Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Probleme mit Vieren,Betriebssystem 64 bit Win 10

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Plagegeister aller Art und deren Bekämpfung: Probleme mit Vieren,Betriebssystem 64 bit Win 10

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 1 von 2 1 2
Alt 13.04.2016, 15:56   #1
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


moin moin erstmall

ich hatte letztens ein update gezogen für meine Grafikkarte und danach hatte mein Virenprogramm alarmgeschlagen nachdem ich den scanner habe laufen lassen fand er 12 viren welcher er gelöscht hat. Leider habe ich keine log files mehr vom scanner ich möchte gern wissen , ob mein rechner nun sauber ist.

schonmal danke im vorraus

Alt 14.04.2016, 13:36   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 17.04.2016, 10:56   #3
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-04-2016
durchgeführt von Wussel (Administrator) auf WUSSEL-PC (17-04-2016 11:52:56)
Gestartet von C:\Users\Wussel\Desktop
Geladene Profile: Wussel (Verfügbare Profile: Wussel & DefaultAppPool)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) D:\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Valve Corporation) D:\Steam\Steam.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIILE.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Advanced Micro Devices Inc.) D:\ATI.ACE\Core-Static\MOM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Advanced Micro Devices Inc.) D:\ATI.ACE\Core-Static\CCC.exe
(TeamSpeak Systems GmbH) D:\TeamSpeak 3\ts3client_win32.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8463064 2015-03-12] (Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4867784 2015-12-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111312 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-05] (Raptr, Inc)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1014736 2014-07-22] (MSI)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => D:\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-09-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-03-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3930384 2016-04-06] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\Run: [Steam] => D:\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE [283232 2014-12-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-10] (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{973f5f89-b60e-4f8f-b6e9-0bd7128542d9}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{d0e122a2-a553-4191-b8c7-d05e69fbdf98}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggQJlgJVgAXRBhBcQ0OTA1AGQQOeQAABBQQQAEaJApZVV1EEAYFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlE8WGJKLl1XFg==
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQpeAAhGGFNGbVsJVQ9cFQQbcRQBWAEUDFRCdABcUlhFRQAScx9aFQQTSEcFME0FCFwEURNNfWpdAEsSSXhaF1BWBVYG&q={searchTerms}
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQpeAAhGGFNGbVsJVQ9cFQQbcRQBWAEUDFRCdABcUlhFRQAScx9aFQQTSEcFME0FCFwEURNNfWpdAEsSSXhaF1BWBVYG&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1839217256-4170891939-739727537-1002 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1839217256-4170891939-739727537-1002 -> {053CC6CF-6C4B-48B0-A7B7-FEDC8124561D} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1839217256-4170891939-739727537-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQpeAAhGGFNGbVsJVQ9cFQQbcRQBWAEUDFRCdABcUlhFRQAScx9aFQQTSEcFME0FCFwEURNNfWpdAEsSSXhaF1BWBVYG&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1839217256-4170891939-739727537-1002 -> {42FC0E73-7CA4-4B02-9E17-DED33E2E410B} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-1839217256-4170891939-739727537-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={8FB3AB42-4DA5-4FFD-BD08-BDC737FEC40F}&mid=6dcf1ed5310347cc9e650982cc7a0e74-0913cf9e9f4340e8ee184286b131fad0433832d5&lang=en&ds=AVG&coid=avgtbavg&cmpid=0216piz&pr=fr&d=2016-04-10 12:03:27&v=4.2.8.608&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1839217256-4170891939-739727537-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-10] (AVAST Software)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.2.8.608\AVG Web TuneUp.dll [2016-04-10] (AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-10-10] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-18] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-10] (AVAST Software)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.2.8.608\AVG Web TuneUp.dll => Keine Datei
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-10-10] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-18] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-10-10] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-10-10] (Google Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Wussel\AppData\Roaming\Mozilla\Firefox\Profiles\tw5u4atq.default
FF NewTab: about:newtab
FF DefaultSearchEngine: Google (avast)
FF DefaultSearchUrl: hxxps://www.google.com/search?trackid=sp-006
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxps://www.google.com/?trackid=sp-006
FF Keyword.URL: hxxps://www.google.com/search?trackid=sp-006
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-15] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-15] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.8\\npsitesafety.dll [Keine Datei]
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-04-30] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Wussel\AppData\Roaming\Mozilla\Firefox\Profiles\tw5u4atq.default\searchplugins\avg-secure-search.xml [2016-04-10]
FF SearchPlugin: C:\Users\Wussel\AppData\Roaming\Mozilla\Firefox\Profiles\tw5u4atq.default\searchplugins\default.xml [2016-03-15]
FF SearchPlugin: C:\Users\Wussel\AppData\Roaming\Mozilla\Firefox\Profiles\tw5u4atq.default\searchplugins\google-avast.xml [2016-04-11]
FF Extension: New Tab by Yahoo - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi [2015-11-24] [ist nicht signiert]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-11]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-04-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-14]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (Search My Window) - C:\Users\Wussel\AppData\Roaming\Opera Software\Opera Stable\Extensions\fkailkdcbjnihijemocekepdjaecnepi [2016-02-08]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AMD FUEL Service; D:\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-09-25] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-10] (AVAST Software)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-09-10] (Avast Software)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [638456 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfws.exe [1615192 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3993088 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1074448 2016-03-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [593880 2016-04-06] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1863688 2016-04-07] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-01-14] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6887696 2015-11-30] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; D:\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-10] (AVAST Software)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-09-18] (Advanced Micro Devices)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162592 2016-02-16] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [97208 2015-08-29] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [306976 2016-03-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [246560 2016-03-07] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71456 2016-03-08] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.)
S3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
S3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
S3 LGSUsbFilt; C:\Windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech Inc.)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-09-10] (AVAST Software)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek                                            )
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-09-10] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
U3 idsvc; kein ImagePath
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-04-17 11:52 - 2016-04-17 11:53 - 00022979 _____ C:\Users\Wussel\Desktop\FRST.txt
2016-04-17 11:52 - 2016-04-17 11:52 - 02375168 _____ (Farbar) C:\Users\Wussel\Desktop\FRST64.exe
2016-04-17 11:52 - 2016-04-17 11:52 - 00000000 ____D C:\FRST
2016-04-13 20:55 - 2016-04-13 20:55 - 00002904 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2016-04-13 17:17 - 2016-04-02 05:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-13 17:17 - 2016-03-29 12:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 17:17 - 2016-03-29 12:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 17:17 - 2016-03-29 12:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-13 17:17 - 2016-03-29 11:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-13 17:17 - 2016-03-29 10:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-13 17:17 - 2016-03-29 10:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-13 17:17 - 2016-03-29 10:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-13 17:17 - 2016-03-29 09:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-13 17:17 - 2016-03-29 09:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-13 17:17 - 2016-03-29 09:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-13 17:17 - 2016-03-29 09:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-13 17:17 - 2016-03-29 08:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-13 17:17 - 2016-03-29 08:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-13 17:17 - 2016-03-29 08:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-13 17:17 - 2016-03-29 08:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-13 17:17 - 2016-03-29 07:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-13 17:17 - 2016-03-29 07:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-13 17:17 - 2016-03-29 07:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-13 17:17 - 2016-03-29 07:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-13 17:17 - 2016-03-29 07:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-13 17:17 - 2016-03-29 07:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-13 17:17 - 2016-03-29 07:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-13 17:17 - 2016-03-29 07:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-13 17:17 - 2016-03-29 07:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-13 17:16 - 2016-04-02 06:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-13 17:16 - 2016-04-02 06:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-13 17:16 - 2016-04-02 06:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 17:16 - 2016-04-02 05:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-13 17:16 - 2016-04-02 05:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-13 17:16 - 2016-04-02 05:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-13 17:16 - 2016-04-02 05:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-13 17:16 - 2016-04-02 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-13 17:16 - 2016-04-02 05:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-13 17:16 - 2016-04-02 05:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 17:16 - 2016-04-02 05:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-13 17:16 - 2016-04-02 05:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 17:16 - 2016-04-02 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-13 17:16 - 2016-03-29 12:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-13 17:16 - 2016-03-29 12:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-13 17:16 - 2016-03-29 12:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-13 17:16 - 2016-03-29 12:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-13 17:16 - 2016-03-29 12:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-13 17:16 - 2016-03-29 12:11 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-13 17:16 - 2016-03-29 12:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-13 17:16 - 2016-03-29 12:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-13 17:16 - 2016-03-29 12:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-13 17:16 - 2016-03-29 11:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-13 17:16 - 2016-03-29 11:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-13 17:16 - 2016-03-29 11:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-13 17:16 - 2016-03-29 11:28 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-13 17:16 - 2016-03-29 11:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-13 17:16 - 2016-03-29 11:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-13 17:16 - 2016-03-29 11:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-13 17:16 - 2016-03-29 11:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-13 17:16 - 2016-03-29 11:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-13 17:16 - 2016-03-29 11:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-13 17:16 - 2016-03-29 10:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-13 17:16 - 2016-03-29 10:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-13 17:16 - 2016-03-29 10:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-13 17:16 - 2016-03-29 10:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-13 17:16 - 2016-03-29 10:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-13 17:16 - 2016-03-29 10:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-13 17:16 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-13 17:16 - 2016-03-29 10:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-13 17:16 - 2016-03-29 09:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-13 17:16 - 2016-03-29 09:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-13 17:16 - 2016-03-29 09:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-13 17:16 - 2016-03-29 09:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-13 17:16 - 2016-03-29 09:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-13 17:16 - 2016-03-29 09:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-13 17:16 - 2016-03-29 09:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-13 17:16 - 2016-03-29 09:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-13 17:16 - 2016-03-29 09:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-13 17:16 - 2016-03-29 09:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-13 17:16 - 2016-03-29 09:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-13 17:16 - 2016-03-29 09:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-13 17:16 - 2016-03-29 09:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-13 17:16 - 2016-03-29 09:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-13 17:16 - 2016-03-29 09:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-13 17:16 - 2016-03-29 09:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-13 17:16 - 2016-03-29 09:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-13 17:16 - 2016-03-29 09:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-13 17:16 - 2016-03-29 09:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-13 17:16 - 2016-03-29 09:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-13 17:16 - 2016-03-29 09:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-13 17:16 - 2016-03-29 09:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-13 17:16 - 2016-03-29 09:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-13 17:16 - 2016-03-29 09:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-13 17:16 - 2016-03-29 09:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-13 17:16 - 2016-03-29 09:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-13 17:16 - 2016-03-29 09:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-13 17:16 - 2016-03-29 09:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-13 17:16 - 2016-03-29 09:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-13 17:16 - 2016-03-29 09:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-13 17:16 - 2016-03-29 09:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-13 17:16 - 2016-03-29 09:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-13 17:16 - 2016-03-29 09:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-13 17:16 - 2016-03-29 09:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-13 17:16 - 2016-03-29 09:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-13 17:16 - 2016-03-29 09:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-13 17:16 - 2016-03-29 09:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-13 17:16 - 2016-03-29 09:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-13 17:16 - 2016-03-29 09:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-13 17:16 - 2016-03-29 09:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-13 17:16 - 2016-03-29 09:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-13 17:16 - 2016-03-29 09:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-13 17:16 - 2016-03-29 09:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-13 17:16 - 2016-03-29 09:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-13 17:16 - 2016-03-29 09:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-13 17:16 - 2016-03-29 09:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-13 17:16 - 2016-03-29 08:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-13 17:16 - 2016-03-29 08:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-13 17:16 - 2016-03-29 08:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-13 17:16 - 2016-03-29 08:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-13 17:16 - 2016-03-29 08:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-13 17:16 - 2016-03-29 08:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-13 17:16 - 2016-03-29 08:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-13 17:16 - 2016-03-29 08:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-13 17:16 - 2016-03-29 08:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-13 17:16 - 2016-03-29 08:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-13 17:16 - 2016-03-29 08:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-13 17:16 - 2016-03-29 08:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-13 17:16 - 2016-03-29 08:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-13 17:16 - 2016-03-29 08:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-13 17:16 - 2016-03-29 08:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-13 17:16 - 2016-03-29 08:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-13 17:16 - 2016-03-29 08:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-13 17:16 - 2016-03-29 08:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-13 17:16 - 2016-03-29 08:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-13 17:16 - 2016-03-29 08:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-13 17:16 - 2016-03-29 08:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-13 17:16 - 2016-03-29 08:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-13 17:16 - 2016-03-29 08:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-13 17:16 - 2016-03-29 08:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-13 17:16 - 2016-03-29 08:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-13 17:16 - 2016-03-29 08:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-13 17:16 - 2016-03-29 08:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-13 17:16 - 2016-03-29 08:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-13 17:16 - 2016-03-29 08:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-13 17:16 - 2016-03-29 08:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-13 17:16 - 2016-03-29 08:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-13 17:16 - 2016-03-29 08:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-13 17:16 - 2016-03-29 08:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-13 17:16 - 2016-03-29 08:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-13 17:16 - 2016-03-29 08:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-13 17:16 - 2016-03-29 08:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-13 17:16 - 2016-03-29 08:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-13 17:16 - 2016-03-29 08:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-13 17:16 - 2016-03-29 08:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-13 17:16 - 2016-03-29 08:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-13 17:16 - 2016-03-29 08:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-13 17:16 - 2016-03-29 08:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-13 17:16 - 2016-03-29 08:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-13 17:16 - 2016-03-29 08:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-13 17:16 - 2016-03-29 08:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-13 17:16 - 2016-03-29 08:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-13 17:16 - 2016-03-29 08:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-13 17:16 - 2016-03-29 08:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-13 17:16 - 2016-03-29 07:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-13 17:16 - 2016-03-29 07:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-13 17:16 - 2016-03-29 07:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-13 17:16 - 2016-03-29 07:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-13 17:16 - 2016-03-29 07:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-13 17:16 - 2016-03-29 07:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-13 17:16 - 2016-03-29 07:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-13 17:16 - 2016-03-29 07:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-13 17:16 - 2016-03-29 07:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-13 17:16 - 2016-03-29 07:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-13 17:16 - 2016-03-29 07:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-13 17:16 - 2016-03-29 07:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-13 17:15 - 2016-04-02 06:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-13 17:15 - 2016-04-02 05:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-13 17:15 - 2016-04-02 05:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-13 17:15 - 2016-04-02 05:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-13 17:15 - 2016-04-02 05:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-13 17:15 - 2016-04-02 05:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-13 17:15 - 2016-04-02 05:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-13 17:15 - 2016-04-02 05:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-13 17:15 - 2016-04-02 05:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-13 17:15 - 2016-03-29 12:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-13 17:15 - 2016-03-29 11:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-13 17:15 - 2016-03-29 11:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-13 17:15 - 2016-03-29 11:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-13 17:15 - 2016-03-29 11:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-13 17:15 - 2016-03-29 11:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-13 17:15 - 2016-03-29 11:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-13 17:15 - 2016-03-29 11:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-13 17:15 - 2016-03-29 10:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-13 17:15 - 2016-03-29 10:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-13 17:15 - 2016-03-29 10:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-13 17:15 - 2016-03-29 10:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-13 17:15 - 2016-03-29 10:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-13 17:15 - 2016-03-29 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-13 17:15 - 2016-03-29 10:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-13 17:15 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-13 17:15 - 2016-03-29 10:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-13 17:15 - 2016-03-29 10:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-13 17:15 - 2016-03-29 10:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-13 17:15 - 2016-03-29 10:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-13 17:15 - 2016-03-29 10:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-13 17:15 - 2016-03-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-13 17:15 - 2016-03-29 10:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-13 17:15 - 2016-03-29 09:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-13 17:15 - 2016-03-29 09:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-13 17:15 - 2016-03-29 09:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-13 17:15 - 2016-03-29 09:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-13 17:15 - 2016-03-29 09:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-13 17:15 - 2016-03-29 09:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-13 17:15 - 2016-03-29 09:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-13 17:15 - 2016-03-29 09:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-13 17:15 - 2016-03-29 09:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-13 17:15 - 2016-03-29 09:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-13 17:15 - 2016-03-29 09:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-13 17:15 - 2016-03-29 09:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-13 17:15 - 2016-03-29 09:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-13 17:15 - 2016-03-29 09:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-13 17:15 - 2016-03-29 09:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-13 17:15 - 2016-03-29 09:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-13 17:15 - 2016-03-29 09:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-13 17:15 - 2016-03-29 09:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-13 17:15 - 2016-03-29 09:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-13 17:15 - 2016-03-29 09:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-13 17:15 - 2016-03-29 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-13 17:15 - 2016-03-29 09:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-13 17:15 - 2016-03-29 09:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-13 17:15 - 2016-03-29 09:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-13 17:15 - 2016-03-29 09:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-13 17:15 - 2016-03-29 09:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-13 17:15 - 2016-03-29 09:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-13 17:15 - 2016-03-29 09:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-13 17:15 - 2016-03-29 09:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-13 17:15 - 2016-03-29 09:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-13 17:15 - 2016-03-29 09:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 17:15 - 2016-03-29 09:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-13 17:15 - 2016-03-29 09:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-13 17:15 - 2016-03-29 09:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-13 17:15 - 2016-03-29 09:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-13 17:15 - 2016-03-29 09:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-13 17:15 - 2016-03-29 09:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-13 17:15 - 2016-03-29 09:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-13 17:15 - 2016-03-29 09:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-13 17:15 - 2016-03-29 09:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-13 17:15 - 2016-03-29 09:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-13 17:15 - 2016-03-29 09:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-13 17:15 - 2016-03-29 09:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-13 17:15 - 2016-03-29 09:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-13 17:15 - 2016-03-29 09:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-13 17:15 - 2016-03-29 09:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-13 17:15 - 2016-03-29 09:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-13 17:15 - 2016-03-29 09:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-13 17:15 - 2016-03-29 09:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-13 17:15 - 2016-03-29 09:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-13 17:15 - 2016-03-29 09:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-04-13 17:15 - 2016-03-29 09:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-13 17:15 - 2016-03-29 08:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-13 17:15 - 2016-03-29 08:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-13 17:15 - 2016-03-29 08:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-13 17:15 - 2016-03-29 08:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-13 17:15 - 2016-03-29 08:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-13 17:15 - 2016-03-29 08:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-13 17:15 - 2016-03-29 08:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 17:15 - 2016-03-29 08:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-13 17:15 - 2016-03-29 08:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-13 17:15 - 2016-03-29 08:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-13 17:15 - 2016-03-29 08:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-13 17:15 - 2016-03-29 08:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-13 17:15 - 2016-03-29 08:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-13 17:15 - 2016-03-29 08:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-13 17:15 - 2016-03-29 08:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-13 17:15 - 2016-03-29 08:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-13 17:15 - 2016-03-29 08:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-13 17:15 - 2016-03-29 08:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-04-13 17:15 - 2016-03-29 08:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-13 17:15 - 2016-03-29 08:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-13 17:15 - 2016-03-29 08:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-13 17:15 - 2016-03-29 08:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-13 17:15 - 2016-03-29 08:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 17:15 - 2016-03-29 08:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-13 17:15 - 2016-03-29 07:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-13 17:15 - 2016-03-29 07:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-13 17:15 - 2016-03-29 07:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-13 17:15 - 2016-03-29 07:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 17:15 - 2016-03-29 07:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-13 17:15 - 2016-03-29 07:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-12 20:20 - 2016-04-12 20:20 - 00153894 _____ C:\Users\Wussel\Desktop\SERP regelwerk.rar
2016-04-12 20:18 - 2016-04-12 20:53 - 00000467 _____ C:\Users\Wussel\Desktop\motor technik mit elli.txt
2016-04-11 14:40 - 2016-04-11 14:40 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2016-04-11 14:40 - 2016-04-11 14:40 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2016-04-10 12:04 - 2016-04-10 12:05 - 00000000 ____D C:\Users\Wussel\AppData\Local\AVG Web TuneUp
2016-04-10 12:04 - 2016-04-10 12:04 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2016-04-10 12:03 - 2016-04-10 12:03 - 00000000 ____D C:\ProgramData\AVG Secure Search
2016-04-10 12:03 - 2016-04-10 12:03 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2016-04-10 12:02 - 2016-04-10 12:05 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2016-04-10 12:02 - 2016-04-10 12:02 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2016-04-10 11:52 - 2016-04-10 11:52 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\AVG
2016-04-10 11:51 - 2016-04-11 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-04-10 11:51 - 2016-04-10 11:51 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\TuneUp Software
2016-04-10 11:50 - 2016-04-10 11:50 - 00000000 ___HD C:\$AVG
2016-04-10 11:48 - 2016-04-17 11:52 - 00000000 ____D C:\ProgramData\MFAData
2016-04-10 11:48 - 2016-04-10 11:48 - 00000882 _____ C:\Users\Public\Desktop\AVG.lnk
2016-04-10 11:48 - 2016-04-10 11:48 - 00000000 ____D C:\Users\Wussel\AppData\Local\MFAData
2016-04-10 11:48 - 2016-04-10 11:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-04-10 11:47 - 2016-04-10 11:54 - 00000000 ____D C:\ProgramData\Avg
2016-04-10 11:47 - 2016-04-10 11:54 - 00000000 ____D C:\Program Files (x86)\AVG
2016-04-10 11:46 - 2016-04-14 16:20 - 00000000 ____D C:\Users\Wussel\AppData\Local\AvgSetupLog
2016-04-10 11:46 - 2016-04-11 14:39 - 00000000 ____D C:\Users\Wussel\AppData\Local\Avg
2016-04-09 20:15 - 2016-04-09 20:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-04-09 16:44 - 2016-04-09 16:44 - 00002096 _____ C:\Users\Public\Desktop\Raptr.lnk
2016-04-09 16:44 - 2016-04-09 16:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr
2016-04-09 16:43 - 2016-04-09 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-04-08 17:17 - 2016-04-08 17:17 - 00000000 ____D C:\Users\Wussel\AppData\Local\My Games
2016-03-31 21:44 - 2016-04-11 21:38 - 00000000 ____D C:\Users\Wussel\AppData\Local\CrashDumps
2016-03-28 14:46 - 2016-03-28 14:46 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\Wargaming.net
2016-03-27 15:39 - 2016-03-27 15:39 - 00000554 _____ C:\Users\Wussel\Desktop\World of Tanks.lnk
2016-03-27 15:39 - 2016-03-27 15:39 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
2016-03-27 15:38 - 2016-03-27 15:38 - 04654968 _____ (Wargaming.net ) C:\Users\Wussel\Downloads\WoT_internet_install_eu.exe
2016-03-26 13:13 - 2016-03-26 13:30 - 00002238 ____H C:\Users\Wussel\Documents\Default.rdp
2016-03-26 13:13 - 2016-03-26 13:30 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\FileZilla
2016-03-25 20:18 - 2016-03-25 20:18 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2016-03-25 20:18 - 2016-03-25 20:18 - 00000000 ____D C:\Users\DefaultAppPool
2016-03-25 20:18 - 2015-12-18 16:26 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\ATI
2016-03-25 20:18 - 2015-12-18 16:26 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\ATI
2016-03-25 20:18 - 2015-11-14 13:38 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-03-25 20:18 - 2015-11-14 13:38 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2016-03-25 20:18 - 2015-11-14 13:38 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Google
2016-03-21 23:02 - 2016-03-21 23:02 - 00031446 _____ C:\Users\Wussel\Documents\SERP-2.0.pdf
2016-03-21 23:00 - 2016-03-21 23:00 - 00031446 _____ C:\Users\Wussel\Documents\SERPNEU.pdf
2016-03-21 22:41 - 2016-03-21 22:41 - 00028341 _____ C:\Users\Wussel\Documents\SERP.pdf
2016-03-21 22:30 - 2016-03-21 22:30 - 00034133 _____ C:\Users\Wussel\Documents\SERPCHARS.pdf
2016-03-20 16:41 - 2016-03-20 16:41 - 00053547 _____ C:\Users\Wussel\Downloads\UnbenanntesDokument.pdf
2016-03-18 16:00 - 2016-03-18 16:00 - 00067621 ____T C:\Users\Wussel\Documents\lma.pdf
2016-03-18 15:57 - 2016-03-18 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2016-03-18 15:57 - 2016-03-18 15:57 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2016-03-18 15:56 - 2016-03-18 15:56 - 00084164 _____ C:\Users\Wussel\Documents\klrghkjdfhgnxcngkdyfgfjngnmxcgndf.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-04-17 11:50 - 2015-04-14 22:34 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\TS3Client
2016-04-17 11:49 - 2016-01-10 13:18 - 00004160 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{16105164-BEF8-43E2-BF15-D0E8C7D15558}
2016-04-17 11:48 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-17 11:48 - 2015-08-28 15:24 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\Raptr
2016-04-16 22:11 - 2015-09-30 22:06 - 00000080 _____ C:\Users\Wussel\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-04-16 19:41 - 2015-09-01 18:40 - 00000000 ____D C:\Users\Wussel\Documents\BeamNG.drive
2016-04-16 17:37 - 2015-04-16 11:55 - 00000000 ____D C:\Users\Wussel\AppData\Local\Arma 3
2016-04-16 11:13 - 2015-05-08 11:34 - 00000000 ____D C:\Users\Wussel\Documents\Euro Truck Simulator 2
2016-04-16 09:46 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-16 00:30 - 2015-11-14 13:33 - 00000000 ____D C:\Users\Wussel
2016-04-15 14:47 - 2015-11-14 13:33 - 02087744 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-15 14:47 - 2015-10-30 20:35 - 00888452 _____ C:\WINDOWS\system32\perfh007.dat
2016-04-15 14:47 - 2015-10-30 20:35 - 00197278 _____ C:\WINDOWS\system32\perfc007.dat
2016-04-15 14:47 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-04-15 14:40 - 2015-11-14 13:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-15 14:39 - 2015-04-14 22:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-14 23:03 - 2015-04-25 18:21 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\Skype
2016-04-14 18:27 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-04-14 16:20 - 2015-09-23 19:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-14 15:36 - 2015-11-14 13:24 - 00194304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-13 23:52 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-04-13 23:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-13 23:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-13 23:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-13 23:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-13 20:32 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-13 20:30 - 2015-05-20 21:09 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-13 20:26 - 2010-12-04 00:00 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-13 17:20 - 2015-11-14 13:49 - 00000000 ____D C:\Users\Wussel\AppData\Local\Packages
2016-04-12 22:03 - 2016-02-27 14:19 - 00000000 ____D C:\Users\Wussel\Desktop\fürs handy
2016-04-11 19:11 - 2015-04-14 22:20 - 00001139 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-04-11 19:11 - 2015-04-14 22:20 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-10 12:27 - 2015-11-04 15:12 - 00000000 ____D C:\Users\Wussel\AppData\Local\Battle.net
2016-04-10 12:27 - 2015-08-08 13:35 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\.minecraft
2016-04-10 12:27 - 2011-02-04 00:55 - 00000000 ____D C:\ProgramData\Temp
2016-04-10 12:15 - 2015-10-25 19:29 - 00000000 ____D C:\Users\Wussel\Desktop\Nicht löschen du idiot
2016-04-10 12:13 - 2016-03-10 22:10 - 00000000 ____D C:\WINDOWS\Minidump
2016-04-10 12:13 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-04-10 11:55 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-04-10 11:51 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-04-10 11:45 - 2016-02-09 17:03 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-04-10 11:16 - 2016-02-08 19:37 - 00000000 ____D C:\ProgramData\78a595fd-df95-40de-93ec-d80a00f25811
2016-04-09 22:39 - 2016-01-14 12:22 - 00281032 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2016-04-09 22:39 - 2016-01-14 11:56 - 00281032 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-04-09 22:25 - 2016-01-07 00:29 - 00000956 _____ C:\Users\Wussel\Desktop\nativelog.txt
2016-04-09 16:49 - 2015-12-14 16:36 - 00000000 ____D C:\Users\Wussel\Documents\DayZ
2016-04-09 16:49 - 2015-11-05 22:14 - 00000000 ____D C:\Users\Wussel\Documents\Heroes of the Storm
2016-04-09 16:49 - 2015-09-05 14:10 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\Guild Wars 2
2016-04-09 16:49 - 2015-06-11 21:48 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\SpaceEngineers
2016-04-09 16:49 - 2015-06-02 21:12 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\SpinTires
2016-04-09 16:49 - 2015-04-16 11:55 - 00000000 ____D C:\Users\Wussel\Documents\Arma 3
2016-04-09 16:44 - 2016-03-14 11:06 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\PlaysTV
2016-04-09 16:42 - 2015-11-14 13:30 - 00000000 ____D C:\ProgramData\AMD
2016-04-08 17:17 - 2015-05-17 12:04 - 00000000 ____D C:\Users\Wussel\Documents\My Games
2016-04-08 16:37 - 2015-11-10 19:20 - 00003120 _____ C:\Users\Wussel\Desktop\Danke Elena.txt
2016-04-06 20:32 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-06 20:32 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-28 21:11 - 2015-04-16 12:19 - 00000000 ____D C:\Users\Wussel\Documents\Arma 3 - Other Profiles
2016-03-28 16:56 - 2015-08-18 19:52 - 00007666 _____ C:\Users\Wussel\AppData\Local\Resmon.ResmonCfg
2016-03-27 15:38 - 2015-06-30 15:09 - 00000000 ____D C:\Games
2016-03-21 18:25 - 2016-01-16 22:55 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-03-21 18:24 - 2015-04-25 18:20 - 00000000 ____D C:\ProgramData\Skype
2016-03-19 14:32 - 2015-10-25 18:54 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\GTAV Enhanced Native Trainer
2016-03-19 10:23 - 2015-05-15 10:29 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-18 17:22 - 2015-11-14 13:30 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-18 16:00 - 2015-04-14 22:18 - 00000000 ___SD C:\Users\Wussel\AppData\LocalLow\Temp
2016-03-18 15:00 - 2015-05-18 08:40 - 00000000 ____D C:\Users\Wussel\AppData\Roaming\SoftGrid Client

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-08-18 19:52 - 2016-03-28 16:56 - 0007666 _____ () C:\Users\Wussel\AppData\Local\Resmon.ResmonCfg
2015-11-14 13:29 - 2015-11-14 13:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Wussel\AppData\Local\Temp\raptrpatch.exe
C:\Users\Wussel\AppData\Local\Temp\raptr_stub.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-04-14 15:48

==================== Ende von FRST.txt ============================
__________________
Alt 17.04.2016, 10:57   #4
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-04-2016
durchgeführt von Wussel (2016-04-17 11:54:13)
Gestartet von C:\Users\Wussel\Desktop
Windows 10 Home Version 1511 (X64) (2015-11-14 11:48:52)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1839217256-4170891939-739727537-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1839217256-4170891939-739727537-503 - Limited - Disabled)
Gast (S-1-5-21-1839217256-4170891939-739727537-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1839217256-4170891939-739727537-1003 - Limited - Enabled)
Wussel (S-1-5-21-1839217256-4170891939-739727537-1002 - Administrator - Enabled) => C:\Users\Wussel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: AVG Internet Security (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: AVG Internet Security (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Reader X (10.1.14) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.14 - Adobe Systems Incorporated)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)
American Truck Simulator (HKLM-x32\...\Steam App 270880) (Version:  - SCS Software)
Anno 1404 (HKLM-x32\...\Steam App 33250) (Version:  - Blue Byte)
Anno 1404: Venice (HKLM-x32\...\Steam App 33350) (Version:  - Blue Byte)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.23.0 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software)
AVG (HKLM\...\AvgZen) (Version: 1.51.2.3593 - AVG Technologies)
AVG (Version: 16.61.7539 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4556 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.61.7539 - AVG Technologies)
AVG Zen (Version: 1.51.58 - AVG Technologies) Hidden
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BeamNG.drive (HKLM-x32\...\Steam App 284160) (Version:  - BeamNG)
Catalyst Control Center Next Localization BR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CSC41 Mod-Launcher (HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\7f1efdb889762f0d) (Version: 1.0.0.8 - CSC41 Mod-Launcher)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3418 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3802 - CyberLink Corp.)
CyberLink PowerDVD Copy (HKLM-x32\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of Defeat: Source (HKLM-x32\...\Steam App 300) (Version:  - Valve)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Elite Dangerous Launcher version 0.4.2220.0 (HKLM-x32\...\{696F8871-C91D-4CB1-825D-36BE18065575}_is1) (Version: 0.4.2220.0 - Frontier Developments)
EPSON XP-205 207 Series Printer Uninstall (HKLM\...\EPSON XP-205 207 Series) (Version:  - SEIKO EPSON Corporation)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.2.0.5.2 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.0.5.2 Alpha - ETS2MP Team)
FMW 1 (Version: 1.72.2 - AVG Technologies) Hidden
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Fractured Space (HKLM-x32\...\Steam App 310380) (Version:  - Edge Case Games Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Drive (HKLM-x32\...\{9C350701-AC04-48BA-A435-BD5E0D82897E}) (Version: 1.25.0523.2491 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.2.183.29 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Guns of Icarus Online (HKLM-x32\...\Steam App 209080) (Version:  - Muse Games)
HELLDIVERS™ (HKLM-x32\...\Steam App 394510) (Version:  - Arrowhead Game Studios)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM-x32\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation)
Landwirtschafts Simulator 15 (HKLM-x32\...\FarmingSimulator2015DE_is1) (Version: 1.4.1.0 - GIANTS Software)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Medion Home Cinema (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft Flight Simulator X: Steam Edition (HKLM-x32\...\Steam App 314160) (Version:  - Microsoft Game Studios)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minecraft 1.8 1.00 (HKLM-x32\...\Minecraft 1.8 1.00) (Version:  - )
Mozilla Firefox 45.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 de)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version:  - MSI Co., LTD)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.026 - MSI)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Naval Action (HKLM-x32\...\Steam App 311310) (Version:  - Game-Labs)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version: 5.1.2-r111396-release - Raptr, Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.90.826.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7469 - Realtek Semiconductor Corp.)
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version:  - Tripwire Interactive)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version:  - Firaxis Games)
SimplePlanes (HKLM-x32\...\Steam App 397340) (Version:  - Jundroo, LLC)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - Keen Software House)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spelling Dictionaries Support For Adobe Reader X (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-A00000000004}) (Version: 10.0.0 - Adobe Systems Incorporated)
Spintires (HKLM-x32\...\Steam App 263280) (Version:  - Oovee® Game Studios)
Spore (HKLM-x32\...\Steam App 17390) (Version:  - Maxis™)
Star Citizen Launcher (HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.52465 - TeamViewer)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version:  - Ubisoft)
Tom Clancy's The Division Beta (HKLM-x32\...\Uplay Install 2036) (Version:  - Ubisoft)
TruckersMP 0.2.0.8 Alpha (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.0.8 Alpha - ETS2MP Team)
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version:  - Wargaming.net)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1839217256-4170891939-739727537-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Wussel\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {05199D14-033C-4CD0-BC22-6E72407910B4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {156A492D-60AE-47B0-8B1E-4342BD00B1E7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-15] (Google Inc.)
Task: {158F267E-D339-4178-A544-47F31BDF9CF6} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {1736ED1F-2296-4887-B184-4CFA2F5817F7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-15] (Adobe Systems Incorporated)
Task: {1BC9808B-FE6C-40F4-8496-0A8D1D3528A5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {26CE52A9-7114-4238-86B7-E2D3602EAADA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {29A47338-5C1F-43DF-9C9C-34812C8B0B50} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {2D2F8B80-1013-4437-89E8-1619ABF78B8B} - System32\Tasks\{2444BD73-858D-4E0F-8C35-612837C7783F} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=heroes --displayname="Heroes of the Storm"
Task: {3110F97F-4DEF-4E03-87D4-75163AC381E5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {41730548-9C34-4CF7-B133-3A1A599912DA} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {48773C5C-B8F3-419C-BB65-BE4D29BF432D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {4C463EF9-3FE3-4861-95DD-B4361ADA2D0E} - System32\Tasks\Opera scheduled Autoupdate 1431790590 => C:\Program Files (x86)\Opera\launcher.exe
Task: {4E08F437-BB92-40F9-AF27-8968596EA656} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2015-12-04] (Advanced Micro Devices, Inc.)
Task: {593EEA99-B754-4C8C-8F7E-4BA3A7F6EAD6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {59AB989F-16CC-4C1F-93FC-84BE90C432F6} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {6843F1E2-C705-4221-894C-B705C4F1A465} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {69867658-9136-4317-9041-4E60185D21DB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {6CF7D423-2C27-4D39-966D-FB8B24328985} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {6EEEE8D1-899A-43E2-A205-4CEBC5A0501E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {78FC5974-91DA-4BB7-B152-CEBA7B96E83A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-10] (AVAST Software)
Task: {819A6101-39B1-4401-B233-7795048F66FA} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {81B1C75B-0862-4D46-BC8B-5657BBDF72BB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {8D659E3A-7F09-4161-8A23-C8F7D0DFEB3F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {8DA6F157-E8AB-43CB-9851-6499A3390108} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {8E6B88FD-4C35-4A13-B7E8-0B0D533C0FA9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {9E385875-32DD-4418-A999-02658FA855D0} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {AA954AEB-9B38-4A02-8C54-35B09932DC86} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {AB986D2B-80E0-49EE-A7EC-D0FC94D04F2F} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {AD59535C-5DB7-46D5-B486-AB1F39C65A3B} - System32\Tasks\{37A10DD9-FBE3-4D48-B063-5844A160C369} => pcalua.exe -a C:\Users\Wussel\Downloads\radeon-crimson-15.12-win10-64bit.exe -d C:\Users\Wussel\Downloads
Task: {B3B3EE70-56D0-43FF-AF5C-4985C4BC04F0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {B7F300B8-3A0F-41D5-972A-D8E31FD1D3C1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {BDF91010-7311-4B8C-95E9-C6052C9C7D93} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {C8FDB321-1C0D-4D1E-A715-12C9E10BC56E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {CE3090B5-171A-4BE8-B2BB-8BD0C70E87C6} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E51F8621-14F0-4038-8B5C-831DA18D5B72} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {EA76CD3C-95D8-46E0-99DD-F290B276548E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-04-13] (Microsoft Corporation)
Task: {FE0586E4-8D44-4729-875E-58F23ECD175A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-15] (Google Inc.)
Task: {FE8D2EF3-DD9E-41CE-966D-A6B1D764F757} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-25 12:44 - 2015-09-25 12:44 - 00214528 _____ () D:\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () D:\ATI.ACE\Fuel\Device.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () D:\ATI.ACE\Fuel\Platform.dll
2016-01-14 11:56 - 2016-01-14 12:47 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-04-13 17:17 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 17:17 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-18 16:00 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-13 17:15 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-13 17:16 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-13 17:16 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-13 17:17 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-13 17:17 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-09-25 12:44 - 2015-09-25 12:44 - 00102400 _____ () D:\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2016-01-22 15:20 - 2016-01-22 15:20 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-09-10 23:39 - 2015-09-10 23:39 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-10 23:39 - 2015-09-10 23:39 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-04-15 13:11 - 2016-04-15 13:11 - 02890240 _____ () C:\Program Files\AVAST Software\Avast\defs\16041500\algo.dll
2016-04-15 18:41 - 2016-04-15 18:41 - 02890240 _____ () C:\Program Files\AVAST Software\Avast\defs\16041501\algo.dll
2015-04-14 22:28 - 2016-03-11 02:56 - 00783360 _____ () D:\Steam\SDL2.dll
2015-04-14 22:28 - 2015-07-03 18:12 - 04962816 _____ () D:\Steam\v8.dll
2015-04-14 22:28 - 2016-03-31 22:55 - 02549840 _____ () D:\Steam\video.dll
2015-04-14 22:28 - 2015-07-03 18:12 - 01556992 _____ () D:\Steam\icui18n.dll
2015-04-14 22:28 - 2015-07-03 18:12 - 01187840 _____ () D:\Steam\icuuc.dll
2015-04-14 22:28 - 2016-02-09 01:14 - 02549760 _____ () D:\Steam\libavcodec-56.dll
2015-04-14 22:28 - 2016-02-09 01:14 - 00491008 _____ () D:\Steam\libavformat-56.dll
2015-04-14 22:28 - 2016-02-09 01:14 - 00332800 _____ () D:\Steam\libavresample-2.dll
2015-04-14 22:28 - 2016-02-09 01:14 - 00442880 _____ () D:\Steam\libavutil-54.dll
2015-04-14 22:28 - 2016-02-09 01:14 - 00485888 _____ () D:\Steam\libswscale-3.dll
2015-04-14 22:28 - 2016-03-31 22:55 - 00829008 _____ () D:\Steam\bin\chromehtml.DLL
2016-03-09 14:21 - 2016-02-18 00:25 - 00281088 _____ () D:\Steam\openvr_api.dll
2015-04-14 22:08 - 2015-04-14 22:08 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-04-14 22:28 - 2016-02-09 03:33 - 48400672 _____ () D:\Steam\bin\libcef.dll
2016-04-10 11:47 - 2016-04-10 11:47 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2014-02-28 15:33 - 2015-12-05 12:20 - 00149480 _____ () D:\TeamSpeak 3\quazip.dll
2014-08-04 15:43 - 2015-12-05 12:20 - 00090088 _____ () D:\TeamSpeak 3\soundbackends\directsound_win32.dll
2014-08-04 15:43 - 2015-12-05 12:20 - 00103400 _____ () D:\TeamSpeak 3\soundbackends\windowsaudiosession_win32.dll
2014-08-04 15:45 - 2015-12-05 12:20 - 00260072 _____ () D:\TeamSpeak 3\plugins\clientquery_plugin.dll
2014-08-04 15:45 - 2015-12-05 12:20 - 00369640 _____ () D:\TeamSpeak 3\plugins\teamspeak_control_plugin.dll
2014-06-05 15:35 - 2015-09-24 16:52 - 00270336 _____ () D:\TeamSpeak 3\ssleay32.dll
2014-06-05 15:35 - 2015-09-24 16:52 - 01291776 _____ () D:\TeamSpeak 3\LIBEAY32.dll
2015-04-14 22:28 - 2015-09-25 01:56 - 00119208 _____ () D:\Steam\winh264.dll
2016-01-22 15:20 - 2016-01-22 15:20 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-01-22 15:20 - 2016-01-22 15:20 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Wussel:Heroes & Generals [38]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\aeriagames.com -> hxxp://aeriagames.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2016-01-11 21:24 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1839217256-4170891939-739727537-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: EPSON_EB_RPCV4_04 => 2
MSCONFIG\Services: EPSON_PM_RPCV4_04 => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: EPLTarget => 
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKU\S-1-5-21-1839217256-4170891939-739727537-1002\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{E7D844CD-A4B5-4A6C-A749-AC48BCF5D402}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{476EEA21-E536-4C00-87CB-00229222B6BC}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{F272B4C0-639C-44C3-934D-D7B013919D40}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3E5BC0BF-BDF1-4ED7-827F-6ADE99E395E3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FB1E4EDC-B4A0-4850-8DF2-DAFD825B675B}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{11893D24-DF24-4D53-9CEB-A6AAC1255189}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{08170A18-D35D-42A7-9193-4C5A971F7743}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{4AB63261-8141-47FF-A1C9-C41B5C2B3EAE}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{35E3C5A8-E412-4556-9472-68FC7B165D3F}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{43912A8D-2FD5-44A8-A879-68AFA3FA1C31}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{F415D087-0D95-42C7-8588-3C378976ACFA}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{63330BBB-DABA-46F8-840F-77F4C86D6E82}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{65821E77-029F-48DC-8ADA-44ED7DC744F1}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{AFBC21A0-1DB6-480B-BED6-4E6E0922F3B7}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [UDP Query User{CA2700C8-2C39-4AD1-AFD7-6A5E3F81B001}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{183EC3EA-8874-4D4F-8102-8D4186A2D376}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{D881BD70-B4FC-4CD8-A9B9-A059EAF0811F}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{6FAAE919-BCAD-444C-B307-017D57789813}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{2658F4E1-CA6F-4FE6-86F5-7967ABB142EE}] => (Allow) D:\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe
FirewallRules: [{FE031BAA-8157-4792-999B-F06C061A7D92}] => (Allow) D:\Steam\steamapps\common\BeamNG.drive\BeamNG.drive.exe
FirewallRules: [{CF0CE3C4-BD77-4315-9235-E6D947CC2460}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{468DC3A6-B25E-4059-BA84-2D54BA59B228}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{FA43EE3B-2F84-4448-919D-5DCC29AED4D9}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{DB076EFD-8808-4A08-A3E1-8E96BDF0861D}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{A9F8A6C8-FCA0-408B-8539-04E419ACF18C}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{D62BDAEE-7FFE-4669-BB16-54FA4DFD8D23}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{6BB3753E-7CF0-43CF-8947-93F919BF1ECB}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{15682338-B7E5-425E-B296-4029EC514478}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{2722AEC7-1D72-4CD5-95F7-8057754D222B}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{7536A4E8-0E62-4A48-9593-9E7246942448}] => (Allow) C:\Program Files (x86)\Landwirtschafts Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [UDP Query User{C32142EB-C389-4DE0-9356-EE424538A1B6}D:\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Block) D:\steam\steamapps\common\anno 1404\tools\addonweb.exe
FirewallRules: [TCP Query User{D2419906-C253-4FB3-A0D6-31C61B9525C4}D:\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Block) D:\steam\steamapps\common\anno 1404\tools\addonweb.exe
FirewallRules: [{C4D3C506-36D1-4958-858E-23EF15408CCC}] => (Allow) D:\Steam\steamapps\common\Anno 1404\Addon.exe
FirewallRules: [{C5F72F8F-1A86-44EE-918C-417045CF22BB}] => (Allow) D:\Steam\steamapps\common\Anno 1404\Addon.exe
FirewallRules: [UDP Query User{3A986E35-31E4-4183-8B08-B6A68C96C987}C:\program files (x86)\java\jre1.8.0_51\bin\java.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\java.exe
FirewallRules: [TCP Query User{A85AA77B-F98D-484E-9A40-8F11AA3A0977}C:\program files (x86)\java\jre1.8.0_51\bin\java.exe] => (Block) C:\program files (x86)\java\jre1.8.0_51\bin\java.exe
FirewallRules: [{55C8FC39-8F52-4D05-8D51-40D54D698A9D}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C06AE755-E5FE-4B5C-B583-70B00D4849E9}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{6057945C-B6EC-494B-BDE0-9F9382A3DFF8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{B2FA69C8-1C72-4B18-A3EB-F3136C3E4F1E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{D40F7CE9-EEBD-4692-B0BC-E9306630EACB}] => (Block) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{3246CC8B-5986-46BE-B8BC-35A9CEBE0679}] => (Block) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{65DCB76A-8313-42A7-88D7-8A2CDFA0BAFA}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [TCP Query User{4AFD8F0C-6C32-4A6C-A3E2-9F638B14420F}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{9392DA36-8016-4E40-A5C2-8FA018EE64BC}D:\steam\steamapps\common\anno 1404\tools\anno4web.exe] => (Block) D:\steam\steamapps\common\anno 1404\tools\anno4web.exe
FirewallRules: [TCP Query User{812D52A6-DC45-433E-9EF3-AF10D8A73357}D:\steam\steamapps\common\anno 1404\tools\anno4web.exe] => (Block) D:\steam\steamapps\common\anno 1404\tools\anno4web.exe
FirewallRules: [{5A76248D-4F33-4640-A3DD-945FDFA90039}] => (Allow) D:\Steam\steamapps\common\Anno 1404\Anno4.exe
FirewallRules: [{53734988-500C-4C1A-836F-B33181E48AEA}] => (Allow) D:\Steam\steamapps\common\Anno 1404\Anno4.exe
FirewallRules: [UDP Query User{18C096B7-98B7-45A9-9DBD-78B203C46A11}D:\steam\steamapps\common\champions online\champions online\live\gameclient.exe] => (Block) D:\steam\steamapps\common\champions online\champions online\live\gameclient.exe
FirewallRules: [TCP Query User{97E9167E-B9A7-4EFC-BBB4-FC19844E5B7E}D:\steam\steamapps\common\champions online\champions online\live\gameclient.exe] => (Block) D:\steam\steamapps\common\champions online\champions online\live\gameclient.exe
FirewallRules: [{E97A4080-AD95-4CB0-9AD9-44086E358B81}] => (Allow) D:\Steam\steamapps\common\Spintires\SpinTires.exe
FirewallRules: [{77BF47AA-9EC1-413A-8146-B24D779CAF9F}] => (Allow) D:\Steam\steamapps\common\Spintires\SpinTires.exe
FirewallRules: [UDP Query User{A3186709-35BD-4E96-94C2-E67E4821F38C}D:\steam\steamapps\common\arma 3\arma3.exe] => (Block) D:\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [TCP Query User{719FBF99-3605-446B-93D0-4B47AEED5E36}D:\steam\steamapps\common\arma 3\arma3.exe] => (Block) D:\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{8B982388-3E40-4CE0-8B31-3466B3D8B81B}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{40A01D98-A09C-4D2A-8592-D67387EB100D}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{8A20F0FD-2E89-4B7A-875A-6821D182A320}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{1C2C7CE2-EED7-46C1-A711-0D6B5CD9A661}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{56EFC601-983A-484A-9BE4-B6F9BA1B6DBA}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{E6DA95F8-D508-4C64-A629-9230F8F59DA1}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{8D4B62A2-0C7E-42B2-BC1C-51244618D9C9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{67AF6708-9A46-4B07-87EB-BEA6C2B146E1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4808FD14-3A6C-4CB6-9A35-4F474216AEB1}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{7397F105-7AC6-467F-9BB6-5DD296DFF947}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DAB86F8B-ADB9-4758-918A-288FBA3403F9}] => (Allow) LPort=1900
FirewallRules: [{CD8FAB69-22CB-43F2-AB91-1BA6E66C953B}] => (Allow) LPort=2869
FirewallRules: [{56738B0F-8571-41F8-AEDE-875C2C12799A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{608AF85F-7A81-4770-A965-BC1349B8A424}] => (Allow) D:\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{046DEED3-0911-4407-970B-480A46AD5570}] => (Allow) D:\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [TCP Query User{86BCD50A-A65E-434A-AE53-DED778EB36E5}D:\cloud imperium games\patcher\cigpatcher.exe] => (Allow) D:\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{114C940E-1BDA-456C-940A-FDDD51557A1D}D:\cloud imperium games\patcher\cigpatcher.exe] => (Allow) D:\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{9B4B53B6-76EB-433E-9131-931E365CB67C}D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{C0D00BF8-AFFE-4D87-8350-C1554A5C363B}D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) D:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [{D61CAAB5-D06F-4272-974C-4CC3D14E0828}] => (Allow) D:\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{798684B7-1D05-4CA1-98C8-593EDE8E6807}] => (Allow) D:\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{022D436D-2840-42A8-AC91-59A78F2AD05A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B819C359-42BA-4999-8343-CA8789BC55FA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4282FC62-84DC-4A73-A48C-9C8F965F4054}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{43C64F06-816B-4E79-8E98-2E58C350DB8E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4AAD884E-92AD-49FF-A051-D187E0670BEB}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{5A4B9918-FA5C-4665-A959-E11DD4B0A8F3}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{44F5BB3A-3DB1-475F-BA0E-AFAE63C7AEC9}D:\steam\steamapps\common\dayz\dayz.exe] => (Block) D:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{31A78EC0-DEDC-4F1A-9E90-4A68905F2313}D:\steam\steamapps\common\dayz\dayz.exe] => (Block) D:\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{B472F57F-82FE-4932-B18C-A39BE0427ADD}D:\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe] => (Block) D:\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe
FirewallRules: [UDP Query User{3D427518-30D6-46BE-AA30-121EC071F6AD}D:\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe] => (Block) D:\steam\steamapps\common\beamng.drive\bin32\beamng.drive.x86.exe
FirewallRules: [{748D8C62-DE56-44AB-8A9C-C8957F2717DD}] => (Allow) D:\Steam\steamapps\common\SimplePlanes\SimplePlanes.exe
FirewallRules: [{047D5595-CF3A-41A6-A1B8-3E04417D46DF}] => (Allow) D:\Steam\steamapps\common\SimplePlanes\SimplePlanes.exe
FirewallRules: [{51B36069-22BE-45C4-9E01-B846F06DE14A}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{CFA01D40-1939-4CED-B388-28BDC14FC06B}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{609DAA68-8ABF-4091-9300-EE9A1D51CCE8}] => (Allow) D:\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{001257F2-C98D-4FE6-B63B-81345FE1EEB5}] => (Allow) D:\Steam\steamapps\common\Helldivers\binaries\x64\helldivers.exe
FirewallRules: [{2854653F-EACA-4B94-A138-A49FEBE164FA}] => (Allow) D:\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{E13B9289-1AA9-4319-B3A6-CBCCFB429A4A}] => (Allow) D:\Steam\steamapps\common\Helldivers\binaries\x86\helldivers.exe
FirewallRules: [{1C3B277B-C98A-42E5-8C60-5121780F62D8}] => (Allow) D:\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{C4229022-CF9A-4B14-B699-3F810CFDEE66}] => (Allow) D:\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{AAC1E211-1332-4157-82C2-EC1D2216FBA7}] => (Allow) D:\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{6CD884C8-C536-4A01-A8A9-96F6329D73F9}] => (Allow) D:\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{5CF841E5-AAA6-4E4A-9C91-427E720DA846}] => (Allow) D:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{B94AA5B3-796F-4BBF-A32C-5F114BE49045}] => (Allow) D:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{6CE4B395-8BFD-4132-8492-8AEE89573AAE}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{803426EB-5509-4DD6-A184-AA71D8727165}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{19AD153A-B2EE-4B51-B85C-20B2E4494ED1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{2A3A1039-C3B2-4383-87DF-7E9031D1F5DB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5CD22E4A-5559-421E-81A9-7BC9CCBC5248}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{CBA1778E-4381-44C0-BBC6-F218B8D38A81}] => (Allow) D:\Steam\steamapps\common\Naval Action\Client.exe
FirewallRules: [{EB8EABCE-9533-4FC4-A6F4-FDA7D795920B}] => (Allow) D:\Steam\steamapps\common\Naval Action\Client.exe
FirewallRules: [{4094BBAE-BC6E-44A9-A2D3-B9617BD1E685}] => (Allow) D:\Steam\steamapps\common\Naval Action\Client_.exe
FirewallRules: [{063FBB96-A558-4A8F-AEAD-5E2C6984A966}] => (Allow) D:\Steam\steamapps\common\Naval Action\Client_.exe
FirewallRules: [{8CDE64BC-D27A-4E8B-B49C-47C9653EE97D}] => (Allow) D:\Steam\steamapps\common\Naval Action\NavalActionCrashSender.exe
FirewallRules: [{6456B5F8-DC8B-401F-8C87-FA3D267E307F}] => (Allow) D:\Steam\steamapps\common\Naval Action\NavalActionCrashSender.exe
FirewallRules: [{BE338C51-15F7-43EF-9A6C-DF581BDD0B60}] => (Allow) D:\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe
FirewallRules: [{7B7EC5AF-A4D6-4E98-82A8-FA2E6F32F860}] => (Allow) D:\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe
FirewallRules: [{16B7E463-EB1F-4D29-ACDD-4E2B7DCB6C29}] => (Allow) D:\Steam\steamapps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{8828D525-8332-4E3B-B8F5-BFBCEB015F69}] => (Allow) D:\Steam\steamapps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{A7B99BA0-B608-439A-8F6C-CA624D87088E}] => (Allow) D:\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{8F877D53-776D-4B1A-BACE-8B0FEFFBC175}] => (Allow) D:\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{3D17DDCE-69A3-4FD7-8D70-E65CA6346411}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{F6A6137F-9855-46EC-BECA-467C31DFEADA}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{97AD14A3-0BE1-4929-92A6-ECB92B0F9DBD}] => (Allow) D:\Ubisoft Game Launcher\games\Tom Clancy's The Division\TheDivision.exe
FirewallRules: [TCP Query User{CA57E5AA-6913-448C-A80E-F534AB658CB1}D:\wt\wotlauncher.exe] => (Allow) D:\wt\wotlauncher.exe
FirewallRules: [UDP Query User{C1B09BBE-CAB5-47A9-87F4-2AE63F92E2D9}D:\wt\wotlauncher.exe] => (Allow) D:\wt\wotlauncher.exe
FirewallRules: [TCP Query User{0B47536D-C627-4FFB-BC2A-C328A478F9EA}D:\wt\worldoftanks.exe] => (Block) D:\wt\worldoftanks.exe
FirewallRules: [UDP Query User{119B993D-B203-424F-A660-371B29C94330}D:\wt\worldoftanks.exe] => (Block) D:\wt\worldoftanks.exe
FirewallRules: [{E126C5B0-B7C0-426F-B82A-DEAEF7F99BAF}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{03B6CE3B-6D38-4C10-B9E7-FE7222C2B2DA}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{565FB5C6-8351-4648-B010-CB2D9ACDC846}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{AE89B0F4-C2C0-4793-B579-4693D031E69C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{07B18A3E-9ED7-4CB4-8A4A-5A39C34F29FD}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{8C188395-9293-43FC-9256-E0D54B2736E1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{F5019457-EA08-44F4-BA92-7536EEC15995}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{255ED06E-395A-4338-8E25-BD03062260C9}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{31974A5E-FAED-4A56-8452-D84CCE075AE4}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{2C529139-38D0-4E85-97D0-046A71A3BFC8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{75CB5634-D04B-4894-8276-F4CBA76D46B9}] => (Allow) D:\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{8C729379-7239-4F77-9D9E-FC6A4140FAB2}] => (Allow) D:\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{928F3C85-93BC-4BCC-8C99-38E73C117057}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{77734A02-701C-468D-B0DB-F80B572E3C0D}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{1AC5405E-F238-4EBC-8E4B-2BC5943A0106}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{FE979669-5280-4F86-AE44-0502F5B4BBC3}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{40DD7B36-8611-43BB-8333-0C0CA0F3C779}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{5DFCBECF-0C75-455B-BA6B-ED018BD30CE6}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe

==================== Wiederherstellungspunkte =========================

09-04-2016 21:04:58 Windows Update
13-04-2016 20:24:25 Windows Update
13-04-2016 20:25:52 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (04/16/2016 07:30:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm launcher_atsmp.exe, Version 0.2.0.7 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 17f0

Startzeit: 01d19805135216df

Beendigungszeit: 4

Anwendungspfad: D:\TruckersMP\launcher_atsmp.exe

Berichts-ID: 56fc6f21-03f8-11e6-bde5-d8cb8a9ee787

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (04/16/2016 04:50:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (04/16/2016 04:50:52 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: 

Error: (04/16/2016 04:50:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8

Error: (04/16/2016 04:50:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8

Error: (04/16/2016 04:50:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: ESENTC:\WINDOWS\system32\esentprf.dll8

Error: (04/16/2016 02:34:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (04/16/2016 02:34:47 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: 

Error: (04/16/2016 02:34:47 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8

Error: (04/16/2016 02:34:46 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: LsaC:\Windows\System32\Secur32.dll8


Systemfehler:
=============
Error: (04/17/2016 11:46:16 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst avgsvc erreicht.

Error: (04/16/2016 11:32:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_6e95e08 erreicht.

Error: (04/16/2016 11:32:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_6e95e08" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/16/2016 09:50:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst avgsvc erreicht.

Error: (04/16/2016 08:34:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_370d763 erreicht.

Error: (04/16/2016 08:34:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_370d763" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/16/2016 11:40:00 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst avgsvc erreicht.

Error: (04/16/2016 11:39:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_29b3e92" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/16/2016 10:42:42 AM) (Source: DCOM) (EventID: 10016) (User: Wussel-PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Wussel-PCWusselS-1-5-21-1839217256-4170891939-739727537-1002LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (04/16/2016 10:42:42 AM) (Source: DCOM) (EventID: 10016) (User: Wussel-PC)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}Wussel-PCWusselS-1-5-21-1839217256-4170891939-739727537-1002LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742


CodeIntegrity:
===================================
  Date: 2016-04-14 20:01:02.935
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-14 15:38:29.005
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-04-13 20:47:52.324
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-23 21:07:43.317
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-18 14:28:34.203
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-109838.dll that did not meet the Store signing level requirements.

  Date: 2016-03-18 14:27:22.219
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-109838.dll that did not meet the Store signing level requirements.

  Date: 2016-03-11 22:30:26.226
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-11 12:52:47.136
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-10 07:52:44.080
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-03-02 16:57:13.491
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: AMD FX(tm)-8350 Eight-Core Processor 
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 8141.5 MB
Verfügbarer physikalischer RAM: 5329.76 MB
Summe virtueller Speicher: 16333.5 MB
Verfügbarer virtueller Speicher: 13269.53 MB

==================== Laufwerke ================================

Drive c: (Boot) (Fixed) (Total:900.41 GB) (Free:796.03 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:494.28 GB) NTFS
Drive e: (Recover) (Fixed) (Total:30 GB) (Free:12.55 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 2BD2C32A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=900.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B7B87023)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

Alt 17.04.2016, 11:14   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Was ist mit meiner Frage nach bisherigen Funden und wenn es welche gab, den Logs dazu?

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.04.2016, 11:46   #6
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Da muss ich mich entschuldigen da ich diese Logs nicht gefunden habe, Wahrscheinlich habe ich keine mehr

und zu den funden kann ich auch keine genaueren angaben geben

Alt 17.04.2016, 11:48   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Dann schau doch einfach mal richtig nach. AV öffnen, Logsektion, und richtig nachsehen. Ohne zu wissen was gefunden wurde kann sich niemand dazu äußern
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.04.2016, 12:24   #8
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


OK Einen moment bitte

Malsign.Genric.902

Adware:AdPlugin.IJE

Adware:AdPlugin.IFW

Das wurde von AVG gefunden beim versuch die logs als datei zu krigen ist jedoch mein rechener abgeschtürtzt

ich werde es jedoch nochmal versuchen oben stehen die 3 Funde die Avg angezeigt hat

Code:
ATTFilter
---------------------------
Überprüfung abgeschlossen
---------------------------
CheatEngine64.exe   Win32:OpenCandy-D [PUP]
CheatEngine65.exe   Win32:OpenCandy-D [PUP]
CheatEngine65.exe   Win32:OpenCandy-D [PUP]
CheatEngine65.exe   Win32:OpenCandy-D [PUP]
FreeYouTube61ToMP3Converter.exe   Win32:OpenCandy-D [PUP]
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Malware-gen
Plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Adware-gen [Adw]
plugin.exe   Win32:Malware-gen
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Malware-gen
Plugin.exe   Win32:Adware-gen [Adw]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
Plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Evo-gen [Susp]
plugin.exe   Win32:Adware-gen [Adw]
PluginContainer.exe   Win32:Evo-gen [Susp]
PluginContainer.exe   Win32:Adware-gen [Adw]
PluginContainer.exe   Win32:Evo-gen [Susp]
PluginContainer.exe   Win32:Evo-gen [Susp]
PluginContainer.exe   Win32:Evo-gen [Susp]
PluginContainer.exe   Win32:Evo-gen [Susp]
Uninstaller.exe   Win32:Malware-gen
Updater.exe   Win32:Evo-gen [Susp]
Updater.exe   Win32:Evo-gen [Susp]
Updater.exe   Win32:Evo-gen [Susp]
Updater.exe   Win32:Evo-gen [Susp]
updater.upd   Win32:Adware-gen [Adw]
updater.upd   Win32:Adware-gen [Adw]
updater.upd   Win32:Adware-gen [Adw]

---------------------------
OK   
---------------------------
So hier ist der log von Avast ist jedemenge Adware

Alt 17.04.2016, 20:07   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Das sind zwar unvollständige Angabe (volle Verzeichnisangaben der Fundorte fehlen) aber man sieht, dass es sich hier mal wieder um Junkware handelt.

Bevor wir hier weitermachen müssen die beiden Schrott-Virenscanner Avast und AVG runterfliegen. Merke: niemals mehr als ein AV gleichzeitig verwenden! Aber AVG und Avast müssen/sollten beide runter und zwar deswegen: Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Auch andere Freewareanbieter wie Avira oder Panda springen auf diesen oder ähnlichen Zügen rauf, basteln Junkware in die Setups, arbeiten mit ASK zusammen etc; so was ist bei Sicherheitssoftware einfach inakzeptabel. Wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen.

Gib Bescheid wenn Avast und AVG weg sind.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.04.2016, 20:53   #10
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


ok ich haue Avast und AVG runter, welches würdest du empfehlen ?

Alt 17.04.2016, 20:55   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Ich hab doch geschrieben, dass du dann umsteigen kannst wir hier durch sind
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.04.2016, 21:03   #12
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


so habe das nun beides runter gehauen

Alt 17.04.2016, 21:10   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.04.2016, 23:08   #14
Erik.S
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2014.11.18.05
  rootkit: v2014.11.12.01

Windows 10 x64 NTFS
Internet Explorer 11.212.10586.0
Wussel :: WUSSEL-PC [administrator]

17.04.2016 23:02:58
mbar-log-2016-04-17 (23-02-58).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 389780
Time elapsed: 22 minute(s), 24 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 6
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe (Trojan.Agent) -> Delete on reboot. [5de080bd720a9a9caa2340b48083b848]
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MsMpEng.exe (Security.Hijack) -> Delete on reboot. [c67751ec6c10f244e402c43029daa55b]
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\svchost.exe (Security.Hijack) -> Delete on reboot. [64d998a5334971c58f77d126bc477c84]
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MRT.exe (Trojan.Agent) -> Delete on reboot. [9aa3d36aa1db75c1bc113cb8b0539f61]
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\MsMpEng.exe (Security.Hijack) -> Delete on reboot. [b18c3c0119637db9ecfa2fc52ed56e92]
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\svchost.exe (Security.Hijack) -> Delete on reboot. [0f2ebc81f98340f629dd896ef50e629e]

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.04.17.06
  rootkit: v2016.04.17.01

Windows 10 x64 NTFS
Internet Explorer 11.212.10586.0
Wussel :: WUSSEL-PC [administrator]

17.04.2016 23:31:30
mbar-log-2016-04-17 (23-31-30).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 410404
Time elapsed: 30 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
Hier einmal der Log vor der Bereinigung und dann den Nach der Bereinigung....

Alt 18.04.2016, 08:23   #15
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Probleme mit Vieren,Betriebssystem 64 bit Win 10 - Standard

Probleme mit Vieren,Betriebssystem 64 bit Win 10


Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!

1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

__________________
Logfiles bitte immer in CODE-Tags posten

Antwort
Seite 1 von 2 1 2

Themen zu Probleme mit Vieren,Betriebssystem 64 bit Win 10
64 bit, betriebssystem, danke, files, gelöscht, grafikkarte, laufe, laufen, log, log files, probleme, programm, rechner, sauber, scan, scanner, update, vieren, virenprogramm, win, win 10, wissen


« Philips TV hat NetBus Backdoor Trojaner Port offen | WIN 7: ZIP-Datei als Anlage zu einer Mail "EBAY-Mahnung" unter web.de-Adresse geöffnet / angeklickt »


Ähnliche Themen: Probleme mit Vieren,Betriebssystem 64 bit Win 10


  1. Hab ich Vieren eventuel auf den Computer?
    Plagegeister aller Art und deren Bekämpfung - 24.08.2014 (4)
  2. Email vieren
    Plagegeister aller Art und deren Bekämpfung - 25.11.2013 (2)
  3. Vieren Problem?
    Plagegeister aller Art und deren Bekämpfung - 27.06.2013 (3)
  4. Probleme mit scheinbar verschiedenen Vieren
    Plagegeister aller Art und deren Bekämpfung - 01.09.2010 (43)
  5. haufenweise vieren eingefangen
    Log-Analyse und Auswertung - 26.04.2010 (14)
  6. 3 Vieren/Trojaner und evt Rootkid
    Plagegeister aller Art und deren Bekämpfung - 03.10.2009 (9)
  7. hilfe ich habe vieren
    Log-Analyse und Auswertung - 14.07.2009 (0)
  8. Diverse Vieren und Maleware
    Log-Analyse und Auswertung - 14.08.2008 (6)
  9. Werbung nervt, Vieren?
    Log-Analyse und Auswertung - 13.07.2008 (38)
  10. ???formante von vieren???
    Mülltonne - 27.06.2008 (0)
  11. Viele Vieren
    Plagegeister aller Art und deren Bekämpfung - 22.06.2008 (3)
  12. Hilfe habe probleme beim löschen von Vieren
    Plagegeister aller Art und deren Bekämpfung - 15.12.2006 (1)
  13. PC Check gegen vieren
    Plagegeister aller Art und deren Bekämpfung - 12.08.2006 (4)
  14. sind das vieren???
    Log-Analyse und Auswertung - 14.03.2005 (5)
  15. Trojaner und Vieren
    Plagegeister aller Art und deren Bekämpfung - 25.01.2005 (16)
  16. eScan ... Trojaner und Vieren auf dem PC
    Log-Analyse und Auswertung - 10.12.2004 (6)
  17. Vieren? Trojaner? Spy? Hilfeeee!!!
    Log-Analyse und Auswertung - 25.09.2004 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Probleme mit Vieren,Betriebssystem 64 bit Win 10 - moin moin erstmall ich hatte letztens ein update gezogen für meine Grafikkarte und danach hatte mein Virenprogramm alarmgeschlagen nachdem ich den scanner habe laufen lassen fand er 12 viren welcher - Probleme mit Vieren,Betriebssystem 64 bit Win 10...
Archiv
Du betrachtest: Probleme mit Vieren,Betriebssystem 64 bit Win 10 auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131