012-04-08 17:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-28 21:26 - 2011-05-11 15:19 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Skype
2016-03-28 13:30 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-28 13:30 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-28 13:26 - 2009-07-14 19:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2016-03-28 13:26 - 2009-07-14 19:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2016-03-28 13:26 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-28 13:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-03-28 13:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-28 13:21 - 2011-05-11 14:23 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-28 08:58 - 2015-10-03 21:12 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-27 22:28 - 2015-11-02 22:48 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-27 22:28 - 2014-12-10 19:30 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 36.lnk
2016-03-27 22:28 - 2014-06-26 19:19 - 00001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-27 22:28 - 2011-09-04 14:35 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-03-27 22:28 - 2011-05-11 14:25 - 00001833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-27 22:28 - 2011-05-11 14:17 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-27 22:28 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-27 22:27 - 2016-02-06 16:45 - 00000897 _____ C:\Users\Public\Desktop\Command & Conquer Die ersten 10 Jahre.lnk
2016-03-27 22:27 - 2015-11-02 22:48 - 00002041 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-27 22:27 - 2015-10-03 21:12 - 00001100 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-27 22:27 - 2015-09-25 19:12 - 00000907 _____ C:\Users\Patrick\Desktop\Star Wars Jedi Knight II Jedi Outcast spielen.lnk
2016-03-27 22:27 - 2015-09-25 16:34 - 00000833 _____ C:\Users\Public\Desktop\DOSBox 0.74.lnk
2016-03-27 22:27 - 2015-09-02 16:21 - 00001132 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-27 22:27 - 2014-11-12 21:54 - 00001851 _____ C:\Users\Public\Desktop\ooVoo.lnk
2016-03-27 22:27 - 2014-10-11 22:42 - 00002013 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-27 22:27 - 2014-09-27 20:26 - 00001386 _____ C:\Users\Patrick\Desktop\CopyTrans Control Center.lnk
2016-03-27 22:27 - 2014-08-31 17:33 - 00001135 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2016-03-27 22:27 - 2014-07-04 14:58 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001345 _____ C:\Users\Public\Desktop\HP Solution Center.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Mehrspieler.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Einzelspieler.lnk
2016-03-27 22:27 - 2013-11-12 20:33 - 00001156 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Mehrspieler.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Einzelspieler.lnk
2016-03-27 22:27 - 2012-12-23 17:06 - 00000670 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-03-27 22:27 - 2012-07-17 21:51 - 00000706 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-27 22:27 - 2012-06-24 19:09 - 00001859 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-27 22:27 - 2012-04-20 16:32 - 00000814 _____ C:\Users\Patrick\Desktop\Diablo II - Lord of Destruction.lnk
2016-03-27 22:27 - 2012-04-20 16:23 - 00000814 _____ C:\Users\Public\Desktop\Diablo II.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001777 _____ C:\Users\Patrick\Desktop\Spotify.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001763 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-03-27 22:27 - 2011-11-04 20:03 - 00001822 _____ C:\Users\Public\Desktop\ICQ7.6.lnk
2016-03-27 22:27 - 2011-10-03 10:02 - 00001577 _____ C:\Users\Patrick\Desktop\DivX Movies.lnk
2016-03-27 22:27 - 2011-09-15 16:31 - 00000860 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-27 22:27 - 2011-08-18 18:45 - 00000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Sierra-Dienstprogramme.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Mehrspieler.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Einzelspieler.lnk
2016-03-27 22:27 - 2011-06-23 11:12 - 00001056 _____ C:\Users\Public\Desktop\Hearts of Iron III.lnk
2016-03-27 22:27 - 2011-06-17 22:02 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-03-27 22:27 - 2011-06-10 19:09 - 00000622 _____ C:\Users\Public\Desktop\simfy.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002881 _____ C:\Users\Public\Desktop\ACD FotoCanvas 3.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002845 _____ C:\Users\Public\Desktop\ACDSee 6.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002721 _____ C:\Users\Public\Desktop\ACD FotoSlate 3.0.lnk
2016-03-27 22:27 - 2011-05-21 11:49 - 00000784 _____ C:\Users\Patrick\Desktop\PATRIZIER II Gold starten.lnk
2016-03-27 22:27 - 2011-05-14 12:15 - 00000767 _____ C:\Users\Public\Desktop\Arsenal of Democracy.lnk
2016-03-27 22:27 - 2011-05-11 16:56 - 00001000 _____ C:\Users\Public\Desktop\Armageddon.lnk
2016-03-27 22:27 - 2011-05-11 16:53 - 00000983 _____ C:\Users\Patrick\Desktop\Winamp.lnk
2016-03-27 22:27 - 2011-05-11 16:48 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-27 22:27 - 2011-05-11 16:33 - 00001446 _____ C:\Users\Patrick\Desktop\Windows Live Mail.lnk
2016-03-27 22:27 - 2011-05-11 14:43 - 00000355 _____ C:\Users\Patrick\Desktop\Computer - Verknüpfung.lnk
2016-03-27 22:27 - 2011-05-11 14:25 - 00001827 _____ C:\Users\Public\Desktop\Opera.lnk
2016-03-27 22:27 - 2011-05-11 14:18 - 00001444 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
2016-03-27 22:27 - 2011-05-11 14:17 - 00001200 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-03-27 22:27 - 2011-05-11 14:12 - 00001425 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-03-27 22:27 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-27 22:27 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-27 22:26 - 2011-10-09 15:27 - 00000000 ____D C:\Windows\Sun
2016-03-27 22:23 - 2011-06-02 10:11 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:23 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-03-27 20:31 - 2016-02-16 14:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-27 20:03 - 2013-08-24 19:52 - 00000000 ____D C:\ProgramData\BitRaider
2016-03-27 19:31 - 2014-06-26 19:21 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Yahoo!
2016-03-27 19:08 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-27 18:19 - 2011-08-18 18:43 - 00000302 _____ C:\Windows\SIERRA.INI
2016-03-27 15:37 - 2014-08-08 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-26 15:05 - 2014-11-01 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 15:05 - 2013-10-16 22:32 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 15:05 - 2012-06-13 08:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-26 15:04 - 2015-08-26 16:55 - 00000000 ____D C:\Users\Patrick\.oracle_jre_usage
2016-03-26 15:04 - 2014-11-01 14:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-24 21:29 - 2012-04-08 17:12 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-24 21:29 - 2012-04-08 17:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-24 21:29 - 2011-06-13 21:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-24 19:17 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-24 18:53 - 2011-10-06 14:59 - 00000000 ____D C:\Windows\Panther
2016-03-20 16:16 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Local\Battle.net
2016-03-20 16:16 - 2013-11-12 20:33 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-03-20 16:08 - 2014-08-22 17:34 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-03-19 20:40 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Battle.net
2016-03-19 20:40 - 2013-11-12 19:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-17 16:35 - 2015-04-22 16:14 - 00003872 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418232650
2016-03-17 16:35 - 2011-05-11 14:25 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-10 14:09 - 2015-10-03 21:12 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2015-10-03 21:12 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2011-06-01 20:57 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-09 23:38 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:20 - 2013-11-26 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-09 23:19 - 2013-11-26 09:51 - 00154816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00133168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00069888 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-03-09 18:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-03-08 22:45 - 2009-07-14 06:45 - 00298264 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-08 22:31 - 2013-07-20 13:58 - 00000000 ____D C:\Windows\system32\MRT
2016-03-08 22:28 - 2011-05-11 15:01 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-06-12 12:15 - 2012-06-12 13:41 - 0000455 _____ () C:\Users\Patrick\AppData\Roaming\SamsungLiveUpdateConfig.ini
2011-11-01 10:23 - 2014-07-17 21:48 - 0007168 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-18 21:51 - 2012-06-18 21:51 - 0000017 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2011-05-11 15:20 - 2011-05-11 15:20 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2014-06-26 19:13 - 2014-06-26 19:45 - 0001331 _____ () C:\ProgramData\hpzinstall.log
2013-01-11 23:51 - 2013-01-11 23:51 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\554815143.exe
C:\Users\Patrick\AppData\Local\Temp\727234035.exe
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe
C:\Users\Patrick\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Patrick\AppData\Local\Temp\detectionui_r.exe
C:\Users\Patrick\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\local.dll
C:\Users\Patrick\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-19 16:36
|
|
28.03.2016, 22:16
| #10 |
| | MPC CleanerCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-28 23:11:46)
Gestartet von C:\Users\Patrick\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-11 12:11:54)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3779484281-1756450511-2492205697-500 - Administrator - Disabled)
Gast (S-1-5-21-3779484281-1756450511-2492205697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3779484281-1756450511-2492205697-1004 - Limited - Enabled)
Patrick (S-1-5-21-3779484281-1756450511-2492205697-1000 - Administrator - Enabled) => C:\Users\Patrick
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4500_G510gm_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510gm (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
4500G510gm_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ACDSee 6.0 PowerPack (HKLM-x32\...\{1A20BC22-8F21-4A2A-9F4A-E31FC0E5C7E3}) (Version: 6.0.2 - ACD Systems Ltd.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version: - )
Armageddon (HKLM-x32\...\{E163BB62-2840-4C55-9A8E-5C5B9E9FF86C}) (Version: - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Birth of the Federation (HKLM-x32\...\Birth of the Federation) (Version: - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
Browser Configuration Utility (HKLM-x32\...\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}) (Version: 1.0.12.1 - DeviceVM, Inc.) <==== ACHTUNG
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty - United Offensive (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Command & Conquer Die ersten 10 Jahre (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528D}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Die ersten 10 Jahre-Patch 1.02 (HKLM-x32\...\{CBB0ABFB-4668-4172-952D-2CEF5C14F4D2}) (Version: - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of the Tentacle Remastered (HKLM-x32\...\Steam App 388210) (Version: - Double Fine Productions)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo II (HKLM-x32\...\Diablo II) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DocMgr (x32 Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hearts of Iron III (HKLM-x32\...\{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}) (Version: - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510g-m (HKLM\...\{E5083D57-D93F-404C-A91F-1C50D67C2BEB}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version: - )
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Controller-Treiber 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.2.3 (HKLM-x32\...\OpenTTD) (Version: 1.2.3 - OpenTTD)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 36.0.2130.32 (HKLM-x32\...\Opera 36.0.2130.32) (Version: 36.0.2130.32 - Opera Software)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version: - )
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.0.0 - Electronic Arts)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sid Meier's Colonization 1.0 (HKLM-x32\...\Sid Meier's Colonization) (Version: 1.0 - 2K Games)
Sierra-Dienstprogramme (HKLM-x32\...\Sierra-Dienstprogramme) (Version: - )
Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft)
simfy (HKLM-x32\...\Simfy) (Version: 1.6.2 - simfy GmbH)
simfy (x32 Version: 1.6.2 - simfy GmbH) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version: - )
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tropico 3 1.00 (HKLM-x32\...\Tropico3) (Version: 1.00 - Kalypso Media)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Vallen JPegger (HKLM-x32\...\{73182AC3-5CC3-4161-AE97-F23E09B13147}) (Version: V5.70 (Build: 14.0924) - Vallen Systeme GmbH)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.61 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0047D97F-82A4-4888-8E7C-47AC907D76B0} - System32\Tasks\{B6288156-B6A5-41E5-AB28-FE71E587B474} => pcalua.exe -a "C:\Program Files (x86)\Java\jre6\bin\javacpl.exe" -d C:\Windows\system32
Task: {05F7C29C-D76E-4A27-8336-807AF0310399} - System32\Tasks\Opera scheduled Autoupdate 1418232650 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-14] (Opera Software)
Task: {0DB7B184-595B-4856-B0F4-AADCAFC707DD} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {1648D46D-CAEE-4802-89F4-232D9AB28447} - System32\Tasks\{E5BA36D8-FBCB-492C-814C-C01FC0D68945} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {26A6AA09-96AA-4A14-9067-8E22ED566AD2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {290E186C-4866-47D5-A71E-A68A176CE6FB} - System32\Tasks\{997BBDD4-01CD-4A6C-BECD-B768246E0A0F} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly
Task: {2DB641E6-F5E1-4992-A829-46733C4B1C8B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {53240E2C-09C8-433F-B676-E4B8557303B5} - System32\Tasks\{BE3FED53-E047-4060-92A7-2C0351AD1EC3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-02-10] (Skype Technologies S.A.)
Task: {57D4DA5D-CA0C-47C1-B802-28086DC70B64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {5863F53F-89A6-4A1B-A458-5762650648AF} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {6B2309B9-7C6E-4831-8381-379EC9F9128B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {76990081-9D55-490B-947D-5D4D63657CAD} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {87DAAAA0-4DCF-4A99-91A7-907DEF7CFC66} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A458DE9E-A37C-440D-B98E-A0165829035F} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20] (Oracle Corporation)
Task: {A9FB9D69-F562-42C7-8F7A-8D0FB11C332D} - System32\Tasks\Samsung-Online-Aktualisierungsprogramm => C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe
Task: {B51F4F57-3D09-40B3-895D-B28B9D51D0E0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BB660F43-FC39-4CC1-93D2-0A8F5B14AA58} - System32\Tasks\{7C6732F4-33FA-48CE-8A11-814478F176AE} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {D0943722-068A-4952-B465-BAE44AEBDE27} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2011-10-26 10:59 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-12 19:03 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2011-05-11 17:50 - 2011-08-14 10:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2011-05-11 14:17 - 2011-04-06 18:20 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-11 14:19 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2011-05-11 14:19 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2011-05-11 14:19 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2011-05-11 14:19 - 2009-03-25 16:53 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2013-07-01 08:20 - 2016-02-10 03:17 - 00782336 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2015-08-26 16:37 - 2015-07-03 18:12 - 04962816 _____ () D:\Program Files (x86)\Steam\v8.dll
2015-08-26 16:37 - 2015-07-03 18:12 - 01556992 _____ () D:\Program Files (x86)\Steam\icui18n.dll
2015-08-26 16:37 - 2015-07-03 18:12 - 01187840 _____ () D:\Program Files (x86)\Steam\icuuc.dll
2014-12-24 11:19 - 2016-03-10 21:02 - 02547792 _____ () D:\Program Files (x86)\Steam\video.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 02549760 _____ () D:\Program Files (x86)\Steam\libavcodec-56.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00442880 _____ () D:\Program Files (x86)\Steam\libavutil-54.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00491008 _____ () D:\Program Files (x86)\Steam\libavformat-56.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00332800 _____ () D:\Program Files (x86)\Steam\libavresample-2.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00485888 _____ () D:\Program Files (x86)\Steam\libswscale-3.dll
2012-07-17 21:53 - 2016-03-10 21:02 - 00802896 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-28 09:42 - 2016-02-18 00:25 - 00281088 _____ () D:\Program Files (x86)\Steam\openvr_api.dll
2014-03-15 10:07 - 2016-02-09 03:33 - 48400672 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2011-12-09 17:02 - 2014-04-22 21:26 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
2015-08-26 16:37 - 2015-09-25 01:56 - 00119208 _____ () D:\Program Files (x86)\Steam\winh264.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{C32984CB-584C-43E9-95A0-9095F6397D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0DBE4CE2-7290-4F45-8452-A1B228808D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{624A342D-57A1-45B9-84C4-AF749461B87C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{43FEF54A-ECCA-4C98-8826-20AC3B1007B6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5A39D4AB-2354-4DCE-B0C8-F0246ABC76BA}] => (Allow) LPort=2869
FirewallRules: [{BD3F6624-5C77-4856-A223-3D6F191085A4}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{A6BC6C2C-0BA3-4E30-9360-DF0B093BE7BC}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{4E75F0FD-5F7E-4C6E-ACDC-37EEDA2340A8}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{ADB97BF7-44AB-47B2-8F93-AE043CC8A570}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{05667FFF-D0F8-4D3F-9AB2-3D15ABC06E97}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8ECD16C6-91DF-4625-BD7E-46515E0AF576}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{3C2A3C26-78DF-443C-BD3B-9FB6274843CD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{5A5BCB59-87EB-4D28-8DFE-A3BFDD93A54B}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{6333C699-0768-4EE0-9045-B051C8B6E112}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{25EE640D-15A0-4281-83B8-31A6F824F684}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{378FE6A3-E8D7-4689-BDBF-86B0434102F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4FC8356D-354E-43A8-AD51-DD7BCFEE1673}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D294339F-1EB0-4AD9-8BE6-5E49A1A3C917}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6387AAD7-DBC1-43B3-8922-3906A2DA1EB7}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{49562064-7E28-45E6-B715-8F3435F14A26}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{2240193D-5BF2-40CE-9399-A0432E2C774D}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{DA5F9BAA-34D9-4785-A9CE-9844679CCB21}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D6DA1C3D-26A8-49C6-A846-847B5D701C48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{F735CC49-391F-4DD2-86BC-A5DFA52670B1}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{0CAD3A0B-B2FC-459B-A41A-68EE8A3D7B55}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{9293C9E0-A94E-48AD-A0D6-49FF83683938}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{FB76B658-56AF-402D-B9AF-65799624CB5A}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [UDP Query User{3DDA228D-02E6-4813-A0CF-F7F7F044485C}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{02190F4B-165E-410E-A6FB-391882415CC9}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{D329D921-EC96-4553-9B20-D09AD7FB93B7}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [TCP Query User{7473EFAC-A698-4843-BF56-E2D489DEF4FA}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0BE7A2CA-3A16-4515-824C-8BA75F4B051F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{4B80DF41-3BF6-4398-8703-E41B544538F4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9C4BF73C-0B71-4B16-AF30-D279073442A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{459B32AC-5267-4EF7-9673-75C7DA979980}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [{FA3EA983-53CA-47E8-98DF-82156F4B7824}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [TCP Query User{ECEFA33E-DE78-458D-A745-C1691FD30E9A}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [UDP Query User{A811B78A-FE9E-41F5-A3A9-20FBF08753DE}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{8FF5605F-EFA9-4DD4-97F8-B3F7394747E7}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{9FE4A8B3-7A1E-4669-A049-84E53A0F5A57}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [TCP Query User{4DDEA0E4-704D-4DA3-8F99-47D32FC4572B}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2AC2AC37-8C27-4493-85C3-D97052DFDA1C}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E25A8788-5049-49D8-8648-E4634CEF36B0}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{93DFD1DA-F47E-4C98-AB1C-C770F2C007A3}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FCC2A810-C55B-4DB8-AB31-C4A912FB7D47}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{87597222-8A96-49FA-A318-5AFD868823D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{EF063043-D8C9-4E3C-A477-33BF1EB43B9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{4063C165-21E5-408F-9D3F-9E253D3BE2E9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{229CF85B-1420-4640-9DE9-A1301671A017}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{065DF7BD-E2EE-4C38-86E1-D493D3B41BC6}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{FA78F6DF-1C8E-4F50-95E2-D9A7A8534C99}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{3A3EA13C-D24B-4C7D-B767-28B165DE7EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [TCP Query User{FE8E9E6A-9263-4139-8E8C-B6DC52B323ED}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [UDP Query User{AB20D579-041B-4C1A-B333-B0E12506A9DD}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [{5E5D2079-B4B4-47A2-BE26-FD544B6A9CFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{ECEF128C-CBFD-4E4A-9F0C-F76F65EA3780}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{D59AA56B-A8E8-4FEB-AFAA-683B4F4C9816}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{C472F769-E15B-462E-88EB-B7524A0BA2E7}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [TCP Query User{EEE03B2C-0FC5-48C4-B022-B48B560C8BC4}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{E2B83EE9-0164-4C82-B41B-FA3AF59F3922}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{E56DAA2B-7337-4C7C-92AD-E6200476BDF9}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{CE56DAB9-780F-4ED3-AB65-76CC22FACAEB}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{2C6CC2C5-4282-4596-BE37-77B73646253D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1B986CDA-1724-4268-81AB-1C3743BED4F0}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E36EA5F-F900-420E-AAE3-2C232DFCA9AA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{EF529C20-ECB5-4961-ABF9-B5A91CE5E5BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [TCP Query User{EF5FCF5A-6BC9-4B64-B74F-646F89B48006}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{19E6565B-96E4-4D32-81F6-121815B5C22D}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{801900C4-77CC-439F-9F72-57375117FC7C}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{0395FF3B-C528-49E7-9F00-8BEE871B4EEE}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{2AA628D4-2C71-4299-A2D8-857BA35FD8FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{E6C307E9-B837-43A2-B990-E46CEECFDBE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [TCP Query User{B51E0C45-CB19-41C9-BB3F-555AE8E2690C}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [UDP Query User{3B510D0D-E5F4-4AA0-A913-A339205A81FA}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [{CDE95D20-9C75-4FC9-8411-CF3696269E95}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{7DF73B6E-C44D-4436-AC69-B3E006975FC8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{DF42F708-9521-4453-B99E-0713668F166D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{8DC95206-76E9-4E46-BCB8-31633A366654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{7095C02D-4BBA-4C7C-928C-20494C1E517B}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{1D9F5187-6AAC-4AA3-850B-45AA5F141D10}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{54840F41-5AA8-4CFF-A2D3-FD74A38E70B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{420D4372-2BA1-43E3-ACDA-63E05E7FCD0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E992E954-196B-4FDD-8353-65CF0BD2309F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B8783539-B66C-4EE5-AC46-49D141F95337}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B7A49E58-DA80-4568-98D3-FD1062E932E9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{46C72477-6000-47D2-A1BD-188777EF572E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{563E450C-D1F7-4F4B-97F9-586CEDFD072A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{9B1E57DF-096B-4216-8D43-57D7DC2B767B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1A3C5741-7751-437F-8EF6-7C471E179E09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{53E0635B-9838-4A4B-8BD3-16EF5E5A8651}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FB9FEF18-A4A1-44A0-AAF8-2FA3CEF665C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{B1FED601-9F01-474A-BC16-BDCAE9F6D550}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{3ED7010A-DD24-438F-A7AA-C2FD31F44334}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A29251D-0926-4B6C-8CBE-88C07CBF1A82}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7FE49A7-ACE0-479A-9059-A2EB64595DC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{D4226C21-0DAE-41AA-B4A9-6E7CB54A4B87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{0E2E6FEE-D31D-410B-944D-C0E7E9C8660D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{927C6C1A-D142-4701-A831-D0E806A8E392}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{52CBA9EE-879D-48A8-B0CB-2C29A03A7F87}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{21D17140-1447-474F-B4A0-96BB217A93A8}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [TCP Query User{FB145B01-CDA4-4910-B871-C0C063BF0B53}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{DAA21334-E6B3-4A8D-81C4-62D6CDDAF88F}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{F19DC922-F6F9-4F3A-85A8-C1C79F47486C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{2B670CB9-C181-400D-A5FF-7F7FF36BC1D3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{DF47DB6E-8324-406D-9D0B-DDD250C98274}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{7AC44544-59CA-4A25-910F-5905CAECE913}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C35A1D5-CA88-44F5-BDF5-9E5F219530F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{ADFB721A-E8CC-4343-A17E-5D4161DEF896}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8D415CE1-1D3A-4F24-8A7D-20B148CB870C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{55A1F745-D8D3-4C5D-8A74-9CE9D9560E4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7D6942F5-48A6-4B0A-B5E5-C7AAA05BE4E2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B1678A39-59CF-4439-BD5E-C5B5220B66C8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7FC273BC-5F50-4CAE-9742-F4CFBF3CD423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{1FB5C5CB-8F9F-45AF-8B82-0DE7A11693E7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{1D5A1C6B-BEC4-44DB-A343-A93120D0AE62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E11D49C-5CB0-42D6-9AC0-9553CB1CD1EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{13DFE636-8B8B-475C-AA35-698EC0F65135}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{3F020619-865C-4AB6-A931-29F9055D70C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{932BBCFD-048D-4D3C-8EF2-2D538D012277}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F4A7349A-7005-4B21-A5F7-C2904F9F29FE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{8C36F0BE-C005-4FE1-A95F-769069489455}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{5786A6AC-A14B-42BA-9B68-4F31261CB8E7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{B75263D3-D958-4290-9BC9-6902DA0A7C23}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D4CCB33-0CA0-40F5-9CA3-DAEA3C779153}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{33F2371D-5E62-4B9A-85CD-37596933A86E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{B111818D-995C-42FF-9709-97C6BBD948F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E4ADB540-2066-4DDF-A049-42C4F2D853CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{5A4C8C9C-B3C7-4533-BA7D-BED64856CAC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{BCD10E1B-3BE4-48AF-8230-6A5B42885516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{081D7107-A1F8-4E59-9E43-FB369C3FFC03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{3E49CC7E-8AEB-4FB2-89B6-FC0DF2AB98C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{C076010B-DF57-4B00-835E-FE6AA8E87687}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{D10DD33A-0506-439A-A005-72B386C8D113}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{CD3979EE-62E6-4669-A9A1-1AAE77DCA0FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{9FAFAE95-748A-46C3-8465-E264A385A31A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{BE1D7ADE-02C9-45A2-90D3-51444B25BFFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{EE1FA5A9-28CF-45D0-BC2E-ED1AC1DEC978}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{EB6EC940-C784-4571-BA7E-6931ADA6E411}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{44D3FCFD-0F3F-4519-B2A8-F8E87195CD61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{E01C6642-ECFC-465D-8036-FB77C5B07F19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{C58C50B8-0DE0-4ECA-ABEC-800012D854E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{7E959230-455A-4823-A2E9-0C912EA4D054}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{95FD7D24-F0E4-4558-B9B5-59E8A90B096E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{06D05AB2-B1EB-48B0-A87B-C6C796D290B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{A93E4C38-F0DC-468A-AF34-9DBBD5077872}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{CE64A636-68F1-4A48-9D24-B34967AB9C28}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{F39B6073-94E3-4900-A519-35C72CB51054}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B0C51CA3-65FA-41E9-8579-3EB3071CD818}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6A7627DA-560D-4AEF-9B04-A91F6F12F752}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [UDP Query User{AE6E3FC0-B7D5-424E-B914-2702B6F49F5B}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [{1498C0BE-43E9-47B8-8BED-0597CD23DDAC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{225870E3-3C82-4B0B-A909-FC814BB82C04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CDC896C2-E025-4530-A4F0-070288C097D2}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{D8413924-4CE8-4412-924A-AE825FDD54AA}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{62534F73-CB55-456C-A469-6CD2212DCC01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{418C28DA-9BF9-4D7B-89DD-0EB67BB8E8D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C4B96FD-A409-493E-8519-67CFA3408695}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{BA1B9ECE-84E0-47B4-B11E-7612B3F47623}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [{1F27C5B3-48F4-4461-9B11-4E56AD3C2F72}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{3CF26DF8-9B0B-44B1-9EE7-1E191E08FB32}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
==================== Wiederherstellungspunkte =========================
15-03-2016 15:42:06 Windows Update
19-03-2016 15:29:27 Windows Update
22-03-2016 17:02:16 Windows Update
24-03-2016 23:26:06 Windows Update
27-03-2016 15:37:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
27-03-2016 15:38:09 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
27-03-2016 18:17:23 Windows Defender Checkpoint
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/27/2016 07:08:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 07:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x83c
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (03/27/2016 07:00:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 06:43:41 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 04:32:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Name des fehlerhaften Moduls: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000efbc7
ID des fehlerhaften Prozesses: 0x141c
Startzeit der fehlerhaften Anwendung: 0xDott.exe0
Pfad der fehlerhaften Anwendung: Dott.exe1
Pfad des fehlerhaften Moduls: Dott.exe2
Berichtskennung: Dott.exe3
Error: (03/10/2016 05:06:40 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5C00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (03/05/2016 09:38:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x860
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (02/19/2016 03:10:19 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5B00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (02/15/2016 03:19:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0xb00
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (02/15/2016 09:33:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x694
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Systemfehler:
=============
Error: (03/28/2016 11:13:17 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:13:07 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:12:55 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:12:38 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:12:38 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:12:36 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:12:29 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:12:28 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:11:50 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/28/2016 11:11:50 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 8183.05 MB
Verfügbarer physikalischer RAM: 5865.22 MB
Summe virtueller Speicher: 16364.32 MB
Verfügbarer virtueller Speicher: 13666 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:200.01 GB) (Free:95.5 GB) NTFS
Drive d: () (Fixed) (Total:731.41 GB) (Free:649.21 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9FCDF98)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.4 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
28.03.2016, 22:47
| #11 |
| /// TB-Ausbilder | MPC Cleaner Servus, wer hat denn den MPC Cleaner gekillt, wenn es nicht AdwCleaner und nicht MBAM war    Schritt 1 AdwCleaner nochmals laufen lassen. Schritt 2 Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop: SystemLook (32 bit) | SystemLook (64 bit)
|
|
29.03.2016, 15:17
| #12 |
| | MPC Cleaner Hi, nachdem ich den MPC Cleaner unter Programme nicht finden konnte hab ich mir den Ordner des Cleaners gesucht und von dort aus deinstalliert. AdwCleaner hat nichts gefunden. Code:
ATTFilter # AdwCleaner v5.107 - Bericht erstellt am 29/03/2016 um 15:57:14
# Aktualisiert am 28/03/2016 von Xplode
# Datenbank : 2016-03-28.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Patrick - PATRICK-PC
# Gestartet von : C:\Users\Patrick\Desktop\adwcleaner_5.107.exe
# Option : Suchlauf
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Internetbrowser ] *****
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [14842 Bytes] - [27/03/2016 19:31:24]
C:\AdwCleaner\AdwCleaner[C2].txt - [6791 Bytes] - [27/03/2016 21:23:59]
C:\AdwCleaner\AdwCleaner[S1].txt - [15308 Bytes] - [27/03/2016 19:29:32]
C:\AdwCleaner\AdwCleaner[S2].txt - [6465 Bytes] - [27/03/2016 21:21:52]
C:\AdwCleaner\AdwCleaner[S3].txt - [970 Bytes] - [29/03/2016 15:57:14]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1042 Bytes] ##########
Hier der SystemLook Log Code:
ATTFilter SystemLook 30.07.11 by jpshortstuff
Log created at 16:12 on 29/03/2016 by Patrick
Administrator - Elevation successful
========== regfind ==========
Searching for "yessearches"
No data found.
Searching for "APNLogs"
No data found.
Searching for "APN-Stub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210\SourceList]
"LastUsedSource"="n;1;C:\ProgramData\APN\APN-Stub\AVIRA-V7\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210\SourceList\Net]
"1"="C:\ProgramData\APN\APN-Stub\AVIRA-V7\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\25946514D2147365007A7A857BC02210\InstallProperties]
"InstallSource"="C:\ProgramData\APN\APN-Stub\AVIRA-V7\"
Searching for "MPCProtect"
No data found.
Searching for "Winsere"
No data found.
Searching for "DeviceVM"
[HKEY_CURRENT_USER\Software\DeviceVM]
[HKEY_CURRENT_USER\Software\DeviceVM\Browser Configuration Utility\IE]
"AddressBarSearchURL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_CURRENT_USER\Software\DeviceVM\Browser Configuration Utility\IE]
"OldHomePage"="hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fde.search.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"FaviconPath"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\Yahoo.ico"
[HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\299\46693477]
"@C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll,-1"="Soziale Spiele"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\InprocServer32]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\InprocServer32]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\template\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-AE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-BH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-DZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-EG\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-IQ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-JO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-KW\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LB\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-MA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-OM\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-QA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-TN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-YE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\cs-CZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\da-DK\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-AT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-CH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-DE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\el-GR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-029\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-AU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-BZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-CA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-GB\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-JM\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-MY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-NZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-PH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-SG\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-TT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-US\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZW\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-AR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-BO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-DO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-EC\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES_tradnl\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-GT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-HN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-MX\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-NI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-SV\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-US\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-UY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-VE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fi-FI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-BE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-FR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-LU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-MC\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\he-IL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-BA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-HR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hu-HU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-CH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-IT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ja-JP\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ko-KR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nb-NO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-BE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-NL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pl-PL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-BR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-PT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ru-RU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sk-SK\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sl-SI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-FI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-SE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\tr-TR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-CN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-HK\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-MO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-SG\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-TW\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\016DE60871C0A029749F021E17ED1EAE]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-NZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03B668FC3B60B39DA984A227C2474F83]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-US\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\069D15A1025068A4F74959C0B869E104]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-IT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0775BA6C9950EED25FD45CD9A3D53A59]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-MY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\087C72201E909E33C96F2F2C1731BC07]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-DZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BB42A1AAE90B3DF8CA5613AC5E5A4FE]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\135497E2CA6B21049BF4D0A9FB71E3BC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14028CE02A6151D102129D084BA15B45]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14FC15876B91B7B0DA514247BC6F2098]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ru-RU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\166BF09269D172D2996631A726512A4B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pl-PL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\172BC29F4571CB010C26D9C9F930909A]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-HR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18051FFF7B117602FB56C0323EEF692A]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-FI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18274E1F7E614121623895532262A466]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C767F16AE911D6CED419A4D1885FEB1]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-BR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DFD7A65F6F166DB63A7CAE9FF6AC341]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-MC\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E1AB1162CC154C37A51A19B7A60BDB3]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sl-SI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1FF088BA88115FC47315EC7763CFEAC1]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-HK\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\200E9645BF6285775EF8ACA103C176B3]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\23ACC1C1C0E2A141D6261EA8FD83F197]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-BH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\25B875297F82A5FD601C9FFFE46DFDC8]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\cs-CZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27514FE5C842463B4B5C10DC1466B028]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-VE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2D39D9CBCB629BDF8A512E704F63BC65]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-BA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2FC0F4457FD2CC0D83A5449A1863327E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\tr-TR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\32C27756CC131BC4D368EDC078E09C4F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES_tradnl\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\36BFB502A3330C7D65EB5C2E77EBD7D9]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-SG\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\36F57B7CEDF39E1E1592499968D726C7]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-YE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4353B66D21A423EC3E1EB8D53C4B54E4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZW\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A90A7B19B84CDDBE46517DD3191AB9D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-IQ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CC07B602EF4C3D0E31C350BF5BC6472]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\534823CBD445A3870C8DB26430FE0599]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-TT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\55369B7DFB356889BDDFEE543EA217B5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-KW\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5782CA5DB615C9E8486F574AE6D4493E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-GB\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57A00E5958F5A7F56DE7B3692DA0889B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-DO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57B254E3BBF5228CC7D5A3DFC02CCB1B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hu-HU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C072A98191FC1644A2B9670D4659B10]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\template\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D5F40A331353A0ECACF08D71FD69822]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60224FAFE4D672F68AD2D1AEDC48039D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-JM\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60AD9C479D36A89D8134C6CEAF2986FF]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60BEA5E48DF6933852FB810993A9CAA2]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-LU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618683B5D85686E14D9A26B7A4B92B38]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-BE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\686BDE8470523844FAFE17C06449F40F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\694892306EB6D6A51518DDB208A8015E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LB\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6992648F0AC667F84B6B741AEB4F5579]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-NI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6CA937E03ECC19840AD9DDA2F31F2A77]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6FB28499F5D657F4416DA4003BD0FDA7]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-MX\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\70D624E5A77741CE6AF24B97D8747783]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71CB853A5837BFCE27A1161984A0BF4D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\he-IL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73C62BD769B7E008F941A42603659903]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\763DA14889F7E9262CB8E5A46FBC70C0]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ja-JP\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DEF4E4B364444C4C9931EA5D2E97934]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8585CE53A898839E3DAB38EEB3C0726B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8923E54EA758649270DE55DA8E9A71CD]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C2A9A239518FAD005D71597F624A73F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\da-DK\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90AFA4959469D3F240D9FDBEEA7ECD10]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-SE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\91A5A7FE180983A0E7FF1F04A03CFFE5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-HN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94895A51F709F47004661275F9D1D235]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-AU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\963ED69F4C79AD9E14403614B2EDD2F7]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-NL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CA0AEDE43B9AD9B229D3424CB8BB164]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CC022C4A7E9CF8DBA70B5BC329379A8]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D735316EA59F4D28D21247417A7A523]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-FR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A222092FDE0ABEF1DB2B9A369493C89E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-AR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A29F8ED2620AEAAE60A5CB577BE78E7B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-AT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2BA9FC5B15A77D08DEE7E7C106B85CB]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-TN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A3394FC14B2A62EAA838B5A6455690D5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A831FFEC4A2AEFB4EF14908F467C5D46]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-DE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9A9EAC3370AFABF390E0F9CF54ABAAC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA7B9C3AE4FA8A34268E0436F3094068]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-CH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D3898267AB73C333A1CD2A75B280B4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-GT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5AA0F83DAEB9A47452F9464D18E9934]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B67CED5287BBFB729E370EBB216810C4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-BE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6DDBE90017B82D3D292DFCC54C217D9]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-BZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BBA97FFBD11BFD368E84ADDE62C9C098]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-CA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C167984857CCE006FD3AB3C76994A94F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-EC\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C7AF105B175CEF95890BAE22AF0ECB48]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-EG\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C8C04FE9565C70BE9D006734892DCAAF]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-QA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA109E2F661CC4CAC80D0CE0ED399610]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-TW\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CD2803CC49FC0C2F198C1E2EA48353DF]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ko-KR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEBB4FC36BC027F5955FED7D4EFBD6A]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\el-GR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D23BB04796BDC2295262416CBDB997BB]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-OM\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2E95630ABAD781C6ED14AF9638451E0]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-AE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2FEBBAFACDD2E23A78336177AA3B385]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nb-NO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D49E8B83607DDF4C78E66F6CA6719060]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-US\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D9609D942EADB1C043FDB0151159D8F4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fi-FI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDE5F6ABA74D2C08C7051511430325F8]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-MO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEB7CEE016DDD1A45420283F6817FBF0]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-CN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E2E6EEBA988EB23E5148536D2B82E794]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-029\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4EB5897ACBE36AD5ABD1BA7BEA71E30]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-UY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5BCEEC50B1EF2440C62F261C3B86A36]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-MA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F41F083262EFE7A8B8DCD33C1802876F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F42C42D7773F50B34D289AED72F035DC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F651E3208D5F9747937AA52BC32B5FC2]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-PH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F78A8348FF4F9805CF59E55AD68C7EB1]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-SG\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7FCBA0AD07FFBF48A846517789BEEDC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-BO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F98294260C9FC7F83343830A43875124]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sk-SK\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F99405CD706FD4B40A30F686D2A6E72D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F994857C047FD36DE27C4E9A6797628C]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-JO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FCD5B6B047EF368312A1C0E5F0EB6F9C]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-SV\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDD4F941B37F73E288BE00CD201C5CE5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-PT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFFE1A0D3F7F98F0BA3DEE415915598F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-CH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F\InstallProperties]
"InstallLocation"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F\InstallProperties]
"Publisher"="DeviceVM, Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility]
"InstallPath"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\FF\Yahoo]
"AdsBar_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=ytff-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\FF\Yahoo]
"Chrome_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chrf-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\FF\Yahoo]
"Homepage_URL"="hxxp://de.search.yahoo.com/search?fr=fp-devicevm&type=WEB01"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\IE\Yahoo]
"AdsBar_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\IE\Yahoo]
"Chrome_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\IE\Yahoo]
"Homepage_URL"="hxxp://de.search.yahoo.com/search?fr=fp-devicevm&type=WEB01"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\Plugins\ZyngaGames]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGames.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}]
"InstallLocation"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}]
"Publisher"="DeviceVM, Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\InprocServer32]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM]
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM\Browser Configuration Utility\IE]
"AddressBarSearchURL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM\Browser Configuration Utility\IE]
"OldHomePage"="hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fde.search.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"FaviconPath"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\Yahoo.ico"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Classes\Local Settings\MuiCache\299\46693477]
"@C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll,-1"="Soziale Spiele"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000_Classes\Local Settings\MuiCache\299\46693477]
"@C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll,-1"="Soziale Spiele"
Searching for "MPC Cleaner"
No data found.
Searching for "SearchesToYesbnd"
No data found.
Searching for "WinTaske"
No data found.
Searching for "win_en_77"
No data found.
Searching for "YSearchUtil"
No data found.
Searching for "Yahoo!\Companion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}\5.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}\4.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 106"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 102"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6EB4349D-4333-442F-ACA4-4C72AF28B6ED}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YMERemote.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}\InProcServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}\5.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}\4.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46}]
"AppPath"="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 106"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 102"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6EB4349D-4333-442F-ACA4-4C72AF28B6ED}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YMERemote.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}\InProcServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}\5.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}\4.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
Searching for "ICQToolBar"
No data found.
Searching for "search.mpc.am"
No data found.
Searching for " "
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\3]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\ASPEncoder]
"Description"="
<h3>Das Kernstück Ihres HD-Videoerlebnisses</h3>
<p>Der Codec, der die Videowelt revolutioniert hat, wurde weiter optimiert. Wir bezeichnen diese Version als „Pro“, da sie zudem fantastische fortschrittliche Encoding-Einstellungen bietet, mit denen Sie mit Drittanbietersoftware hochwertige DivX-Video generieren können, die auf jedem beliebigen DivX Certified®-Gerät wiedergegeben werden können.</p>
<h3>Gute Gründe für den DivX Codec</h3>
<ul>
<li>Erstellen Sie mit Drittanbietersoftware oder mit dem DivX Converter hochwertige, stark komprimierte DivX-Videos.</li>
<li>Wir garantieren, dass Ihre Videos abgesehen von Deinem PC auch auf DivX Certified-DVD-Playern, Mobiltelefonen, Spielekonsolen uvm. abgespielt werden können.</li>
<li>Optimieren Sie Ihre Videos mit den fortschrittlichen Encoding-Einstellungen, um hochwertigere Dateien zu erhalten.</li>
</ul>"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Converter]
"Description"="
<p>Konvertiere Filmmaterial ganz einfach in DivX-Videos, um sie auf mehr als 1 Milliarde DivX-Geräten wiederzugeben.</p>
<ul>
<li>Erstelle DivX-Videos in hoher Qualität, z. B. DivX HEVC-Videos mit einer Auflösung von bis zu 4K</li>
<li>Passe Deine Codierung mit AviSynth-Unterstützung individuell an</li>
<li>Drehe, kombiniere und füge Untertitel und Audio zu Deinen Videos hinzu</li>
</ul>
<br/>
<p><i>*DivX HEVC-Plugin erforderlich</i></p>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Player]
"Description"="
<p>Hochwertige Wiedergabe von DivX, DivX Plus HD und DivX HEVC-Video bis zu 4K</p>
<ul>
<li>Optimiert für die Wiedergabe der beliebtesten Videoformate im Internet</li>
<li>DivX Media Server streamt MKV zur PS3, Xbox und anderen Geräten</li>
<li>Experimenteller DLNA-Controller für die Wiedergabe von DivX-Videos auf lokalen Geräten</li>
</ul>
<br/>
<p><i>*DivX HEVC-Plugin erforderlich</i></p>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\BundleGroups\divx.com]
"BundleGroupDescription"="
<p>Spiele, erstelle und streame DivX-Videos in hoher Qualität, z. B. HEVC* mit einer Auflösung von bis zu 4K. Das beste DivX Video-Erlebnis erhältst Du, <i>wenn Du alle Komponenten installierst.</i></p>
<!-- Leave the 1st <p> tag line, because it is used on other installer page. -->
<p>Eine neue Version der DivX-Software (10.2.1) ist verfügbar. Vollständige Liste der <a href="hxxp://go.divx.com/WhatsNew/de" target="_blank">Neuheiten</a>:</p>
<ul>
<li>Unterstützung für gewichtete Bewegungskompensation im HEVC-Dekoder</li>
<li>Unterstützung für hohe DPI-Auflösung bis zu 250% für Player und Converter</li>
<li>Behoben: Probleme beim Öffnen von .divx- und .avi-Dateien im Browser mit Web Player</li>
<li>Behoben: Problem mit deutscher Sprache beim Lades des Players</li>
</ul>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\InstallGroups\FiltersAndCodecs]
"Description"="
<p>Mit dem DivX® Codec Pack kannst Du DivX®-Videos mit Deinen Lieblingsanwendungen abspielen und erstellen.</p>
<ul>
<li>DivX- und DivX Plus-Videos auf jedem beliebigen Media-Player abspielen (wie beispielsweise Windows Media Player, QuickTime, Media Player Classic)</li>
<li>Ausgabe von AVI-Videos mit Deiner Lieblingsbearbeitungssoftware (z. B. Sony Vegas, Virtual Dub)</li>
<li>Konvertieren in DivX und MKV mithilfe von DivX Converter und Tools von Drittanbietern – unbegrenzt und kostenlos</li>
</ul>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\InstallGroups\Player]
"Description"="
<p>Der DivX Plus Player ist für das beste Wiedergabeerlebnis auf Deinem PC optimiert.</p>
<ul>
<li>Sehen Sie sich ruckelfreie High-Definition-Videos auf Deinem PC an (bis zu 1080 p)</li>
<li>Einfacher Transfer von Videos an DivX-Geräte</li>
<li>Erleben Sie die DivX Plus-Features, wie den schnellen und gleichmäßigen Vor- und Rücklauf und das Überspringen von Szenen</li>
</ul>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\InstallGroups\SharedLibraries]
"Description"="
<ul>
<li>Das DivX VOD-Plug-in sorgt für besseres Erlebnis für Kunden, die Filme von DivX VOD - Shops beziehen.</li>
</ul>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\WebPlayer]
"Description"="
<p>Effizientes, reibungsloses MKV-Streaming in Deinem Browser</p>
<ul>
<li>Adaptives Bitrate-Streaming mit experimenteller Unterstützung für DivX HEVC*-Streams</li>
<li>Problemlose Wiedergabe des FF/RW-Formats, Abschnittsmarkierungen, Unterstützung mehrerer Untertitel und Tonspuren</li>
<li>Weniger CPU- und Akkuverbrauch mit H.264-DXVA-Hardwarebeschleunigung</li>
</ul>
<br/>
<p><i>*DivX HEVC-Plugin erforderlich</i></p>
"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{040103CE-98A0-4550-90DE-88AF2C937E1D}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
<Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{B3F8E60B-DF77-4104-88AC-F5919C64649A}"/>
<Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{044D131F-D763-4975-9BB4-8C24CC331063}">
<Descriptor descriptorID="{F110F831-9412-40c9-860A-B489407ED374}"/>
</Rating>
<Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{18CD34B7-7AA3-42b9-A303-5A729B2FF228}">
<Descriptor descriptorID="{5D69B8E0-5CC6-4036-91FD-9BDC999BA634}"/>
<Descriptor descriptorID="{56C2626D-3794-473c-B57F-40D31D012C4C}"/>
<Descriptor descriptorID="{BE562A5F-2A80-4c28-9752-74C696E2ABAF}"/>
</Rating>
</Ratings>"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{05955E8C-CF66-4FF0-B203-153DED5519F7}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
<Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{78D8CC82-372F-44e4-B70C-8944DB7BCC24}">
<Descriptor descriptorID="{ABE23B46-7F9F-495b-B4A9-87F41743727F}"/>
<Descriptor descriptorID="{4BDB9E0D-53CF-4a28-865F-B315818E7627}"/>
<Descriptor descriptorID="{D49A8F0C-B183-4a34-8D86-33F2DC0E2D6C}"/>
</Rating>
<Rating ratingSystemID="{EC290BBB-D618-4cb9-9963-1CAAE515443E}" ratingID="{997B7D18-2AFA-49dc-847B-0E8A69723040}"/>
<Rating ratingSystemID="{7F2A4D3A-23A8-4123-90E7-D986BF1D9718}" ratingID="{E2681CD6-318A-4935-8275-AF657045C333}">
<Descriptor descriptorID="{F6C8131A-897B-4ecf-990E-07B976D1F805}"/>
<Descriptor descriptorID="{6AB00271-515B-4a4d-8A6E-9E66BF96A437}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{6F8A91C3-1D42-4A0E-B472-730D449BCD5A}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
<Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{18CD34B7-7AA3-42b9-A303-5A729B2FF228}"/>
<Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{044D131F-D763-4975-9BB4-8C24CC331063}"/>
<Rating ratingSystemID="{5B39D1B8-ED49-4055-8A47-04B29A579AD6}" ratingID="{79F6B936-0C8F-4d67-90A6-B7B2E0F37973}"/>
<Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{B3F8E60B-DF77-4104-88AC-F5919C64649A}"/>
<Rating ratingSystemID="{EC290BBB-D618-4cb9-9963-1CAAE515443E}" ratingID="{997B7D18-2AFA-49dc-847B-0E8A69723040}"/>
</Ratings>"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{CC4948B2-7198-4B05-AD0B-14EA11455396}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
<Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{78D8CC82-372F-44e4-B70C-8944DB7BCC24}">
<Descriptor descriptorID="{0CFCF432-3544-4f78-9426-07A36843E6BA}"/>
<Descriptor descriptorID="{4BDB9E0D-53CF-4a28-865F-B315818E7627}"/>
<Descriptor descriptorID="{DD3146A6-20D6-4f57-A170-E621500614AD}"/>
<Descriptor descriptorID="{27202CE3-EB93-49bc-A570-23AEBCC2A742}"/>
<Descriptor descriptorID="{D49A8F0C-B183-4a34-8D86-33F2DC0E2D6C}"/>
<Descriptor descriptorID="{762EFF14-8713-4649-884E-2E295E2651B3}"/>
<Descriptor descriptorID="{06B2A5C3-33D1-427b-9261-6703DC794E4F}"/>
</Rating>
<Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingI
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{E8AE0286-9A63-4F4F-B479-0E4E4A2A8EB5}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
<Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{78D8CC82-372F-44e4-B70C-8944DB7BCC24}">
<Descriptor descriptorID="{ABE23B46-7F9F-495b-B4A9-87F41743727F}"/>
<Descriptor descriptorID="{BE562A5F-2A80-4c28-9752-74C696E2ABAF}"/>
</Rating>
<Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{E2681CD6-318A-4935-8275-AF657045C333}"/>
<Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{72C4EED7-DC34-4308-BC61-4819752AC408}"/>
</Ratings>"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{EABB3672-E0D6-4AFB-857A-21CA9E382D0B}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
<Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{B3F8E60B-DF77-4104-88AC-F5919C64649A}"/>
<Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{18CD34B7-7AA3-42b9-A303-5A729B2FF228}">
<Descriptor descriptorID="{9A82F712-5A9D-4409-9539-666BBCDFE12D}"/>
<Descriptor descriptorID="{9F3B6BCD-A23B-4645-B3D1-FF8CB32A096F}"/>
<Descriptor descriptorID="{1A796A5D-1E25-4862-9443-1550578FF4C4}"/>
<Descriptor descriptorID="{BE562A5F-2A80-4c28-9752-74C696E2ABAF}"/>
</Rating>
<Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{CEC5DB5A-B4C9-4809-96C6-39CE715E4790}">
<Descriptor descriptorID="{6AB00271-515B-4a4d-8A6E-9E66BF96A437}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell]
"ConfigXML"=" <PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" > <InitializationParameters> <Param Name="PSVersion" Value="2.0"/> </InitializationParameters> <Resources> <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" SupportsOptions="true" ExactMatch="true"> <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/> <Capability Type="Shell"/> </Resource> </Res
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell32]
"ConfigXML"="<PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell32" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" Architecture="32" > <InitializationParameters> <Param Name="PSVersion" Value="2.0"/> </InitializationParameters> <Resources> <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" SupportsOptions="true" ExactMatch="true"> <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz"
-= EOF =-
|
|
30.03.2016, 10:30
| #13 |
| /// TB-Ausbilder | MPC Cleaner Servus, wir entfernen die letzten Reste und kontrollieren nochmal alles. Hinweis: Der Suchlauf mit ESET kann länger dauern. Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CloseProcesses:
HKLM-x32\...\Run: [NPSStartup] => [X]
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210
DeleteKey: HKEY_CURRENT_USER\Software\DeviceVM
DeleteKey: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 ESET Online Scanner
Schritt 3 Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
Schritt 4
Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?Bitte poste mit deiner nächsten Antwort
|
|
30.03.2016, 18:04
| #14 |
| | MPC CleanerCode:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-30 16:06:49) Run:1
Gestartet von C:\Users\Patrick\Desktop
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
CloseProcesses:
HKLM-x32\...\Run: [NPSStartup] => [X]
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210
DeleteKey: HKEY_CURRENT_USER\Software\DeviceVM
DeleteKey: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
*****************
Prozess erfolgreich geschlossen.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NPSStartup => Wert erfolgreich entfernt
"HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1E6BE834-8163-417b-B11D-1A7B3905167E}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{1E6BE834-8163-417b-B11D-1A7B3905167E} => Schlüssel nicht gefunden.
"HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5} => Schlüssel nicht gefunden.
Firefox "Keyword.URL" erfolgreich entfernt
Firefox Proxy-Einstellungen wurden zurückgesetzt
C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js => erfolgreich verschoben
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210 => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210 => Schlüssel erfolgreich entfernt
HKEY_CURRENT_USER\Software\DeviceVM => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_CURRENT_USER\Software\DeviceVM => Schlüssel erfolgreich entfernt
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5} => Schlüssel nicht gefunden.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => Schlüssel nicht gefunden.
HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM => Schlüssel nicht gefunden.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34} => Schlüssel erfolgreich entfernt
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zur�ckgesetzt.
Sie m�ssen den Computer neu starten, um den Vorgang abzuschlie�en.
========= Ende von CMD: =========
EmptyTemp: => 2.9 GB temporäre Dateien entfernt.
Das System musste neu gestartet werden.
==== Ende von Fixlog 16:20:24 ====
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-09-17 07:21:20
# local_time=2011-09-17 09:21:20 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1797 16775165 100 94 60277 52778732 26899 0
# compatibility_mode=5893 16776574 100 94 11118833 67871761 0 0
# compatibility_mode=8192 67108863 100 0 349 349 0 0
# scanned=216958
# found=0
# cleaned=0
# scan_time=2169
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# end=init
# utc_time=2016-03-30 02:29:32
# local_time=2016-03-30 04:29:32 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 28821
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# end=updated
# utc_time=2016-03-30 02:32:57
# local_time=2016-03-30 04:32:57 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# engine=28821
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-03-30 04:36:26
# local_time=2016-03-30 06:36:26 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Antivirus'
# compatibility_mode=1815 16777213 100 100 8063 57552708 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 95913 210985636 0 0
# scanned=421698
# found=4
# cleaned=0
# scan_time=7409
sh=5EB0075A2CC96A0DF64DE5E87C2EF251602E250B ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js"
sh=65149A6E6D011F934A516070333E4D3BB06515E7 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js"
sh=C5DB8386C3A901DD6D4FB8B66685B889FA1099F9 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\user.js"
sh=9249E9EFC555C30EAA4C9C5C33D7FE2E2F13B22E ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\prefs.js"
Code:
ATTFilter
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-30 19:03:07)
Gestartet von C:\Users\Patrick\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-11 12:11:54)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3779484281-1756450511-2492205697-500 - Administrator - Disabled)
Gast (S-1-5-21-3779484281-1756450511-2492205697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3779484281-1756450511-2492205697-1004 - Limited - Enabled)
Patrick (S-1-5-21-3779484281-1756450511-2492205697-1000 - Administrator - Enabled) => C:\Users\Patrick
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4500_G510gm_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510gm (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
4500G510gm_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ACDSee 6.0 PowerPack (HKLM-x32\...\{1A20BC22-8F21-4A2A-9F4A-E31FC0E5C7E3}) (Version: 6.0.2 - ACD Systems Ltd.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version: - )
Armageddon (HKLM-x32\...\{E163BB62-2840-4C55-9A8E-5C5B9E9FF86C}) (Version: - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Birth of the Federation (HKLM-x32\...\Birth of the Federation) (Version: - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty - United Offensive (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Command & Conquer Die ersten 10 Jahre (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528D}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Die ersten 10 Jahre-Patch 1.02 (HKLM-x32\...\{CBB0ABFB-4668-4172-952D-2CEF5C14F4D2}) (Version: - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of the Tentacle Remastered (HKLM-x32\...\Steam App 388210) (Version: - Double Fine Productions)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo II (HKLM-x32\...\Diablo II) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DocMgr (x32 Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hearts of Iron III (HKLM-x32\...\{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}) (Version: - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510g-m (HKLM\...\{E5083D57-D93F-404C-A91F-1C50D67C2BEB}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version: - )
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Controller-Treiber 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.2.3 (HKLM-x32\...\OpenTTD) (Version: 1.2.3 - OpenTTD)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 36.0.2130.32 (HKLM-x32\...\Opera 36.0.2130.32) (Version: 36.0.2130.32 - Opera Software)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version: - )
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.0.0 - Electronic Arts)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sid Meier's Colonization 1.0 (HKLM-x32\...\Sid Meier's Colonization) (Version: 1.0 - 2K Games)
Sierra-Dienstprogramme (HKLM-x32\...\Sierra-Dienstprogramme) (Version: - )
Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft)
simfy (HKLM-x32\...\Simfy) (Version: 1.6.2 - simfy GmbH)
simfy (x32 Version: 1.6.2 - simfy GmbH) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version: - )
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tropico 3 1.00 (HKLM-x32\...\Tropico3) (Version: 1.00 - Kalypso Media)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Vallen JPegger (HKLM-x32\...\{73182AC3-5CC3-4161-AE97-F23E09B13147}) (Version: V5.70 (Build: 14.0924) - Vallen Systeme GmbH)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.61 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0047D97F-82A4-4888-8E7C-47AC907D76B0} - System32\Tasks\{B6288156-B6A5-41E5-AB28-FE71E587B474} => pcalua.exe -a "C:\Program Files (x86)\Java\jre6\bin\javacpl.exe" -d C:\Windows\system32
Task: {05F7C29C-D76E-4A27-8336-807AF0310399} - System32\Tasks\Opera scheduled Autoupdate 1418232650 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-14] (Opera Software)
Task: {0DB7B184-595B-4856-B0F4-AADCAFC707DD} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {1648D46D-CAEE-4802-89F4-232D9AB28447} - System32\Tasks\{E5BA36D8-FBCB-492C-814C-C01FC0D68945} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {26A6AA09-96AA-4A14-9067-8E22ED566AD2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {290E186C-4866-47D5-A71E-A68A176CE6FB} - System32\Tasks\{997BBDD4-01CD-4A6C-BECD-B768246E0A0F} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly
Task: {2DB641E6-F5E1-4992-A829-46733C4B1C8B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {53240E2C-09C8-433F-B676-E4B8557303B5} - System32\Tasks\{BE3FED53-E047-4060-92A7-2C0351AD1EC3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-02-10] (Skype Technologies S.A.)
Task: {57D4DA5D-CA0C-47C1-B802-28086DC70B64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {5863F53F-89A6-4A1B-A458-5762650648AF} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {6B2309B9-7C6E-4831-8381-379EC9F9128B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {76990081-9D55-490B-947D-5D4D63657CAD} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {87DAAAA0-4DCF-4A99-91A7-907DEF7CFC66} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A458DE9E-A37C-440D-B98E-A0165829035F} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20] (Oracle Corporation)
Task: {A9FB9D69-F562-42C7-8F7A-8D0FB11C332D} - System32\Tasks\Samsung-Online-Aktualisierungsprogramm => C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe
Task: {B51F4F57-3D09-40B3-895D-B28B9D51D0E0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BB660F43-FC39-4CC1-93D2-0A8F5B14AA58} - System32\Tasks\{7C6732F4-33FA-48CE-8A11-814478F176AE} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {D0943722-068A-4952-B465-BAE44AEBDE27} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2011-10-26 10:59 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-11 17:50 - 2011-08-14 10:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2011-05-11 14:17 - 2011-04-06 18:20 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-11 14:19 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2011-05-11 14:19 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2011-05-11 14:19 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2016-01-11 11:36 - 2016-01-11 11:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2011-12-09 17:02 - 2014-04-22 21:26 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{C32984CB-584C-43E9-95A0-9095F6397D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0DBE4CE2-7290-4F45-8452-A1B228808D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{624A342D-57A1-45B9-84C4-AF749461B87C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{43FEF54A-ECCA-4C98-8826-20AC3B1007B6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5A39D4AB-2354-4DCE-B0C8-F0246ABC76BA}] => (Allow) LPort=2869
FirewallRules: [{BD3F6624-5C77-4856-A223-3D6F191085A4}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{A6BC6C2C-0BA3-4E30-9360-DF0B093BE7BC}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{4E75F0FD-5F7E-4C6E-ACDC-37EEDA2340A8}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{ADB97BF7-44AB-47B2-8F93-AE043CC8A570}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{05667FFF-D0F8-4D3F-9AB2-3D15ABC06E97}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8ECD16C6-91DF-4625-BD7E-46515E0AF576}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{3C2A3C26-78DF-443C-BD3B-9FB6274843CD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{5A5BCB59-87EB-4D28-8DFE-A3BFDD93A54B}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{6333C699-0768-4EE0-9045-B051C8B6E112}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{25EE640D-15A0-4281-83B8-31A6F824F684}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{378FE6A3-E8D7-4689-BDBF-86B0434102F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4FC8356D-354E-43A8-AD51-DD7BCFEE1673}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D294339F-1EB0-4AD9-8BE6-5E49A1A3C917}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6387AAD7-DBC1-43B3-8922-3906A2DA1EB7}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{49562064-7E28-45E6-B715-8F3435F14A26}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{2240193D-5BF2-40CE-9399-A0432E2C774D}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{DA5F9BAA-34D9-4785-A9CE-9844679CCB21}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D6DA1C3D-26A8-49C6-A846-847B5D701C48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{F735CC49-391F-4DD2-86BC-A5DFA52670B1}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{0CAD3A0B-B2FC-459B-A41A-68EE8A3D7B55}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{9293C9E0-A94E-48AD-A0D6-49FF83683938}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{FB76B658-56AF-402D-B9AF-65799624CB5A}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [UDP Query User{3DDA228D-02E6-4813-A0CF-F7F7F044485C}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{02190F4B-165E-410E-A6FB-391882415CC9}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{D329D921-EC96-4553-9B20-D09AD7FB93B7}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [TCP Query User{7473EFAC-A698-4843-BF56-E2D489DEF4FA}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0BE7A2CA-3A16-4515-824C-8BA75F4B051F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{4B80DF41-3BF6-4398-8703-E41B544538F4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9C4BF73C-0B71-4B16-AF30-D279073442A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{459B32AC-5267-4EF7-9673-75C7DA979980}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [{FA3EA983-53CA-47E8-98DF-82156F4B7824}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [TCP Query User{ECEFA33E-DE78-458D-A745-C1691FD30E9A}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [UDP Query User{A811B78A-FE9E-41F5-A3A9-20FBF08753DE}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{8FF5605F-EFA9-4DD4-97F8-B3F7394747E7}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{9FE4A8B3-7A1E-4669-A049-84E53A0F5A57}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [TCP Query User{4DDEA0E4-704D-4DA3-8F99-47D32FC4572B}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2AC2AC37-8C27-4493-85C3-D97052DFDA1C}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E25A8788-5049-49D8-8648-E4634CEF36B0}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{93DFD1DA-F47E-4C98-AB1C-C770F2C007A3}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FCC2A810-C55B-4DB8-AB31-C4A912FB7D47}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{87597222-8A96-49FA-A318-5AFD868823D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{EF063043-D8C9-4E3C-A477-33BF1EB43B9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{4063C165-21E5-408F-9D3F-9E253D3BE2E9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{229CF85B-1420-4640-9DE9-A1301671A017}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{065DF7BD-E2EE-4C38-86E1-D493D3B41BC6}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{FA78F6DF-1C8E-4F50-95E2-D9A7A8534C99}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{3A3EA13C-D24B-4C7D-B767-28B165DE7EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [TCP Query User{FE8E9E6A-9263-4139-8E8C-B6DC52B323ED}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [UDP Query User{AB20D579-041B-4C1A-B333-B0E12506A9DD}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [{5E5D2079-B4B4-47A2-BE26-FD544B6A9CFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{ECEF128C-CBFD-4E4A-9F0C-F76F65EA3780}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{D59AA56B-A8E8-4FEB-AFAA-683B4F4C9816}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{C472F769-E15B-462E-88EB-B7524A0BA2E7}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [TCP Query User{EEE03B2C-0FC5-48C4-B022-B48B560C8BC4}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{E2B83EE9-0164-4C82-B41B-FA3AF59F3922}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{E56DAA2B-7337-4C7C-92AD-E6200476BDF9}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{CE56DAB9-780F-4ED3-AB65-76CC22FACAEB}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{2C6CC2C5-4282-4596-BE37-77B73646253D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1B986CDA-1724-4268-81AB-1C3743BED4F0}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E36EA5F-F900-420E-AAE3-2C232DFCA9AA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{EF529C20-ECB5-4961-ABF9-B5A91CE5E5BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [TCP Query User{EF5FCF5A-6BC9-4B64-B74F-646F89B48006}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{19E6565B-96E4-4D32-81F6-121815B5C22D}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{801900C4-77CC-439F-9F72-57375117FC7C}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{0395FF3B-C528-49E7-9F00-8BEE871B4EEE}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{2AA628D4-2C71-4299-A2D8-857BA35FD8FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{E6C307E9-B837-43A2-B990-E46CEECFDBE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [TCP Query User{B51E0C45-CB19-41C9-BB3F-555AE8E2690C}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [UDP Query User{3B510D0D-E5F4-4AA0-A913-A339205A81FA}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [{CDE95D20-9C75-4FC9-8411-CF3696269E95}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{7DF73B6E-C44D-4436-AC69-B3E006975FC8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{DF42F708-9521-4453-B99E-0713668F166D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{8DC95206-76E9-4E46-BCB8-31633A366654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{7095C02D-4BBA-4C7C-928C-20494C1E517B}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{1D9F5187-6AAC-4AA3-850B-45AA5F141D10}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{54840F41-5AA8-4CFF-A2D3-FD74A38E70B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{420D4372-2BA1-43E3-ACDA-63E05E7FCD0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E992E954-196B-4FDD-8353-65CF0BD2309F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B8783539-B66C-4EE5-AC46-49D141F95337}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B7A49E58-DA80-4568-98D3-FD1062E932E9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{46C72477-6000-47D2-A1BD-188777EF572E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{563E450C-D1F7-4F4B-97F9-586CEDFD072A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{9B1E57DF-096B-4216-8D43-57D7DC2B767B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1A3C5741-7751-437F-8EF6-7C471E179E09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{53E0635B-9838-4A4B-8BD3-16EF5E5A8651}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FB9FEF18-A4A1-44A0-AAF8-2FA3CEF665C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{B1FED601-9F01-474A-BC16-BDCAE9F6D550}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{3ED7010A-DD24-438F-A7AA-C2FD31F44334}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A29251D-0926-4B6C-8CBE-88C07CBF1A82}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7FE49A7-ACE0-479A-9059-A2EB64595DC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{D4226C21-0DAE-41AA-B4A9-6E7CB54A4B87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{0E2E6FEE-D31D-410B-944D-C0E7E9C8660D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{927C6C1A-D142-4701-A831-D0E806A8E392}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{52CBA9EE-879D-48A8-B0CB-2C29A03A7F87}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{21D17140-1447-474F-B4A0-96BB217A93A8}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [TCP Query User{FB145B01-CDA4-4910-B871-C0C063BF0B53}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{DAA21334-E6B3-4A8D-81C4-62D6CDDAF88F}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{F19DC922-F6F9-4F3A-85A8-C1C79F47486C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{2B670CB9-C181-400D-A5FF-7F7FF36BC1D3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{DF47DB6E-8324-406D-9D0B-DDD250C98274}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{7AC44544-59CA-4A25-910F-5905CAECE913}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C35A1D5-CA88-44F5-BDF5-9E5F219530F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{ADFB721A-E8CC-4343-A17E-5D4161DEF896}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8D415CE1-1D3A-4F24-8A7D-20B148CB870C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{55A1F745-D8D3-4C5D-8A74-9CE9D9560E4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7D6942F5-48A6-4B0A-B5E5-C7AAA05BE4E2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B1678A39-59CF-4439-BD5E-C5B5220B66C8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7FC273BC-5F50-4CAE-9742-F4CFBF3CD423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{1FB5C5CB-8F9F-45AF-8B82-0DE7A11693E7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{1D5A1C6B-BEC4-44DB-A343-A93120D0AE62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E11D49C-5CB0-42D6-9AC0-9553CB1CD1EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{13DFE636-8B8B-475C-AA35-698EC0F65135}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{3F020619-865C-4AB6-A931-29F9055D70C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{932BBCFD-048D-4D3C-8EF2-2D538D012277}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F4A7349A-7005-4B21-A5F7-C2904F9F29FE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{8C36F0BE-C005-4FE1-A95F-769069489455}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{5786A6AC-A14B-42BA-9B68-4F31261CB8E7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{B75263D3-D958-4290-9BC9-6902DA0A7C23}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D4CCB33-0CA0-40F5-9CA3-DAEA3C779153}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{33F2371D-5E62-4B9A-85CD-37596933A86E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{B111818D-995C-42FF-9709-97C6BBD948F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E4ADB540-2066-4DDF-A049-42C4F2D853CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{5A4C8C9C-B3C7-4533-BA7D-BED64856CAC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{BCD10E1B-3BE4-48AF-8230-6A5B42885516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{081D7107-A1F8-4E59-9E43-FB369C3FFC03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{3E49CC7E-8AEB-4FB2-89B6-FC0DF2AB98C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{C076010B-DF57-4B00-835E-FE6AA8E87687}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{D10DD33A-0506-439A-A005-72B386C8D113}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{CD3979EE-62E6-4669-A9A1-1AAE77DCA0FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{9FAFAE95-748A-46C3-8465-E264A385A31A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{BE1D7ADE-02C9-45A2-90D3-51444B25BFFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{EE1FA5A9-28CF-45D0-BC2E-ED1AC1DEC978}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{EB6EC940-C784-4571-BA7E-6931ADA6E411}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{44D3FCFD-0F3F-4519-B2A8-F8E87195CD61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{E01C6642-ECFC-465D-8036-FB77C5B07F19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{C58C50B8-0DE0-4ECA-ABEC-800012D854E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{7E959230-455A-4823-A2E9-0C912EA4D054}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{95FD7D24-F0E4-4558-B9B5-59E8A90B096E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{06D05AB2-B1EB-48B0-A87B-C6C796D290B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{A93E4C38-F0DC-468A-AF34-9DBBD5077872}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{CE64A636-68F1-4A48-9D24-B34967AB9C28}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{F39B6073-94E3-4900-A519-35C72CB51054}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B0C51CA3-65FA-41E9-8579-3EB3071CD818}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6A7627DA-560D-4AEF-9B04-A91F6F12F752}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [UDP Query User{AE6E3FC0-B7D5-424E-B914-2702B6F49F5B}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [{1498C0BE-43E9-47B8-8BED-0597CD23DDAC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{225870E3-3C82-4B0B-A909-FC814BB82C04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CDC896C2-E025-4530-A4F0-070288C097D2}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{D8413924-4CE8-4412-924A-AE825FDD54AA}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{62534F73-CB55-456C-A469-6CD2212DCC01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{418C28DA-9BF9-4D7B-89DD-0EB67BB8E8D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C4B96FD-A409-493E-8519-67CFA3408695}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{BA1B9ECE-84E0-47B4-B11E-7612B3F47623}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [{1F27C5B3-48F4-4461-9B11-4E56AD3C2F72}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{3CF26DF8-9B0B-44B1-9EE7-1E191E08FB32}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
==================== Wiederherstellungspunkte =========================
24-03-2016 23:26:06 Windows Update
27-03-2016 15:37:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
27-03-2016 15:38:09 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
27-03-2016 18:17:23 Windows Defender Checkpoint
29-03-2016 15:56:57 Windows Update
29-03-2016 20:46:45 DirectX wurde installiert
30-03-2016 18:51:30 Prüfpunkt von HitmanPro
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/30/2016 06:37:21 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/30/2016 04:29:24 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/30/2016 04:29:21 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/30/2016 04:28:41 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/30/2016 04:07:00 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (03/29/2016 03:52:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x898
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (03/27/2016 07:08:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 07:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x83c
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3
Error: (03/27/2016 07:00:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Error: (03/27/2016 06:43:41 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
Systemfehler:
=============
Error: (03/30/2016 07:03:35 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:02:48 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:02:33 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:02:01 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:01:59 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:01:54 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:01:54 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:01:53 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:01:52 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
Error: (03/30/2016 07:01:52 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Prozentuale Nutzung des RAM: 30%
Installierter physikalischer RAM: 8183.05 MB
Verfügbarer physikalischer RAM: 5681.15 MB
Summe virtueller Speicher: 16364.32 MB
Verfügbarer virtueller Speicher: 13662.9 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:200.01 GB) (Free:101.51 GB) NTFS
Drive d: () (Fixed) (Total:731.41 GB) (Free:649.11 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9FCDF98)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.4 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
30.03.2016, 18:08
| #15 |
| | MPC CleanerCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Patrick (Administrator) auf PATRICK-PC (30-03-2016 19:02:23)
Gestartet von C:\Users\Patrick\Desktop
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ACD Systems, Ltd.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3031664 2011-04-06] (VIA)
HKLM-x32\...\Run: [Device Detector] => C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe [217088 2003-11-27] (ACD Systems, Ltd.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-27]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B9C1690C-CDE6-4E02-B8DF-1124B8E084EB}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-06-26] [ist nicht signiert]
FF HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-24] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-08-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-05-23] (Padus, Inc.) [Datei ist nicht signiert]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [65504 2004-03-09] (Protection Technology) [Datei ist nicht signiert]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [Datei ist nicht signiert]
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2015-11-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [Datei ist nicht signiert]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Datei ist nicht signiert]
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-30 19:02 - 2016-03-30 19:02 - 00016647 _____ C:\Users\Patrick\Desktop\FRST.txt
2016-03-30 18:45 - 2016-03-30 18:52 - 00000000 ____D C:\ProgramData\HitmanPro
2016-03-30 18:44 - 2016-03-30 18:44 - 11441744 _____ (SurfRight B.V.) C:\Users\Patrick\Desktop\HitmanPro_x64.exe
2016-03-30 16:28 - 2016-03-30 16:28 - 02870984 _____ (ESET) C:\Users\Patrick\Desktop\esetsmartinstaller_deu.exe
2016-03-30 16:06 - 2016-03-30 16:20 - 00018198 _____ C:\Users\Patrick\Desktop\Fixlog.txt
2016-03-29 16:12 - 2016-03-29 16:12 - 00165376 _____ C:\Users\Patrick\Desktop\SystemLook_x64.exe
2016-03-29 15:56 - 2016-03-29 15:56 - 03102208 _____ C:\Users\Patrick\Desktop\adwcleaner_5.107.exe
2016-03-29 15:54 - 2016-03-29 15:54 - 03102208 _____ C:\Users\Patrick\Downloads\adwcleaner_5.107.exe
2016-03-28 23:11 - 2016-03-28 08:57 - 02374144 _____ (Farbar) C:\Users\Patrick\Desktop\FRST64.exe
2016-03-28 09:16 - 2016-03-28 09:19 - 00196664 _____ C:\TDSSKiller.3.1.0.9_28.03.2016_09.16.48_log.txt
2016-03-28 08:59 - 2016-03-30 19:02 - 00000000 ____D C:\FRST
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (2).exe
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (1).exe
2016-03-27 20:28 - 2016-03-27 20:29 - 00188150 _____ C:\Windows\ntbtlog.txt
2016-03-27 19:28 - 2016-03-29 15:57 - 00000000 ____D C:\AdwCleaner
2016-03-27 19:28 - 2016-03-27 19:29 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
2016-03-27 18:40 - 2016-03-27 18:40 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\MCorp
2016-03-27 18:14 - 2016-03-27 18:15 - 00000000 ____D C:\Users\Patrick\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-27 18:14 - 2016-03-27 18:14 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\Desktop\Vallen JPegger.lnk
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vallen JPegger.lnk
2016-03-09 18:40 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 18:40 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 18:40 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 18:40 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-08 21:37 - 2016-02-04 19:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-08 21:37 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-08 21:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-08 21:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-08 21:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-08 21:36 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-08 21:36 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-08 21:36 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-08 21:36 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-08 21:36 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-08 21:36 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-08 21:36 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-08 21:36 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-08 21:36 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-08 21:36 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-08 21:36 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-08 21:36 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-08 21:36 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-08 21:36 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-08 21:36 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-08 21:36 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-08 21:36 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-08 21:36 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-08 21:36 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-08 21:36 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-08 21:36 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-08 21:36 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-08 21:36 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-08 21:36 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-08 21:36 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-08 21:36 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-08 21:36 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-08 21:36 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-08 21:36 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 21:36 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-08 21:35 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-08 21:35 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-08 21:35 - 2016-02-11 19:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-08 21:35 - 2016-02-11 19:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-08 21:35 - 2016-02-11 19:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-08 21:35 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-08 21:35 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-08 21:34 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-08 21:34 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-08 21:34 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-08 21:34 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-08 21:34 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-08 21:34 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-30 18:31 - 2011-05-11 15:19 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Skype
2016-03-30 18:29 - 2012-04-08 17:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-30 16:31 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-30 16:31 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-30 16:27 - 2009-07-14 19:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2016-03-30 16:27 - 2009-07-14 19:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2016-03-30 16:27 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-30 16:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-03-30 16:23 - 2011-05-11 14:33 - 00064800 _____ C:\Users\Patrick\AppData\Local\GDIPFONTCACHEV1.DAT
2016-03-30 16:22 - 2011-05-11 14:23 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-30 16:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-30 16:22 - 2009-07-14 06:45 - 00298264 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-28 08:58 - 2015-10-03 21:12 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-27 22:28 - 2015-11-02 22:48 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-27 22:28 - 2014-12-10 19:30 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 36.lnk
2016-03-27 22:28 - 2014-06-26 19:19 - 00001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-27 22:28 - 2011-09-04 14:35 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-03-27 22:28 - 2011-05-11 14:25 - 00001833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-27 22:28 - 2011-05-11 14:17 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-27 22:28 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-27 22:27 - 2016-02-06 16:45 - 00000897 _____ C:\Users\Public\Desktop\Command & Conquer Die ersten 10 Jahre.lnk
2016-03-27 22:27 - 2015-11-02 22:48 - 00002041 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-27 22:27 - 2015-10-03 21:12 - 00001100 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-27 22:27 - 2015-09-25 19:12 - 00000907 _____ C:\Users\Patrick\Desktop\Star Wars Jedi Knight II Jedi Outcast spielen.lnk
2016-03-27 22:27 - 2015-09-25 16:34 - 00000833 _____ C:\Users\Public\Desktop\DOSBox 0.74.lnk
2016-03-27 22:27 - 2015-09-02 16:21 - 00001132 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-27 22:27 - 2014-11-12 21:54 - 00001851 _____ C:\Users\Public\Desktop\ooVoo.lnk
2016-03-27 22:27 - 2014-10-11 22:42 - 00002013 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-27 22:27 - 2014-09-27 20:26 - 00001386 _____ C:\Users\Patrick\Desktop\CopyTrans Control Center.lnk
2016-03-27 22:27 - 2014-08-31 17:33 - 00001135 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2016-03-27 22:27 - 2014-07-04 14:58 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001345 _____ C:\Users\Public\Desktop\HP Solution Center.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Mehrspieler.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Einzelspieler.lnk
2016-03-27 22:27 - 2013-11-12 20:33 - 00001156 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Mehrspieler.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Einzelspieler.lnk
2016-03-27 22:27 - 2012-12-23 17:06 - 00000670 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-03-27 22:27 - 2012-07-17 21:51 - 00000706 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-27 22:27 - 2012-06-24 19:09 - 00001859 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-27 22:27 - 2012-04-20 16:32 - 00000814 _____ C:\Users\Patrick\Desktop\Diablo II - Lord of Destruction.lnk
2016-03-27 22:27 - 2012-04-20 16:23 - 00000814 _____ C:\Users\Public\Desktop\Diablo II.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001777 _____ C:\Users\Patrick\Desktop\Spotify.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001763 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-03-27 22:27 - 2011-11-04 20:03 - 00001822 _____ C:\Users\Public\Desktop\ICQ7.6.lnk
2016-03-27 22:27 - 2011-10-03 10:02 - 00001577 _____ C:\Users\Patrick\Desktop\DivX Movies.lnk
2016-03-27 22:27 - 2011-09-15 16:31 - 00000860 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-27 22:27 - 2011-08-18 18:45 - 00000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Sierra-Dienstprogramme.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Mehrspieler.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Einzelspieler.lnk
2016-03-27 22:27 - 2011-06-23 11:12 - 00001056 _____ C:\Users\Public\Desktop\Hearts of Iron III.lnk
2016-03-27 22:27 - 2011-06-17 22:02 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-03-27 22:27 - 2011-06-10 19:09 - 00000622 _____ C:\Users\Public\Desktop\simfy.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002881 _____ C:\Users\Public\Desktop\ACD FotoCanvas 3.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002845 _____ C:\Users\Public\Desktop\ACDSee 6.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002721 _____ C:\Users\Public\Desktop\ACD FotoSlate 3.0.lnk
2016-03-27 22:27 - 2011-05-21 11:49 - 00000784 _____ C:\Users\Patrick\Desktop\PATRIZIER II Gold starten.lnk
2016-03-27 22:27 - 2011-05-14 12:15 - 00000767 _____ C:\Users\Public\Desktop\Arsenal of Democracy.lnk
2016-03-27 22:27 - 2011-05-11 16:56 - 00001000 _____ C:\Users\Public\Desktop\Armageddon.lnk
2016-03-27 22:27 - 2011-05-11 16:53 - 00000983 _____ C:\Users\Patrick\Desktop\Winamp.lnk
2016-03-27 22:27 - 2011-05-11 16:48 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-27 22:27 - 2011-05-11 16:33 - 00001446 _____ C:\Users\Patrick\Desktop\Windows Live Mail.lnk
2016-03-27 22:27 - 2011-05-11 14:43 - 00000355 _____ C:\Users\Patrick\Desktop\Computer - Verknüpfung.lnk
2016-03-27 22:27 - 2011-05-11 14:25 - 00001827 _____ C:\Users\Public\Desktop\Opera.lnk
2016-03-27 22:27 - 2011-05-11 14:18 - 00001444 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
2016-03-27 22:27 - 2011-05-11 14:17 - 00001200 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-03-27 22:27 - 2011-05-11 14:12 - 00001425 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-03-27 22:27 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-27 22:27 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-27 22:26 - 2011-10-09 15:27 - 00000000 ____D C:\Windows\Sun
2016-03-27 22:23 - 2011-06-02 10:11 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:23 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-03-27 20:31 - 2016-02-16 14:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-27 20:03 - 2013-08-24 19:52 - 00000000 ____D C:\ProgramData\BitRaider
2016-03-27 19:31 - 2014-06-26 19:21 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Yahoo!
2016-03-27 19:08 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-27 18:19 - 2011-08-18 18:43 - 00000302 _____ C:\Windows\SIERRA.INI
2016-03-27 15:37 - 2014-08-08 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-26 15:05 - 2014-11-01 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 15:05 - 2013-10-16 22:32 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 15:05 - 2012-06-13 08:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-26 15:04 - 2015-08-26 16:55 - 00000000 ____D C:\Users\Patrick\.oracle_jre_usage
2016-03-26 15:04 - 2014-11-01 14:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-24 21:29 - 2012-04-08 17:12 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-24 21:29 - 2012-04-08 17:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-24 21:29 - 2011-06-13 21:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-24 19:17 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-24 18:53 - 2011-10-06 14:59 - 00000000 ____D C:\Windows\Panther
2016-03-20 16:16 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Local\Battle.net
2016-03-20 16:16 - 2013-11-12 20:33 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-03-20 16:08 - 2014-08-22 17:34 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-03-19 20:40 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Battle.net
2016-03-19 20:40 - 2013-11-12 19:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-17 16:35 - 2015-04-22 16:14 - 00003872 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418232650
2016-03-17 16:35 - 2011-05-11 14:25 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-10 14:09 - 2015-10-03 21:12 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2015-10-03 21:12 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2011-06-01 20:57 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-09 23:38 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:20 - 2013-11-26 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-09 23:19 - 2013-11-26 09:51 - 00154816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00133168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00069888 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-03-09 18:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-03-08 22:31 - 2013-07-20 13:58 - 00000000 ____D C:\Windows\system32\MRT
2016-03-08 22:28 - 2011-05-11 15:01 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-06-12 12:15 - 2012-06-12 13:41 - 0000455 _____ () C:\Users\Patrick\AppData\Roaming\SamsungLiveUpdateConfig.ini
2011-11-01 10:23 - 2014-07-17 21:48 - 0007168 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-18 21:51 - 2012-06-18 21:51 - 0000017 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2011-05-11 15:20 - 2011-05-11 15:20 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2014-06-26 19:13 - 2014-06-26 19:45 - 0001331 _____ () C:\ProgramData\hpzinstall.log
2013-01-11 23:51 - 2013-01-11 23:51 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-29 17:20
==================== Ende von FRST.txt ============================
|
|
| Themen zu MPC Cleaner |
| avira, defender, desktop, dllhost.exe, einstellungen, explorer, firefox, google, helper, home, internet, internet explorer, löschen, modul, mozilla, mpc cleaner, mpc-cleaner, programm, programme, prozesse, server, services.exe, software, svchost.exe, temp, windows, winlogon.exe, yahoo |
und 
und speichere die Logdatei auf Deinem Desktop.
Linear-Darstellung
