|
Log-Analyse und Auswertung: Facebook Malware, am PC nicht möglich sich bei FB mit irgendeinem Browser einzulogenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
03.05.2016, 15:17 | #1 |
| Facebook Malware, am PC nicht möglich sich bei FB mit irgendeinem Browser einzulogen Huhu ^^ bei mir hat sich ein nerviger Virus eingeschlichen. Folgende Symptome: Auf hxxp://facebook.com gehen, einloggen und dann eine Fehlermeldung bekommen: Your Computer Needs to Be Cleaned Offenbar ist dein Computer von Malware beeinträchtigt. Wir unterstützen dich bei dabei, das Problem zu beheben, um dein Konto zu schützen und zu verhindern, dass sich das Malware-Problem auch auf die Konten deiner Freunde überträgt. Bei Malware handelt es sich um eine Schadsoftware, die versucht, deine persönlichen Informationen zu stehlen und Probleme bei der Nutzung von Facebook zu verursachen. Durch das Klicken auf bzw. das Teilen von Links, die Spam enthalten, kann dein Computer mit Malware infiziert werden. Ich hoffe um schnelle Hilfe, MfG spockyy |
04.05.2016, 10:54 | #2 |
/// TB-Ausbilder | Facebook Malware, am PC nicht möglich sich bei FB mit irgendeinem Browser einzulogen Hallo spockyy
__________________Mein Name ist Timo und ich werde Dir bei deinem Problem behilflich sein.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist immer der sicherste Weg. Wir arbeiten hier alle freiwillig und meist auch nur in unserer Freizeit. Daher kann es bei Antworten zu Verzögerungen kommen. Solltest du innerhalb 48 Std keine Antwort von mir erhalten, dann schreib mit eine PM Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis ich oder jemand vom Team sagt, dass Du clean bist. Führe sämtliche Tools mit administrativen Rechten aus, Vista, Win7,Win8, Win10 User mit Rechtsklick "als Administrator starten". So funktioniert es: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Also die Meldung kommt von Facebook, ist aber keine Facebook Malware Facebook arbeitet mit Kaspersky zusammen und zeigen dir so "verdächtige Aktivitäten" auf/mit deinem Facebook Account an. ZDDK-Kooperationspartner Kaspersky Lab sorgt auch für Facebook-Sicherheit - mimikama. Zuerst denken-dann klicken (ZDDK) Dann lass uns mal schauen: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
04.05.2016, 13:23 | #3 |
| Facebook Malware, am PC nicht möglich sich bei FB mit irgendeinem Browser einzulogen Danke Timo, hier die FRST.txt:
__________________Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:03-05-2016 durchgeführt von FX 6350 (Administrator) auf JAKOB (04-05-2016 14:15:32) Gestartet von C:\Users\FX 6350\Downloads Geladene Profile: FX 6350 (Verfügbare Profile: FX 6350) Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe () C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe (Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (LogMeIn Inc.) D:\Hamach\hamachi-2.exe (LogMeIn, Inc.) D:\Hamach\LMIGuardianSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe () C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe (BlueStack Systems, Inc.) C:\ProgramData\BlueStacksGameManager\BlueStacks.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Frontend.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe (Valve Corporation) D:\Steam\Steam.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe (Valve Corporation) D:\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe (Razer, Inc.) C:\Users\FX 6350\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4866760 2015-11-29] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [591512 2015-11-19] (Razer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-11] (Oracle Corporation) HKLM-x32\...\Run: [GamingMouse] => C:\Program Files (x86)\Drakonia Configurator\hid.exe [246784 2013-03-12] () HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600320 2015-08-13] (Razer Inc) HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [957976 2016-04-26] (BlueStack Systems, Inc.) HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-07-27] (Raptr, Inc) HKLM-x32\...\Run: [GoPro Studio Importer] => C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe [3218184 2015-10-02] (GoPro) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Hamach\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Run: [Steam] => D:\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Run: [Spotify Web Helper] => C:\Users\FX 6350\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2355312 2016-02-07] (Spotify Ltd) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Run: [Spotify] => C:\Users\FX 6350\AppData\Roaming\Spotify\Spotify.exe [8449136 2016-02-07] (Spotify Ltd) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [957976 2016-04-26] (BlueStack Systems, Inc.) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\RunOnce: [Uninstall C:\Users\FX 6350\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\FX 6350\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\MountPoints2: {0f54a211-c341-11e5-827e-e03f4917e0f5} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\MountPoints2: {5a971320-0d30-11e6-8287-e03f4917e0f5} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\MountPoints2: {691962fe-09f7-11e6-8287-e03f4917e0f5} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\MountPoints2: {691966e6-09f7-11e6-8287-e03f4917e0f5} - "F:\HiSuiteDownLoader.exe" ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 Tcpip\..\Interfaces\{f03b64a3-3e02-4665-80bc-d176e4dd3df0}: [DhcpNameServer] 10.0.0.138 Internet Explorer: ================== BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-04-24] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Hamach\bin\ssv.dll => Keine Datei BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-04-24] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Hamach\bin\jp2ssv.dll => Keine Datei BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2015-03-01] (DVDVideoSoft Ltd.) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-04-24] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-24] (Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-04-24] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\FX 6350\AppData\Roaming\Mozilla\Firefox\Profiles\fjrhvqok.default FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [2015-04-23] (EA Digital Illusions CE AB) FF Plugin: @java.com/DTPlugin,version=11.40.2 -> D:\Hamach\bin\dtplugin\npDeployJava1.dll [Keine Datei] FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> D:\Hamach\bin\plugin2\npjp2.dll [Keine Datei] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-04-24] (Microsoft Corporation) FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [2015-04-23] (EA Digital Illusions CE AB) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-04-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-04-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) Chrome: ======= CHR HomePage: Default -> hxxp://www.youtube.com/ CHR StartupUrls: Default -> "hxxp://www.youtube.com/" CHR Profile: C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-01-22] CHR Extension: (Google Präsentationen) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-07] CHR Extension: (BetterTTV) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-07-08] CHR Extension: (Google Docs) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-07] CHR Extension: (Google Drive) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (YouTube) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24] CHR Extension: (Adblock Plus) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-11] CHR Extension: (Steam inventory helper) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-05-02] CHR Extension: (Google-Suche) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Shakes & Fidget) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkoefodofcbbgcknpkidecabkcnfmlaf [2015-12-10] CHR Extension: (Bot of Legends Helper) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\edomagbmjponmdpfhcdbpemjpfghfpal [2016-05-02] CHR Extension: (Google Tabellen) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-07] CHR Extension: (Google Docs Offline) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02] CHR Extension: (Google Mail) - C:\Users\FX 6350\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2015-11-29] () [Datei ist nicht signiert] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1128448 2015-07-27] () R3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417304 2016-04-26] (BlueStack Systems, Inc.) S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.) R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [921112 2016-04-26] (BlueStack Systems, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2838760 2016-04-24] (Microsoft Corporation) R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2015-12-24] (Digital Wave Ltd.) R2 Hamachi2Svc; D:\Hamach\hamachi-2.exe [2550280 2016-04-05] (LogMeIn Inc.) R2 HuaweiHiSuiteService64.exe; C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe [192304 2016-02-16] () S3 Origin Client Service; D:\Origin\OriginClientService.exe [2004488 2015-06-29] (Electronic Arts) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [54272 2015-12-18] (Razer Inc.) [Datei ist nicht signiert] R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] () R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) S3 OverwolfUpdater; "C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2015-07-15] (Advanced Micro Devices) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154168 2016-04-26] (BlueStack Systems) R2 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-04-06] (Bluestack System Inc. ) R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-04-05] (LogMeIn Inc.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-02-16] (Huawei Technologies Co., Ltd.) R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] () R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc) R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.) R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-05-03 15:59 - 2016-05-03 16:00 - 00074925 _____ C:\Users\FX 6350\Downloads\Addition.txt 2016-05-03 15:58 - 2016-05-04 14:15 - 00019366 _____ C:\Users\FX 6350\Downloads\FRST.txt 2016-05-03 15:57 - 2016-05-04 14:15 - 00000000 ____D C:\FRST 2016-05-03 15:55 - 2016-05-03 15:57 - 02377216 _____ (Farbar) C:\Users\FX 6350\Downloads\FRST64.exe 2016-05-03 15:37 - 2016-05-03 15:40 - 00000000 ____D C:\AdwCleaner 2016-05-03 15:37 - 2016-05-03 15:37 - 03615296 _____ C:\Users\FX 6350\Downloads\adwcleaner_5.115.exe 2016-05-03 15:37 - 2016-05-03 15:37 - 03615296 _____ C:\Users\FX 6350\Downloads\adwcleaner_5.115 (1).exe 2016-05-03 15:16 - 2016-05-03 15:16 - 00000000 ____D C:\Users\FX 6350\AppData\Local\Macromedia 2016-05-03 15:15 - 2016-05-03 15:16 - 00000000 ____D C:\ProgramData\BlueStacksGameManager 2016-05-03 15:15 - 2016-05-03 15:15 - 00001742 _____ C:\Users\FX 6350\AppData\Roaming\Microsoft\Windows\Start Menu\BlueStacks.lnk 2016-05-03 15:15 - 2016-05-03 15:15 - 00001718 _____ C:\Users\Public\Desktop\BlueStacks.lnk 2016-05-03 15:14 - 2016-05-03 15:14 - 00000000 ____D C:\Program Files (x86)\BlueStacks 2016-05-03 15:08 - 2016-05-03 15:13 - 312530592 _____ (BlueStack Systems Inc.) C:\Users\FX 6350\Downloads\BlueStacks2_native_34e343aa870e3f923cedd1547da29486.exe 2016-04-28 13:20 - 2016-04-28 13:21 - 02969911 _____ ( ) C:\Users\FX 6350\Downloads\LeagueSharp-update-2.0.14.15 (1).exe 2016-04-26 15:32 - 2016-04-26 15:32 - 00022654 _____ C:\Users\FX 6350\Downloads\Ergebnisliste Triathlon 2013.pdf 2016-04-24 13:16 - 2016-04-24 13:17 - 00000000 ____D C:\ProgramData\HandSetService 2016-04-24 13:16 - 2016-04-24 13:16 - 00000741 _____ C:\Users\Public\Desktop\HiSuite.lnk 2016-04-24 13:16 - 2016-04-24 13:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite 2016-04-24 13:16 - 2016-04-24 13:16 - 00000000 ____D C:\ProgramData\HiSuiteOuc 2016-04-24 13:14 - 2016-02-16 11:04 - 00126592 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_cdcacm.sys 2016-04-24 13:14 - 2016-02-16 11:04 - 00018816 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbccgpfilter.sys 2016-04-24 13:06 - 2016-05-01 17:18 - 00000000 ____D C:\Users\FX 6350\Documents\HiSuite 2016-04-24 13:06 - 2016-04-24 13:17 - 00000000 ____D C:\Users\FX 6350\AppData\Local\HiSuite 2016-04-24 13:06 - 2016-02-16 11:04 - 02152176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll 2016-04-24 13:06 - 2016-02-16 11:04 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfCoInstaller01009.dll 2016-04-24 13:06 - 2016-02-16 11:04 - 01002728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusbcoinstaller2.dll 2016-04-24 13:06 - 2016-02-16 11:04 - 00287232 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbnet.sys 2016-04-24 13:06 - 2016-02-16 11:04 - 00223232 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbmdm.sys 2016-04-24 13:06 - 2016-02-16 11:04 - 00116864 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_usbdev.sys 2016-04-24 13:00 - 2016-05-01 19:42 - 00000000 ____D C:\WINDOWS\LastGood.Tmp 2016-04-24 12:19 - 2016-04-24 12:19 - 02164790 _____ C:\Users\FX 6350\Downloads\HONOR_MultiTool.zip 2016-04-24 12:04 - 2016-04-24 12:04 - 00000000 ____D C:\Users\FX 6350\.android 2016-04-24 12:00 - 2016-04-24 12:00 - 00000944 _____ C:\Users\Public\Desktop\One Click Root.lnk 2016-04-24 12:00 - 2016-04-24 12:00 - 00000944 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One Click Root.lnk 2016-04-24 12:00 - 2016-04-24 12:00 - 00000000 ____D C:\Users\FX 6350\AppData\Local\oneClickRoot 2016-04-24 12:00 - 2016-04-24 12:00 - 00000000 ____D C:\Users\FX 6350\AppData\Local\AWSToolkit 2016-04-24 12:00 - 2016-04-24 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One Click Root 2016-04-24 12:00 - 2016-04-24 12:00 - 00000000 ____D C:\Program Files (x86)\ClockworkMod 2016-04-24 11:59 - 2016-04-24 11:59 - 00000000 ____D C:\Users\FX 6350\AppData\Roaming\One Click Root 2016-04-24 11:42 - 2016-04-24 11:59 - 19251376 _____ (One Click Root) C:\Users\FX 6350\Downloads\OneClickRoot.exe 2016-04-23 17:38 - 2016-04-23 17:38 - 00001247 _____ C:\Users\FX 6350\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CNext.lnk 2016-04-23 17:33 - 2016-04-23 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings 2016-04-23 17:28 - 2016-03-29 10:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2016-04-23 17:28 - 2016-03-29 09:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll 2016-04-23 17:28 - 2016-03-29 09:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2016-04-23 17:27 - 2016-04-02 06:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2016-04-23 17:27 - 2016-04-02 06:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll 2016-04-23 17:27 - 2016-04-02 05:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2016-04-23 17:27 - 2016-04-02 05:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2016-04-23 17:27 - 2016-04-02 05:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll 2016-04-23 17:27 - 2016-04-02 05:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll 2016-04-23 17:27 - 2016-04-02 05:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll 2016-04-23 17:27 - 2016-04-02 05:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2016-04-23 17:27 - 2016-04-02 05:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2016-04-23 17:27 - 2016-03-29 12:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll 2016-04-23 17:27 - 2016-03-29 12:11 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2016-04-23 17:27 - 2016-03-29 12:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2016-04-23 17:27 - 2016-03-29 11:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-04-23 17:27 - 2016-03-29 11:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-04-23 17:27 - 2016-03-29 11:28 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2016-04-23 17:27 - 2016-03-29 11:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-04-23 17:27 - 2016-03-29 11:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys 2016-04-23 17:27 - 2016-03-29 11:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll 2016-04-23 17:27 - 2016-03-29 11:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2016-04-23 17:27 - 2016-03-29 11:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2016-04-23 17:27 - 2016-03-29 11:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-04-23 17:27 - 2016-03-29 11:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-04-23 17:27 - 2016-03-29 11:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe 2016-04-23 17:27 - 2016-03-29 11:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll 2016-04-23 17:27 - 2016-03-29 11:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll 2016-04-23 17:27 - 2016-03-29 11:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2016-04-23 17:27 - 2016-03-29 11:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll 2016-04-23 17:27 - 2016-03-29 10:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-04-23 17:27 - 2016-03-29 10:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-04-23 17:27 - 2016-03-29 10:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2016-04-23 17:27 - 2016-03-29 10:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll 2016-04-23 17:27 - 2016-03-29 10:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-04-23 17:27 - 2016-03-29 10:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll 2016-04-23 17:27 - 2016-03-29 10:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll 2016-04-23 17:27 - 2016-03-29 10:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll 2016-04-23 17:27 - 2016-03-29 10:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2016-04-23 17:27 - 2016-03-29 10:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys 2016-04-23 17:27 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2016-04-23 17:27 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll 2016-04-23 17:27 - 2016-03-29 10:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2016-04-23 17:27 - 2016-03-29 10:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll 2016-04-23 17:27 - 2016-03-29 10:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll 2016-04-23 17:27 - 2016-03-29 10:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2016-04-23 17:27 - 2016-03-29 10:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll 2016-04-23 17:27 - 2016-03-29 10:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2016-04-23 17:27 - 2016-03-29 10:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe 2016-04-23 17:27 - 2016-03-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll 2016-04-23 17:27 - 2016-03-29 09:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2016-04-23 17:27 - 2016-03-29 09:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2016-04-23 17:27 - 2016-03-29 09:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2016-04-23 17:27 - 2016-03-29 09:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2016-04-23 17:27 - 2016-03-29 09:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2016-04-23 17:27 - 2016-03-29 09:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll 2016-04-23 17:27 - 2016-03-29 09:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2016-04-23 17:27 - 2016-03-29 09:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys 2016-04-23 17:27 - 2016-03-29 09:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll 2016-04-23 17:27 - 2016-03-29 09:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll 2016-04-23 17:27 - 2016-03-29 09:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe 2016-04-23 17:27 - 2016-03-29 09:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll 2016-04-23 17:27 - 2016-03-29 09:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll 2016-04-23 17:27 - 2016-03-29 09:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll 2016-04-23 17:27 - 2016-03-29 09:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2016-04-23 17:27 - 2016-03-29 09:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2016-04-23 17:27 - 2016-03-29 09:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll 2016-04-23 17:27 - 2016-03-29 09:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll 2016-04-23 17:27 - 2016-03-29 09:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2016-04-23 17:27 - 2016-03-29 09:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-04-23 17:27 - 2016-03-29 09:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2016-04-23 17:27 - 2016-03-29 09:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll 2016-04-23 17:27 - 2016-03-29 09:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll 2016-04-23 17:27 - 2016-03-29 09:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys 2016-04-23 17:27 - 2016-03-29 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll 2016-04-23 17:27 - 2016-03-29 09:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys 2016-04-23 17:27 - 2016-03-29 09:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2016-04-23 17:27 - 2016-03-29 09:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-04-23 17:27 - 2016-03-29 09:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-04-23 17:27 - 2016-03-29 09:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2016-04-23 17:27 - 2016-03-29 09:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2016-04-23 17:27 - 2016-03-29 09:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll 2016-04-23 17:27 - 2016-03-29 09:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2016-04-23 17:27 - 2016-03-29 09:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2016-04-23 17:27 - 2016-03-29 09:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll 2016-04-23 17:27 - 2016-03-29 09:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-04-23 17:27 - 2016-03-29 09:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll 2016-04-23 17:27 - 2016-03-29 09:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll 2016-04-23 17:27 - 2016-03-29 09:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll 2016-04-23 17:27 - 2016-03-29 09:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll 2016-04-23 17:27 - 2016-03-29 09:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2016-04-23 17:27 - 2016-03-29 09:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2016-04-23 17:27 - 2016-03-29 09:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll 2016-04-23 17:27 - 2016-03-29 09:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll 2016-04-23 17:27 - 2016-03-29 09:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2016-04-23 17:27 - 2016-03-29 09:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-04-23 17:27 - 2016-03-29 09:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2016-04-23 17:27 - 2016-03-29 09:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2016-04-23 17:27 - 2016-03-29 09:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2016-04-23 17:27 - 2016-03-29 09:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll 2016-04-23 17:27 - 2016-03-29 09:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-04-23 17:27 - 2016-03-29 09:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-04-23 17:27 - 2016-03-29 09:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll 2016-04-23 17:27 - 2016-03-29 09:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2016-04-23 17:27 - 2016-03-29 09:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll 2016-04-23 17:27 - 2016-03-29 09:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-04-23 17:27 - 2016-03-29 09:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-04-23 17:27 - 2016-03-29 09:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll 2016-04-23 17:27 - 2016-03-29 09:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe 2016-04-23 17:27 - 2016-03-29 09:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2016-04-23 17:27 - 2016-03-29 09:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll 2016-04-23 17:27 - 2016-03-29 09:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys 2016-04-23 17:27 - 2016-03-29 09:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2016-04-23 17:27 - 2016-03-29 09:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2016-04-23 17:27 - 2016-03-29 09:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll 2016-04-23 17:27 - 2016-03-29 09:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2016-04-23 17:27 - 2016-03-29 08:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2016-04-23 17:27 - 2016-03-29 08:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe 2016-04-23 17:27 - 2016-03-29 08:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll 2016-04-23 17:27 - 2016-03-29 08:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll 2016-04-23 17:27 - 2016-03-29 08:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-04-23 17:27 - 2016-03-29 08:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2016-04-23 17:27 - 2016-03-29 08:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll 2016-04-23 17:27 - 2016-03-29 08:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll 2016-04-23 17:27 - 2016-03-29 08:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll 2016-04-23 17:27 - 2016-03-29 08:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-04-23 17:27 - 2016-03-29 08:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2016-04-23 17:27 - 2016-03-29 08:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-04-23 17:27 - 2016-03-29 08:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-04-23 17:27 - 2016-03-29 08:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll 2016-04-23 17:27 - 2016-03-29 08:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2016-04-23 17:27 - 2016-03-29 08:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll 2016-04-23 17:27 - 2016-03-29 08:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll 2016-04-23 17:27 - 2016-03-29 08:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2016-04-23 17:27 - 2016-03-29 08:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2016-04-23 17:27 - 2016-03-29 08:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll 2016-04-23 17:27 - 2016-03-29 08:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2016-04-23 17:27 - 2016-03-29 08:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-04-23 17:27 - 2016-03-29 08:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2016-04-23 17:27 - 2016-03-29 08:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2016-04-23 17:27 - 2016-03-29 08:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll 2016-04-23 17:27 - 2016-03-29 08:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-04-23 17:27 - 2016-03-29 08:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2016-04-23 17:27 - 2016-03-29 08:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-04-23 17:27 - 2016-03-29 08:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2016-04-23 17:27 - 2016-03-29 07:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2016-04-23 17:27 - 2016-03-29 07:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2016-04-23 17:27 - 2016-03-29 07:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll 2016-04-23 17:27 - 2016-03-29 07:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll 2016-04-23 17:27 - 2016-03-29 07:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2016-04-23 17:27 - 2016-03-29 07:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2016-04-23 17:27 - 2016-03-29 07:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll 2016-04-23 17:26 - 2016-04-02 06:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2016-04-23 17:26 - 2016-04-02 06:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2016-04-23 17:26 - 2016-04-02 05:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-04-23 17:26 - 2016-04-02 05:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2016-04-23 17:26 - 2016-04-02 05:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2016-04-23 17:26 - 2016-03-29 12:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-04-23 17:26 - 2016-03-29 12:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-04-23 17:26 - 2016-03-29 12:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-23 17:26 - 2016-03-29 12:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-04-23 17:26 - 2016-03-29 12:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-04-23 17:26 - 2016-03-29 12:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2016-04-23 17:26 - 2016-03-29 12:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2016-04-23 17:26 - 2016-03-29 11:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-04-23 17:26 - 2016-03-29 11:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2016-04-23 17:26 - 2016-03-29 10:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2016-04-23 17:26 - 2016-03-29 10:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2016-04-23 17:26 - 2016-03-29 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2016-04-23 17:26 - 2016-03-29 10:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2016-04-23 17:26 - 2016-03-29 09:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll 2016-04-23 17:26 - 2016-03-29 09:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll 2016-04-23 17:26 - 2016-03-29 09:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2016-04-23 17:26 - 2016-03-29 09:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-04-23 17:26 - 2016-03-29 09:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2016-04-23 17:26 - 2016-03-29 09:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll 2016-04-23 17:26 - 2016-03-29 09:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2016-04-23 17:26 - 2016-03-29 09:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-04-23 17:26 - 2016-03-29 09:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll 2016-04-23 17:26 - 2016-03-29 09:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll 2016-04-23 17:26 - 2016-03-29 09:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2016-04-23 17:26 - 2016-03-29 09:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2016-04-23 17:26 - 2016-03-29 09:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-04-23 17:26 - 2016-03-29 09:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll 2016-04-23 17:26 - 2016-03-29 09:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll 2016-04-23 17:26 - 2016-03-29 09:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2016-04-23 17:26 - 2016-03-29 09:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2016-04-23 17:26 - 2016-03-29 09:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-04-23 17:26 - 2016-03-29 09:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2016-04-23 17:26 - 2016-03-29 09:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll 2016-04-23 17:26 - 2016-03-29 08:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2016-04-23 17:26 - 2016-03-29 08:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll 2016-04-23 17:26 - 2016-03-29 08:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2016-04-23 17:26 - 2016-03-29 08:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll 2016-04-23 17:26 - 2016-03-29 08:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-04-23 17:26 - 2016-03-29 08:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-04-23 17:26 - 2016-03-29 08:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2016-04-23 17:26 - 2016-03-29 08:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2016-04-23 17:26 - 2016-03-29 08:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-04-23 17:26 - 2016-03-29 08:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-04-23 17:26 - 2016-03-29 08:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-04-23 17:26 - 2016-03-29 08:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll 2016-04-23 17:26 - 2016-03-29 08:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll 2016-04-23 17:26 - 2016-03-29 08:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-04-23 17:26 - 2016-03-29 08:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-04-23 17:26 - 2016-03-29 08:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll 2016-04-23 17:26 - 2016-03-29 07:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2016-04-23 17:26 - 2016-03-29 07:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2016-04-23 17:26 - 2016-03-29 07:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2016-04-23 17:26 - 2016-03-29 07:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2016-04-23 17:26 - 2016-03-29 07:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2016-04-23 17:25 - 2016-04-02 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-04-23 17:25 - 2016-04-02 05:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-04-23 17:25 - 2016-04-02 05:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2016-04-23 17:25 - 2016-04-02 05:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll 2016-04-23 17:25 - 2016-04-02 05:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-04-23 17:25 - 2016-04-02 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-04-23 17:25 - 2016-03-29 12:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2016-04-23 17:25 - 2016-03-29 12:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-04-23 17:25 - 2016-03-29 12:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2016-04-23 17:25 - 2016-03-29 11:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2016-04-23 17:25 - 2016-03-29 10:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2016-04-23 17:25 - 2016-03-29 09:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2016-04-23 17:25 - 2016-03-29 09:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2016-04-23 17:25 - 2016-03-29 09:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-04-23 17:25 - 2016-03-29 09:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2016-04-23 17:25 - 2016-03-29 09:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2016-04-23 17:25 - 2016-03-29 09:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2016-04-23 17:25 - 2016-03-29 09:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2016-04-23 17:25 - 2016-03-29 09:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-04-23 17:25 - 2016-03-29 09:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2016-04-23 17:25 - 2016-03-29 09:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll 2016-04-23 17:25 - 2016-03-29 09:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-04-23 17:25 - 2016-03-29 09:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2016-04-23 17:25 - 2016-03-29 09:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll 2016-04-23 17:25 - 2016-03-29 08:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-04-23 17:25 - 2016-03-29 08:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-04-23 17:25 - 2016-03-29 08:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll 2016-04-23 17:25 - 2016-03-29 08:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-04-23 17:25 - 2016-03-29 08:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll 2016-04-23 17:25 - 2016-03-29 08:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll 2016-04-23 17:25 - 2016-03-29 08:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2016-04-23 17:25 - 2016-03-29 08:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-04-23 17:25 - 2016-03-29 08:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll 2016-04-23 17:25 - 2016-03-29 08:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2016-04-23 17:25 - 2016-03-29 08:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-04-23 17:25 - 2016-03-29 08:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2016-04-23 17:25 - 2016-03-29 08:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2016-04-23 17:25 - 2016-03-29 08:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2016-04-23 17:25 - 2016-03-29 08:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll 2016-04-23 17:25 - 2016-03-29 08:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-04-23 17:25 - 2016-03-29 08:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2016-04-23 17:25 - 2016-03-29 08:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2016-04-23 17:25 - 2016-03-29 08:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll 2016-04-23 17:25 - 2016-03-29 08:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-04-23 17:25 - 2016-03-29 08:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-04-23 17:25 - 2016-03-29 08:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll 2016-04-23 17:25 - 2016-03-29 08:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll 2016-04-23 17:25 - 2016-03-29 08:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2016-04-23 17:25 - 2016-03-29 07:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-04-23 17:25 - 2016-03-29 07:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-04-23 17:24 - 2016-04-02 05:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-04-23 17:24 - 2016-04-02 05:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-04-23 17:24 - 2016-04-02 05:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-04-23 17:24 - 2016-03-29 09:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-04-23 17:24 - 2016-03-29 08:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-04-23 17:24 - 2016-03-29 08:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2016-04-23 17:24 - 2016-03-29 08:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-04-23 17:24 - 2016-03-29 08:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-04-23 17:24 - 2016-03-29 08:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-04-23 17:24 - 2016-03-29 08:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-04-23 17:24 - 2016-03-29 08:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-04-23 17:24 - 2016-03-29 07:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-04-23 17:24 - 2016-03-29 07:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-04-23 17:24 - 2016-03-29 07:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-04-23 17:24 - 2016-03-29 07:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-04-23 17:24 - 2016-03-29 07:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-04-23 17:24 - 2016-03-29 07:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-04-23 17:24 - 2016-03-29 07:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-04-23 17:24 - 2016-03-29 07:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-04-23 17:24 - 2016-03-29 07:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-04-23 17:24 - 2016-03-29 07:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-04-23 17:24 - 2016-03-29 07:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-04-23 17:24 - 2016-03-29 07:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-04-23 17:24 - 2016-03-29 07:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 49993192 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 41519600 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 31385584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 27604976 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 25848808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 22357488 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 15720424 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 14310896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 06651888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 05232624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00950256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00950256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00873960 _____ (AMD) C:\WINDOWS\system32\coinst_15.30.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00686576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00571368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00375784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00232424 _____ C:\WINDOWS\system32\dgtrayicon.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00203760 _____ C:\WINDOWS\system32\hsa-thunk64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00199664 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00183272 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00170992 _____ C:\WINDOWS\system32\atieah64.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00166376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00154096 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00151016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00136168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00122344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00104944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00097776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00097776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00089584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00084464 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00078832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00078832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00068080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00060912 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00059880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe 2016-04-22 17:52 - 2016-04-22 17:52 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00057840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00052200 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00040432 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2016-04-22 17:52 - 2016-04-22 17:52 - 00012776 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 10338984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 08426344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00471320 _____ C:\WINDOWS\system32\amdmiracast.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00151936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00128536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00081168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2016-04-22 17:50 - 2016-04-22 17:50 - 00081168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2016-04-13 20:48 - 2016-04-13 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2016-04-11 11:39 - 2016-04-11 11:39 - 00000000 ____D C:\Users\FX 6350\AppData\Local\Bluestacks 2016-04-11 09:46 - 2016-04-11 09:46 - 00000000 ____D C:\Users\FX 6350\Documents\Diablo III 2016-04-10 20:30 - 2016-04-10 20:30 - 00000704 _____ C:\Users\Public\Desktop\Diablo III.lnk 2016-04-10 20:30 - 2016-04-10 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III 2016-04-05 18:26 - 2016-04-05 18:26 - 00006127 _____ C:\Users\FX 6350\Downloads\PSK_Umsatzliste_20160405_1826.csv 2016-04-05 16:14 - 2016-04-05 16:14 - 00045680 _____ (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2016-04-05 15:06 - 2016-04-05 15:06 - 00016092 _____ C:\Users\FX 6350\Downloads\Kontoauszug_BAWAG_P.S.K._AT596000080316088620_2016_001.pdf 2016-04-05 15:05 - 2016-04-05 15:05 - 00016373 _____ C:\Users\FX 6350\Downloads\Kontoauszug_BAWAG_P.S.K._AT576000080310150219_2016_001.pdf 2016-04-04 20:40 - 2016-04-06 19:38 - 00000000 ____D C:\Users\FX 6350\AppData\Roaming\LS5E909C5 2016-04-04 20:39 - 2016-04-04 20:39 - 00000000 ____D C:\ProgramData\VsTelemetry 2016-04-04 20:38 - 2016-04-04 20:38 - 02969911 _____ ( ) C:\Users\FX 6350\Downloads\LeagueSharp-update-2.0.14.15.exe 2016-04-04 17:58 - 2016-04-02 18:41 - 05104632 _____ C:\Users\FX 6350\Desktop\iw4mp.exe 2016-04-04 17:33 - 2016-04-04 17:33 - 00009216 _____ (Microsoft) C:\Users\FX 6350\Desktop\SpamBot.exe 2016-04-04 16:41 - 2016-04-04 16:42 - 43328907 _____ C:\Users\FX 6350\Downloads\BigFatHev.zip 2016-04-04 16:41 - 2016-04-04 16:41 - 00954576 _____ C:\Users\FX 6350\Downloads\BIG FAT HEV - MARK IV.lua 2016-04-04 16:37 - 2016-04-04 16:38 - 41420685 _____ C:\Users\FX 6350\Downloads\BigFatSprites.zip 2016-04-04 16:37 - 2016-04-04 16:37 - 00000009 _____ C:\Users\FX 6350\Downloads\newLua.lua 2016-04-04 16:20 - 2016-04-04 16:20 - 00125017 _____ C:\Users\FX 6350\Downloads\HR Yasuo.lua 2016-04-04 16:19 - 2016-04-04 16:19 - 00120380 _____ C:\Users\FX 6350\Downloads\SxOrbWalk.lua 2016-04-04 16:19 - 2016-04-04 16:19 - 00065405 _____ C:\Users\FX 6350\Downloads\VPrediction.lua 2016-04-04 11:04 - 2016-04-04 11:04 - 00010072 _____ C:\Users\FX 6350\Downloads\cod6hook 1.3_mpgh.net.rar 2016-04-04 11:02 - 2016-04-04 11:02 - 00026624 _____ C:\Users\FX 6350\Downloads\[www.OldSchoolHack.me]_iw4m hook 2.6.dll ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-05-04 14:14 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-05-04 14:12 - 2015-03-07 20:15 - 00001120 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-05-03 16:55 - 2015-03-07 20:15 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-05-03 15:50 - 2015-09-26 19:41 - 00002323 _____ C:\Users\FX 6350\Desktop\Chrome App Launcher.lnk 2016-05-03 15:48 - 2015-10-30 20:35 - 00785530 _____ C:\WINDOWS\system32\perfh007.dat 2016-05-03 15:48 - 2015-10-30 20:35 - 00159746 _____ C:\WINDOWS\system32\perfc007.dat 2016-05-03 15:48 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF 2016-05-03 15:48 - 2015-09-27 09:17 - 01826404 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-05-03 15:48 - 2015-04-19 17:38 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2016-05-03 15:45 - 2015-12-16 05:08 - 00000000 ____D C:\ProgramData\AMD 2016-05-03 15:44 - 2015-03-15 11:47 - 00000000 ____D C:\Users\FX 6350\AppData\Local\LogMeIn Hamachi 2016-05-03 15:42 - 2015-12-16 05:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-05-03 15:41 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2016-05-03 15:36 - 2015-03-15 19:44 - 00000000 ____D C:\Users\FX 6350\AppData\Roaming\Skype 2016-05-03 15:14 - 2015-10-30 09:24 - 00000000 __RHD C:\Users\Public\Libraries 2016-05-02 21:48 - 2015-12-16 05:11 - 00000000 ____D C:\Users\FX 6350 2016-05-02 21:25 - 2014-06-23 15:37 - 00000000 ____D C:\Users\FX 6350\Desktop\hackin 2016-05-02 21:03 - 2015-03-07 20:16 - 00002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-05-02 20:09 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps 2016-05-02 20:09 - 2015-03-07 20:10 - 00000000 ____D C:\Users\FX 6350\AppData\Local\Packages 2016-04-30 21:23 - 2016-01-09 02:47 - 00000000 ____D C:\Users\FX 6350\Desktop\Pics vom Phone 2016-04-26 15:32 - 2015-03-10 14:55 - 00000000 ____D C:\Users\FX 6350\AppData\Roaming\TS3Client 2016-04-26 10:58 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache 2016-04-24 13:06 - 2015-03-07 20:10 - 00000000 ____D C:\Users\FX 6350\AppData\Local\VirtualStore 2016-04-24 10:36 - 2015-12-16 05:04 - 00581408 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-04-23 19:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2016-04-23 19:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-04-23 19:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2016-04-23 19:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr 2016-04-23 17:33 - 2015-12-16 05:08 - 00000000 ____D C:\ProgramData\Package Cache 2016-04-23 17:33 - 2015-12-16 05:07 - 00000000 ____D C:\Program Files\AMD 2016-04-23 17:33 - 2015-07-12 11:58 - 00000000 ____D C:\Users\FX 6350\AppData\Local\AMD 2016-04-23 17:33 - 2015-03-07 20:28 - 00000000 ____D C:\Program Files (x86)\AMD 2016-04-23 17:32 - 2015-12-16 05:08 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2016-04-23 17:31 - 2015-03-05 20:14 - 00000000 ____D C:\AMD 2016-04-23 17:30 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-04-22 17:52 - 2015-10-22 19:57 - 23969776 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys 2016-04-22 17:52 - 2015-10-22 19:57 - 01281512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2016-04-22 17:52 - 2015-10-22 19:57 - 00679912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys 2016-04-22 17:52 - 2015-10-22 19:57 - 00561136 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2016-04-22 17:52 - 2015-10-22 19:57 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2016-04-22 17:52 - 2015-10-22 19:57 - 00254960 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe 2016-04-22 17:50 - 2015-12-16 21:06 - 00120168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 13313512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 11011528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 10919072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 09158464 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 09105520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 08168824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 01519200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 01249632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 00162744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 00143048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 00130584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll 2016-04-22 17:50 - 2015-10-22 19:57 - 00112368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll 2016-04-22 17:28 - 2015-06-23 10:09 - 00000000 ____D C:\Users\FX 6350\AppData\Roaming\Bioshock 2016-04-22 09:57 - 2015-03-09 15:43 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2016-04-14 15:24 - 2015-03-13 14:48 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-04-14 15:20 - 2015-03-13 14:48 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-04-13 20:52 - 2015-04-29 17:31 - 00000000 ____D C:\Users\FX 6350\AppData\Local\ElevatedDiagnostics 2016-04-13 20:45 - 2016-01-08 15:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-04-13 20:44 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2016-04-12 07:20 - 2015-07-27 09:21 - 00095400 _____ (Razer Inc) C:\WINDOWS\system32\RazerCoinstaller.dll 2016-04-11 13:32 - 2015-04-29 14:40 - 00000000 ____D C:\Users\FX 6350\AppData\Local\Battle.net 2016-04-10 18:24 - 2015-03-15 19:44 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-04-10 18:24 - 2015-03-15 19:44 - 00000000 ____D C:\ProgramData\Skype 2016-04-06 20:32 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-04-06 20:32 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-04-04 20:39 - 2015-12-16 04:56 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-04-04 20:39 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-04-04 16:23 - 2016-04-02 20:58 - 00000000 ____D C:\Users\FX 6350\AppData\Roaming\BoL 2016-04-04 11:05 - 2016-04-02 18:42 - 00000000 ____D C:\Users\FX 6350\Desktop\JKULN;- E ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-03-21 16:04 - 2015-03-21 16:04 - 0000095 _____ () C:\Users\FX 6350\AppData\Local\fusioncache.dat 2016-02-06 20:33 - 2016-02-06 20:33 - 0000017 _____ () C:\Users\FX 6350\AppData\Local\resmon.resmoncfg 2015-09-14 16:57 - 2015-10-01 18:32 - 0000016 _____ () C:\ProgramData\mntemp 2015-09-14 16:57 - 2015-09-14 16:57 - 0004105 _____ () C:\ProgramData\wmzddnmb.cix Einige Dateien in TEMP: ==================== C:\Users\FX 6350\AppData\Local\Temp\0Kraken71ChromaDevProps.dll C:\Users\FX 6350\AppData\Local\Temp\DseShExt-x64.dll C:\Users\FX 6350\AppData\Local\Temp\DseShExt-x86.dll C:\Users\FX 6350\AppData\Local\Temp\libeay32.dll C:\Users\FX 6350\AppData\Local\Temp\msvcr120.dll C:\Users\FX 6350\AppData\Local\Temp\SDShelEx-win32.dll C:\Users\FX 6350\AppData\Local\Temp\SDShelEx-x64.dll C:\Users\FX 6350\AppData\Local\Temp\SkypeSetup.exe C:\Users\FX 6350\AppData\Local\Temp\sqlite3.dll C:\Users\FX 6350\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-04-26 10:46 ==================== Ende von FRST.txt ============================ |
04.05.2016, 13:24 | #4 |
| Facebook Malware, am PC nicht möglich sich bei FB mit irgendeinem Browser einzulogen Und die Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:03-05-2016 durchgeführt von FX 6350 (2016-05-03 15:59:33) Gestartet von C:\Users\FX 6350\Downloads Windows 10 Home Version 1511 (X64) (2015-12-16 03:29:45) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1442891826-1525247849-1935013076-500 - Administrator - Disabled) ASPNET (S-1-5-21-1442891826-1525247849-1935013076-1004 - Limited - Enabled) DefaultAccount (S-1-5-21-1442891826-1525247849-1935013076-503 - Limited - Disabled) FX 6350 (S-1-5-21-1442891826-1525247849-1935013076-1000 - Administrator - Enabled) => C:\Users\FX 6350 Gast (S-1-5-21-1442891826-1525247849-1935013076-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1442891826-1525247849-1935013076-1003 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) «Borderlands The Pre-Sequel» 1.0.7.0 (HKLM-x32\...\«Borderlands The Pre-Sequel»_is1) (Version: 1.0.7.0 - Take-Two Interactive Software, Inc) µTorrent (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.) AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games) AMD Catalyst Install Manager (HKLM\...\{572C982F-95F5-0562-AE8F-8A9D7D024A88}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) AVG (HKLM\...\AvgZen) (Version: 1.3.1.13616 - AVG Technologies) AVG Zen (Version: 1.3.3 - AVG Technologies) Hidden Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.8.9046 - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.0 - EA Digital Illusions CE AB) BioShock (HKLM-x32\...\Steam App 7670) (Version: - 2K Boston) BioShock 2 (HKLM-x32\...\Steam App 8850) (Version: - 2K Marin) BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version: - Irrational Games) BlueStacks App Player (HKLM-x32\...\{AA655366-D323-404D-AA9B-AD562CAE1DD0}) (Version: 2.2.21.6212 - BlueStack Systems, Inc.) Brick-Force (HKLM-x32\...\{9853ABB2-6416-4C87-8650-DD8E528FF564}}_is1) (Version: 4.4.395.134.21 - Infernum Productions AG) Brick-Force (HKLM-x32\...\Steam App 335330) (Version: - Exe Games Inc.) Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - Treyarch) Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - ) Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - Treyarch) Call of Duty: Modern Warfare 2 - Multiplayer (HKLM\...\Steam App 10190) (Version: - Infinity Ward) Camtasia Studio 8 (HKLM-x32\...\{64CA5C05-4281-434C-A984-3A4FE6411805}) (Version: 8.5.0.1954 - TechSmith Corporation) Catalyst Control Center Next Localization BR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine) Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version: - ) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Crysis (HKLM-x32\...\Steam App 17300) (Version: - Crytek) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) Drakonia Configurator (HKLM-x32\...\{A7B243AA-6D4C-4575-A873-6F01A1EFC5E2}}_is1) (Version: - ) Fallout 4 (HKLM-x32\...\Steam App 377160) (Version: - Bethesda Game Studios) Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: - ) Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version: - Fistful of Frags Team) FMW 1 (Version: 1.4.1 - AVG Technologies) Hidden Football Manager 2015 version 15.3.2 (HKLM-x32\...\{BD2F10CE-5561-4A0A-BD82-EB56E87D4FFB}_is1) (Version: 15.3.2 - SEGA) Free YouTube Download version 3.2.55.301 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.55.301 - DVDVideoSoft Ltd.) Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.0.1224 - DVDVideoSoft Ltd.) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden GoPro App (x32 Version: 5.7.549 - GoPro, Inc.) Hidden GoPro Studio 2.5.7 (HKLM-x32\...\{b996dca2-156c-4d2c-b9a3-59fac08cef33}) (Version: 2.5.7.549 - GoPro, Inc.) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd) IsoBuster 3.7 (HKLM-x32\...\IsoBuster_is1) (Version: 3.7 - Smart Projects) Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.422 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.422 - LogMeIn, Inc.) Hidden LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.1 - LoiLo inc.) LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.4.2 - LoiLo inc) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{B7802BC1-5F76-48D2-A622-98195BD50B87}) (Version: 7.0.2.6 - MAGIX Software GmbH) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden MAGIX Video deluxe 2016 (HKLM\...\MX.{D84259BB-C291-4F1B-B6BD-2097C5FCFF07}) (Version: 15.0.0.62 - MAGIX Software GmbH) MAGIX Video deluxe 2016 (Version: 15.0.0.62 - MAGIX Software GmbH) Hidden MAGIX Video deluxe 2016 Premium (HKLM\...\MX.{B9D9D873-ADDA-4D0C-B691-0F323C6DD62A}) (Version: 15.0.0.62 - MAGIX Software GmbH) MAGIX Video deluxe 2016 Premium (Version: 15.0.0.62 - MAGIX Software GmbH) Hidden Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft Build Tools 2015 (HKLM-x32\...\{d21da0dd-4ba4-4838-ba58-64cf7a77131a}) (Version: 14.0.23107.10 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.6769.2040 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version: - DICE) MorphVOX Junior (HKLM-x32\...\{E6C7380F-15DD-445E-BA02-B7A180BA0A5A}) (Version: 2.8.1 - Screaming Bee) Mortal Kombat X version Update 20 (HKLM-x32\...\Mortal Kombat X_is1) (Version: Update 20 - GMT-MAX.ORG) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Movavi Video Editor 10 (HKLM-x32\...\Movavi Video Editor 10) (Version: 10.3.0 - Movavi) Mozilla Firefox 45.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.4 - Black Tree Gaming) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (Version: 16.0.4266.1003 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.4266.1003 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (Version: 16.0.4266.1003 - Microsoft Corporation) Hidden OMC ModPack Client Version 1.4.1.0 (HKLM-x32\...\{E2F3187C-2B94-486F-8914-E69211487FB6}_is1) (Version: 1.4.1.0 - Odem Mortis) One Click Root (HKLM-x32\...\{5B9840AC-FA2B-4C87-B636-78FF7B4DC963}) (Version: 1.00.0192 - One Click Root) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) Opera Stable 34.0.2036.50 (HKLM-x32\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software) Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.91.246.0 - Overwolf Ltd.) PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version: - Sony Online Entertainment) PlanetSide 2 (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\SOE-PlanetSide 2) (Version: - Sony Online Entertainment) Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.) QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Raptr (HKLM-x32\...\Raptr) (Version: - ) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.2.4 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28188 - Razer Inc.) Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam) Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix) Security Task Manager 2.1d (HKLM-x32\...\Security Task Manager) (Version: 2.1d - Neuber Software) Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version: - Firaxis Games) Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.) Source Filmmaker (HKLM-x32\...\Steam App 1840) (Version: - Valve) Spotify (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Spotify) (Version: 1.0.21.143.g76c19bcd - Spotify AB) Starbound - Glad Giraffe (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Starbound - Glad Giraffe) (Version: - ) StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment) Starion Tactics (HKLM-x32\...\Steam App 312960) (Version: - Corncrow Games) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Steam Customizer (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\Steam Customizer) (Version: 1.00.00.00 - Blumont) Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Binding of Isaac Rebirth 1.0 (HKLM-x32\...\The Binding of Isaac Rebirth 1.0) (Version: 1.0 - Games on Cat-A-Cat.Net) The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios) The Walking Dead Season 1 and 400 Days version The Walking Dead Season 1 and 400 Days (HKLM-x32\...\The Walking Dead Season 1 and 400 Days_is1) (Version: The Walking Dead Season 1 and 400 Days - ) The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD PROJEKT RED) The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version: - CD PROJEKT RED) Time Clickers (HKLM-x32\...\Steam App 385770) (Version: - Proton Studio Inc) Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.10.1 - Electronic Arts) Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod) Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton) Uplay (HKLM-x32\...\Uplay) (Version: 7.4 - Ubisoft) Vegas Pro 13.0 (64-bit) (HKLM\...\{D2FD5391-6A9B-11E4-BBC6-F04DA23A5C58}) (Version: 13.0.428 - Sony) VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden VideoPad Video-Editor (HKLM-x32\...\VideoPad) (Version: 4.02 - NCH Software) Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - ) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) War Thunder (HKLM-x32\...\Steam App 236390) (Version: - Gaijin Entertainment) WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Woodle Tree Adventures (HKLM-x32\...\Steam App 299460) (Version: - Fabio Ferrara) World of Tanks - Common Test (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net) World of Tanks (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) World of Warships (HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-1442891826-1525247849-1935013076-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\FX 6350\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0684CD25-5B46-4AD1-9F44-6277F20CF977} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-07] (Google Inc.) Task: {0824258E-80E3-4C0C-B180-C215496B0AC8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {297DC4F1-6AB0-42DB-A1FC-0EF2FC338D58} - System32\Tasks\Opera scheduled Autoupdate 1433163040 => C:\Program Files (x86)\Opera\launcher.exe Task: {36716A5D-9085-4FC2-BB7C-1A7B27FE3091} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG Task: {3B6BAC9C-6010-41C0-953E-807B1D5D3295} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-04-14] (Microsoft Corporation) Task: {44C042C8-5902-4CE0-A38A-C1C6C391EA83} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe Task: {4DD77603-96DA-4BBE-80E4-40BE6697942C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG Task: {6B3AECF8-5F1F-47C0-A39A-5187866CF6A2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG Task: {7188CDF4-6CE8-453D-B0CA-4A71CAE7D725} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-07] (Google Inc.) Task: {72213696-1072-48EC-861F-91EFF0F3E858} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {8C7A1CB9-5565-412E-8770-E955CCFF2C7D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-04-25] (Microsoft Corporation) Task: {ACA48D82-B494-473E-8DFE-768FB843C8BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {B0DC6DCD-FA5D-43A1-9048-30483E50E800} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-04-24] (Microsoft Corporation) Task: {C96912EB-9CF5-49E1-A682-E745C19516FC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {D255C5CF-A8CD-44BB-81D2-99E82B745C72} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-04-25] (Microsoft Corporation) Task: {D53A9669-AA09-489F-8CF4-64D8A88AC677} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {D77185E0-E9D6-4C6D-A924-5E45469826BD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {DC49ADC3-65DB-4F5E-A9A8-1B662CBAF65C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {E4D8CDCC-6CA5-42A5-9930-7549015C341B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {E9902F15-DB7F-4ACF-ADBC-A55ED6E211AD} - System32\Tasks\{B211CB44-39AC-4631-8A7E-B61C75C3FF8A} => Chrome.exe hxxp://ui.skype.com/ui/0/7.7.64.103/de/abandoninstall?page=tsProgressBar Task: {F385A340-6E10-4AD9-8305-507E85544239} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG Task: {FC911BBF-6565-4590-97F6-6B6EE5EEC06D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-04-24] (Microsoft Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ShortcutWithArgument: C:\Users\FX 6350\Desktop\HONOR_MultiTool\HONOR MultiTool.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /C start /B /D .\Files .\MultiTool.bat ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-04-24 13:16 - 2016-02-16 11:04 - 00192304 _____ () C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe 2016-01-31 16:20 - 2016-04-24 14:24 - 00172224 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll 2015-11-05 02:11 - 2015-11-05 02:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2016-04-23 17:26 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-23 17:26 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-03-15 12:29 - 2016-05-02 20:56 - 08919232 _____ () C:\Program Files\Microsoft Office\root\Office16\1033\GrooveIntlResource.dll 2016-04-23 17:26 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-04-23 17:42 - 2016-04-23 17:42 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2015-12-18 16:03 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-04-23 17:27 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-04-23 17:24 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-04-23 17:25 - 2016-04-02 05:00 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2016-04-23 17:25 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-04-23 17:24 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-04-23 17:26 - 2016-04-02 04:58 - 00529408 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll 2015-10-30 09:18 - 2015-10-30 20:44 - 00037888 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00796160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00961024 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00206336 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00558592 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00397824 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00181248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node 2015-10-30 09:18 - 2015-10-30 20:44 - 00093696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.security.cryptography\bin\NodeRT_Windows_Security_Cryptography.node 2015-10-30 09:18 - 2015-10-30 20:43 - 00200192 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.cortana.pal\bin\NodeRT_Windows_Cortana_PAL.node 2015-06-25 16:34 - 2015-06-25 16:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2015-06-25 16:37 - 2015-06-25 16:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-06-25 16:35 - 2015-06-25 16:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2015-06-25 16:38 - 2015-06-25 16:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-06-25 15:53 - 2015-06-25 15:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll 2015-06-25 15:51 - 2015-06-25 15:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2015-12-21 09:55 - 2015-12-21 09:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe 2015-11-29 23:07 - 2015-11-29 23:07 - 00138752 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe 2015-03-11 20:45 - 2015-12-24 18:34 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll 2015-03-11 20:45 - 2015-12-24 18:34 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll 2015-03-11 20:45 - 2015-12-24 18:34 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll 2015-03-11 20:45 - 2015-12-24 18:34 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll 2015-03-11 20:45 - 2015-12-24 18:34 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll 2015-03-11 20:45 - 2015-12-24 18:34 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll 2016-04-23 17:42 - 2016-04-23 17:42 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-23 17:42 - 2016-04-23 17:42 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2015-12-16 14:41 - 2016-05-03 15:43 - 00619840 _____ () C:\Users\FX 6350\AppData\Local\Temp\0Kraken71ChromaDevProps.dll 2015-03-10 20:08 - 2016-03-11 02:56 - 00783360 _____ () D:\Steam\SDL2.dll 2015-03-10 20:08 - 2015-07-03 18:12 - 04962816 _____ () D:\Steam\v8.dll 2015-03-10 20:08 - 2016-03-31 22:55 - 02549840 _____ () D:\Steam\video.dll 2015-03-10 20:08 - 2016-02-09 01:14 - 02549760 _____ () D:\Steam\libavcodec-56.dll 2015-03-10 20:08 - 2016-02-09 01:14 - 00491008 _____ () D:\Steam\libavformat-56.dll 2015-03-10 20:08 - 2016-02-09 01:14 - 00332800 _____ () D:\Steam\libavresample-2.dll 2015-03-10 20:08 - 2016-02-09 01:14 - 00442880 _____ () D:\Steam\libavutil-54.dll 2015-03-10 20:08 - 2016-02-09 01:14 - 00485888 _____ () D:\Steam\libswscale-3.dll 2015-03-10 20:08 - 2015-07-03 18:12 - 01556992 _____ () D:\Steam\icui18n.dll 2015-03-10 20:08 - 2015-07-03 18:12 - 01187840 _____ () D:\Steam\icuuc.dll 2015-03-10 20:09 - 2016-03-31 22:55 - 00829008 _____ () D:\Steam\bin\chromehtml.DLL 2016-03-12 14:36 - 2016-02-18 00:25 - 00281088 _____ () D:\Steam\openvr_api.dll 2016-04-26 15:40 - 2016-05-03 15:14 - 03306496 _____ () C:\Program Files (x86)\BlueStacks\libGLESv2.dll 2015-11-16 12:48 - 2015-11-16 12:48 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll 2015-03-10 20:09 - 2016-02-09 03:33 - 48400672 _____ () D:\Steam\bin\libcef.dll 2016-01-06 15:10 - 2015-10-06 21:26 - 50656768 _____ () C:\Users\FX 6350\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll 2016-01-06 15:10 - 2015-10-06 21:26 - 01874944 _____ () C:\Users\FX 6350\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll 2016-01-06 15:10 - 2015-10-06 21:26 - 00075264 _____ () C:\Users\FX 6350\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll 2016-05-02 21:02 - 2016-04-28 01:25 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libglesv2.dll 2016-05-02 21:02 - 2016-04-28 01:25 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libegl.dll 2016-05-02 21:02 - 2016-04-28 01:25 - 17536664 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE trusted site: HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\sony.com -> sony.com ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\FX 6350\Downloads\549919.jpg DNS Servers: 10.0.0.138 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "GamingMouse" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKLM\...\StartupApproved\Run32: => "AvgUi" HKLM\...\StartupApproved\Run32: => "AVG_UI" HKLM\...\StartupApproved\Run32: => "Raptr" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "GoPro Studio Importer" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-1442891826-1525247849-1935013076-1000\...\StartupApproved\Run: => "OneDrive" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{B50E19EF-6F77-4024-83D7-4BC2C444F210}] => (Allow) D:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe FirewallRules: [{DD3EBC5D-7033-48EE-AB17-0282F8E88BC0}] => (Allow) D:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe FirewallRules: [{7F327860-7B0B-4DA4-9EAD-A6BEACBB1D58}] => (Allow) D:\Steam\steamapps\common\Brick-Force ROW\InfernumLogin.exe FirewallRules: [{70B431A5-F19D-49BF-9F4E-29E303A9EDE7}] => (Allow) D:\Steam\steamapps\common\Brick-Force ROW\InfernumLogin.exe FirewallRules: [{7EA7D676-90CA-4262-A5E1-62D72AAB09F7}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{2B160507-7C4C-4C70-A762-7D38BA31525B}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{6349D059-7263-49B4-A99B-A95322AD1D7C}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [{31F4076C-2F1F-4362-AFA0-BE3B7177C00B}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [UDP Query User{468AE44F-4123-4BB8-93CA-10175D59BC1B}D:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) D:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe FirewallRules: [TCP Query User{C3A6AAC3-8730-4D92-8A0D-6F90EA00359E}D:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe] => (Allow) D:\program files (x86)\ubisoft\ubisoft game launcher\games\the crew (worldwide)\thecrew.exe FirewallRules: [{82AD900F-BF3E-4F30-96D6-8D25366290CE}] => (Allow) D:\Steam\steamapps\common\WoodleTreeAdventures\WoodleTreeAdventures.exe FirewallRules: [{D8DDFB8C-D64B-43C2-ADDD-B6453FBD40EC}] => (Allow) D:\Steam\steamapps\common\WoodleTreeAdventures\WoodleTreeAdventures.exe FirewallRules: [{9CF9161B-9C4F-463F-BFD0-43370F1FA536}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{E8001BEF-BCC8-43F3-A8D1-9DB54E77215B}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{BE757AF5-60E2-4C80-B0E9-71265FACA635}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\Online\MagixOfa_x64.exe FirewallRules: [{1F1BBD9B-CDEC-4902-BF72-D585AC27F7F6}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\CaptureModule_x64\InstallLauncher.exe FirewallRules: [{CAC31520-7D26-4A8A-BD81-28BD47FEAEF0}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\Videodeluxe.exe FirewallRules: [{FBCD594F-09B7-4390-B66C-CF382694037A}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\MXRestart.exe FirewallRules: [{449DB95E-ED4E-45CB-99BF-18A656B665A4}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\CaptureModule_x64\CaptureModule.exe FirewallRules: [{F2509D36-C3CD-4538-8236-39EE0D18C51D}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\Online\DM\MxDownloadManager.exe FirewallRules: [{D32DBE42-B49B-4786-9B4B-CD9B5DF926CC}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\3d_maker_embeded\X3D.exe FirewallRules: [{FCB8CBA3-6DA6-41A8-BD0B-2DFED2D6D009}] => (Block) C:\Program Files\MAGIX\Video deluxe 2016 Premium\Bridge32_v103.exe FirewallRules: [{F2ACE4C3-A04D-4D59-B56B-909DBD42DB11}] => (Allow) C:\Program Files\MAGIX\Video deluxe 2016 Premium\Videodeluxe.exe FirewallRules: [{65E4F9BA-FA95-4FEF-9FDC-8F32560A402A}] => (Allow) C:\Program Files\MAGIX\Video deluxe 2016\Videodeluxe.exe FirewallRules: [{04D8FBF8-B0A2-4CCD-BF62-C74CFA8F6B45}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{13F5F5AB-5065-4839-822C-C34E03FCFD93}] => (Allow) C:\Program Files (x86)\OMC ModPack Client\OMC ModPack Client.exe FirewallRules: [{7742EFF0-F7C0-433C-90DB-215435D88458}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{B1FC3061-918D-42D4-A162-31525FB06EB5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{D8CC9AB4-1C95-401D-876D-984BB50DB77D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E1840755-C53D-4B7C-9B36-8A5E4D2E8A9C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{CB3157BB-EB3A-4418-9E0D-638800FA0980}C:\users\fx 6350\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fx 6350\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{BE81363F-A5F5-4F9B-B9F8-53C610734C8C}C:\users\fx 6350\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fx 6350\appdata\roaming\spotify\spotify.exe FirewallRules: [{2979F5E9-5494-407A-A63E-11B40652C94D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{FFE5CA0C-3AF8-41AC-AA41-B6711BE3CDEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{68B20173-CFA7-48E2-A519-A1B046712EEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Hexagon\superhexagon.exe FirewallRules: [{C6CCFA58-5AF8-4B44-9C07-DD204F74AF84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Super Hexagon\superhexagon.exe FirewallRules: [{B5EAD7FE-A7A0-4288-BF6D-24820492F2C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{D315547B-7ACC-4DD8-898F-60021838887D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{7A7A7A16-F5C8-459F-9E49-858934B3C366}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe FirewallRules: [{BC29053C-268B-44D7-BD17-152D0290BD0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe FirewallRules: [{6CBE3326-85E5-4C8C-8DC6-4AE0BD9C661E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{B734A903-7EFB-4A9E-9F93-644F8758014F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{DDE16BCA-14B1-4292-900C-E4830BD3F3EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe FirewallRules: [{3E2DF336-C5BA-4AA6-8618-10F7CD19C2DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe FirewallRules: [TCP Query User{D1EBFA27-D9CE-4793-AD8D-CB33225558B7}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{F195C8B0-2B59-489C-811F-00B22F144648}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [TCP Query User{8DFAB752-08BB-4B92-ACA6-0BB606983BB1}D:\games\world_of_tanks\wotlauncher.exe] => (Allow) D:\games\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{7CEC6627-9CA0-4F40-AD03-E9FB94DE81E6}D:\games\world_of_tanks\wotlauncher.exe] => (Allow) D:\games\world_of_tanks\wotlauncher.exe FirewallRules: [{89EAC096-209A-431F-830A-96558FC23FAD}] => (Allow) D:\Games\steamapps\common\PlanetSide 2\LaunchPad.exe FirewallRules: [{CA45CFA7-9E61-4CAC-82CA-C38BC4B1295E}] => (Allow) D:\Games\steamapps\common\PlanetSide 2\LaunchPad.exe FirewallRules: [{4E9F2B54-0B95-469D-8E1A-7A60A845941C}] => (Allow) D:\Games\steamapps\common\War Thunder\launcher.exe FirewallRules: [{A784E2C0-EDBB-497F-BD8E-C55DDC1134C7}] => (Allow) D:\Games\steamapps\common\War Thunder\launcher.exe FirewallRules: [{F61CD9BB-DF2A-45B2-BC15-58639B4881D1}] => (Allow) D:\Games\steamapps\common\Fistful of Frags\sdk\hl2.exe FirewallRules: [{39B9DDA6-8BF6-4F06-AB93-6F4685BAF698}] => (Allow) D:\Games\steamapps\common\Fistful of Frags\sdk\hl2.exe FirewallRules: [TCP Query User{8DBA3C69-6AB2-44CD-B938-08CDB336E84C}D:\games\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\games\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [UDP Query User{923B1EA5-6E6E-4F69-98B3-E898184B5717}D:\games\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\games\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [{DB9ABF1A-BAF4-4FCE-9390-9C8566EA17B1}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{B65B2825-B1F9-4CCA-9881-462F28C136B3}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{60C5F8D7-98BF-49D9-899F-3CB53F01AB6B}] => (Allow) LPort=8317 FirewallRules: [TCP Query User{9BEE4865-C5FD-4A03-ACBC-C9BE3E3F1FCD}C:\users\fx 6350\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fx 6350\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{117490AC-F630-4C57-A2C4-CC9F574B970B}C:\users\fx 6350\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\fx 6350\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{A4F6CD39-1F0B-401D-A48C-7F34A76A3CE9}D:\hamach\bin\javaw.exe] => (Allow) D:\hamach\bin\javaw.exe FirewallRules: [UDP Query User{3C41A1F7-A8AC-454B-8408-3DBD3516C372}D:\hamach\bin\javaw.exe] => (Allow) D:\hamach\bin\javaw.exe FirewallRules: [{B058CE03-DE8E-437E-91B4-968BACCD110C}] => (Block) D:\hamach\bin\javaw.exe FirewallRules: [{78D400E5-4B4D-4834-8578-39A70FD6F0BA}] => (Block) D:\hamach\bin\javaw.exe FirewallRules: [TCP Query User{D59DE430-701C-4064-B292-94B772FCE254}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{7D88D989-DBBB-435E-B7F4-34D363DEF8F3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{E4F3AB2C-2F30-4834-8780-95B415DFEDEF}] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{B0CC53C1-BBB7-4BAA-8848-80778E8E038F}] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{6BF458BA-9989-4210-8D6D-F1568AE57A3B}D:\games\world_of_tanks\worldoftanks.exe] => (Allow) D:\games\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{505276C4-3849-49B4-8296-536716834A2E}D:\games\world_of_tanks\worldoftanks.exe] => (Allow) D:\games\world_of_tanks\worldoftanks.exe FirewallRules: [{70A5BA29-9F65-436E-9649-81AD1F04C7FC}] => (Block) D:\games\world_of_tanks\worldoftanks.exe FirewallRules: [{68D7D939-4882-4453-A59D-EE2D2F0D14DE}] => (Block) D:\games\world_of_tanks\worldoftanks.exe FirewallRules: [TCP Query User{3E0E7313-FC3B-43FC-B607-3D159DE6D213}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{B1ECC838-7532-4870-BE67-E9C7101E6CAD}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [{544D4D6B-A403-4D6A-8747-FD1B7A9858E7}] => (Block) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [{F6CD22ED-047E-46C9-873E-48FA62136DA8}] => (Block) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [{55174D75-0950-4400-8602-3B7CA5F82853}] => (Allow) D:\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe FirewallRules: [{3BCDE942-7FAB-4397-99F4-D74D4BD9D410}] => (Allow) D:\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe FirewallRules: [TCP Query User{9A613644-1C4F-4BB0-9AFB-01291094258E}D:\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [UDP Query User{672A07CA-0BD2-45A6-B6B1-AF36C1CAD4B5}D:\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [{4308D3F3-3EDF-46A3-85C1-56931C68EAE0}] => (Block) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [{58FA7A46-F825-4EC9-A246-746FF11CCFEA}] => (Block) D:\steam\steamapps\common\planetside 2\planetside2_x64.exe FirewallRules: [{D3FF4E45-3242-442E-BCCA-8D3E5CD1EFF2}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{F9BE2790-18D1-4D2D-9C0A-01B96FE449A4}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{1EAD36E5-03E7-40CD-81D4-DA6E8D187CE8}] => (Allow) D:\Steam\steamapps\common\Crysis\Bin32\Crysis.exe FirewallRules: [{BC2A93C9-2E21-4BB6-AFE3-DAB3B2EEC884}] => (Allow) D:\Steam\steamapps\common\Crysis\Bin32\Crysis.exe FirewallRules: [{2AA4BC5A-9022-495A-8CA9-273972B0AADB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{9381A80B-3BF2-415F-A6DA-4B295C4CB687}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{C1FEF1BB-72FE-4686-B48D-B64648D547E9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{BE12008F-0EF0-43F4-AB50-D9E2F9545CE4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{A0D207B0-8CFF-42DC-8B7C-CF2316B149F4}] => (Allow) D:\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{B5172CE6-28FA-4CC7-873E-EA6ED9066362}] => (Allow) D:\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{78E5D3F9-83FF-4B16-AF2F-EF4D51CE6F15}] => (Allow) D:\Steam\steamapps\common\Fistful of Frags\sdk\hl2.exe FirewallRules: [{176C3469-B265-4A44-AFD3-DB77DEEEFBB1}] => (Allow) D:\Steam\steamapps\common\Fistful of Frags\sdk\hl2.exe FirewallRules: [{AD58F83D-437A-443B-A593-1A8FA71A287B}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe FirewallRules: [{1CE59B41-76E1-456C-B534-FA52D7CFBF76}] => (Allow) D:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe FirewallRules: [{F5F81815-C3C4-44F7-B2B1-8E39325077EC}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe FirewallRules: [{04AC9A04-44DB-4FA8-B752-75448014310E}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe FirewallRules: [{CC14BC08-3A39-4C53-9466-11C605DE4E26}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe FirewallRules: [{6FFB214D-A7EE-4A23-8459-E7B254FD8FEF}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe FirewallRules: [{C27DE942-EE44-4EB8-8B15-E3C6B9959A28}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{F83BC3E0-6E5C-43F4-A0C6-F7380FBBE6FF}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{546A59D6-F6DF-4E74-A992-03D6589BD8B7}] => (Allow) D:\Steam\steamapps\common\Super Hexagon\superhexagon.exe FirewallRules: [{FA8BF11C-5299-4912-B4F5-BC71502AAD2D}] => (Allow) D:\Steam\steamapps\common\Super Hexagon\superhexagon.exe FirewallRules: [{418A55EB-4E25-4ADB-88D4-24D109009255}] => (Allow) D:\Battle.net\Battle.net.exe FirewallRules: [{5173BCE3-0AA0-4BFA-943F-B59135EE3CFC}] => (Allow) D:\Battle.net\Battle.net.exe FirewallRules: [{BB48800B-DFD6-4E66-A5CC-AA9488567A7B}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{7A45BEB4-8B1F-4FE4-AD56-23788ECDC4A4}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{34917E1D-C48F-4DEF-B158-0C96790B1B69}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{2BE893F4-3430-41A0-8A47-07D9C6798125}] => (Allow) D:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [TCP Query User{166A0868-C60E-4FB0-B8EE-778F22266F09}D:\steam\steamapps\common\dayz\dayz.exe] => (Block) D:\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{9162ECA6-680C-4FBB-8120-75822EC33DCA}D:\steam\steamapps\common\dayz\dayz.exe] => (Block) D:\steam\steamapps\common\dayz\dayz.exe FirewallRules: [{8CB9AD6F-6AEF-4307-9FEF-1E56AC0604B9}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{3F3E6771-A909-4103-BAF0-356977F7DE29}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{02DC305D-7B04-40F2-AD30-D6977F73218A}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{7E00005F-40C5-42BC-8143-A5526768578A}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{8EC4829E-DB68-43C4-988A-D193F65864F4}] => (Allow) D:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{17A6E357-7B76-42D7-A8B7-6A6589F361DA}] => (Allow) D:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{9B121D55-252E-4521-A2FF-02D896B9C1B9}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{E5A97335-EA6C-47DF-8E3E-AB2E42535319}] => (Allow) D:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [TCP Query User{A3FB3743-24A0-4C6D-BABF-E6CCC18C896B}D:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steam\steamapps\common\terraria\terrariaserver.exe FirewallRules: [UDP Query User{66DD3310-0A1C-4797-B3E8-647C2C18916C}D:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steam\steamapps\common\terraria\terrariaserver.exe FirewallRules: [{D99B1264-5F00-403B-9C30-46C58651757F}] => (Block) D:\steam\steamapps\common\terraria\terrariaserver.exe FirewallRules: [{904ED954-056C-493C-B7A1-AF2534D5C82D}] => (Block) D:\steam\steamapps\common\terraria\terrariaserver.exe FirewallRules: [{A1DCC310-4D99-4183-8D45-58B93C0DFFED}] => (Allow) D:\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe FirewallRules: [{DC7765C3-33F2-498C-BF9A-7548AE3E092B}] => (Allow) D:\Steam\steamapps\common\SourceFilmmaker\game\sfm.exe FirewallRules: [{6EE6F150-C7EB-425F-88D9-1F24BC1AEDC7}] => (Allow) D:\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe FirewallRules: [{E93355F3-323C-4E03-B303-B5090250790F}] => (Allow) D:\Steam\steamapps\common\SourceFilmmaker\game\bin\qsdklauncher.exe FirewallRules: [{9C7D28A8-A0BD-46CA-967C-B9AB9AFF924F}] => (Allow) D:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{D5EE6358-A99C-41EA-84CD-FD14185DD001}] => (Allow) D:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{46BCDAFD-D2C2-4D31-B84D-0B71CF7540AC}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe FirewallRules: [{DAA45833-A4BF-45AE-B583-84AE7DFF10F7}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe FirewallRules: [{08B6A815-54BF-4147-804D-7612F0C2A1BE}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe FirewallRules: [{FC978DB8-1796-44B8-B4DA-0EF6386BC373}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe FirewallRules: [{ACD13E1D-F24F-42A4-8465-2007B420E98F}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe FirewallRules: [{AB929367-022B-439C-9AC1-F46B73171C61}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe FirewallRules: [{EB8E6CD5-490B-4925-B906-10DCDAFB606A}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe FirewallRules: [{897D32BF-2AAB-4F68-8D5F-49813947CA68}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe FirewallRules: [{EE0B9C85-48AE-464C-BB08-317BC18BD51E}] => (Allow) D:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{2F34D9C3-4209-428D-9072-460AB566D10A}] => (Allow) D:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{DFE4894E-D693-4B40-AC6D-7E44BD2C42FB}] => (Allow) D:\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe FirewallRules: [{5D922258-5869-4710-81AB-7C2E8A3E5357}] => (Allow) D:\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe FirewallRules: [{8B568FDF-A810-4EFE-9A6C-427E4B831E80}] => (Allow) D:\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{CA7E25B1-78E9-45E1-9BAA-AB897B1EAC0E}] => (Allow) D:\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{5A306424-85AC-48EE-B8FE-095A016AAB80}] => (Allow) D:\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{5121CC01-F17E-45B7-BD9E-D4F795109988}] => (Allow) D:\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{BEC39E67-8650-4C33-8192-5EC29B913893}] => (Allow) D:\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe FirewallRules: [{CA580F63-32A6-47A9-BA79-9BAAB00FDB71}] => (Allow) D:\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe FirewallRules: [{0E44782C-E90C-4585-AC52-2E90D26780A5}] => (Allow) D:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe FirewallRules: [{79AB36EC-6EBE-44D5-9833-E54BA3E905F5}] => (Allow) D:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe FirewallRules: [TCP Query User{14E8CDFF-69FF-41F6-8C3D-98E575A0B8F9}D:\wow\wowslauncher.exe] => (Allow) D:\wow\wowslauncher.exe FirewallRules: [UDP Query User{B9D5B605-8A8F-4CBF-A092-B9D184EB63E5}D:\wow\wowslauncher.exe] => (Allow) D:\wow\wowslauncher.exe FirewallRules: [{37AB219E-0869-45B8-ABBE-7FB266D797C9}] => (Block) D:\wow\wowslauncher.exe FirewallRules: [{9339274E-A9C0-4BAC-ACAD-4898F96C1738}] => (Block) D:\wow\wowslauncher.exe FirewallRules: [{09391A09-86F3-4979-95F1-4EFC0B54CCE6}] => (Allow) D:\Steam\steamapps\common\Survarium\temp\survarium_launcher.exe FirewallRules: [{F82FA5F6-E0DF-4BAB-9014-C6E375EA7ACD}] => (Allow) D:\Steam\steamapps\common\Survarium\temp\survarium_updater.exe FirewallRules: [{206A8DA0-65E7-42B7-9D22-D0851175B3F0}] => (Allow) D:\Steam\steamapps\common\Survarium\temp\survarium_updater.exe FirewallRules: [{2FC761E7-A48B-4CAC-A055-13111D9826FF}] => (Allow) D:\Steam\steamapps\common\Survarium\temp\survarium_updater.exe FirewallRules: [{C9527FA4-0896-4E7E-9506-10FB16CA2910}] => (Allow) D:\Steam\steamapps\common\Survarium\temp\survarium_updater.exe FirewallRules: [{CCA121F8-353B-47E9-AA41-B15A4473C465}] => (Allow) D:\Steam\steamapps\common\Survarium\game\binaries\x86\survarium.exe FirewallRules: [{3A84AF43-7FD8-41B5-932A-F7CDA4A2E26B}] => (Allow) D:\Steam\steamapps\common\Survarium\game\binaries\x86\survarium.exe FirewallRules: [{B787CEB7-3E1A-4F6A-BCA0-9B6A0DE44EE7}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{A5BCEACE-FEDB-4AE4-AD42-107EF5E58299}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{9B238768-1C02-4842-A482-02E6ECDE59D1}] => (Allow) D:\Games\Wottest\WoTLauncher.exe FirewallRules: [{7C6DE8AE-9CE8-4262-A6BE-2D99FDA24EDE}] => (Allow) D:\Games\Wottest\WorldofTanks.exe FirewallRules: [{CCCA12AA-B4EF-4C0C-B7F1-62F365EF4A23}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{DC8679B5-8C8E-4AC1-B65A-BB96117B0003}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{3B6283B5-4286-4EE4-8B03-8EB1AD8E5C30}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{F3A6F40D-F550-4429-BEF9-99F4C5AD3EDE}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{1EFFF51E-0A7E-4096-997C-C3FA5B49DC50}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{BD9EDA00-14CD-40F7-AF83-551CBE152B9B}] => (Allow) D:\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{25249BB2-DD25-4EBC-A0FB-18157061A3EA}] => (Allow) D:\Steam\steamapps\common\TimeClickers\TimeClickers.exe FirewallRules: [{CC29B42A-EDF2-45FD-A606-8B2292DA7F37}] => (Allow) D:\Steam\steamapps\common\TimeClickers\TimeClickers.exe FirewallRules: [{B5A32CE7-A5EA-436D-871B-BCA544FF8D42}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{489FB8E5-F005-4575-92A5-99751B7874F6}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{6D85619B-9BA1-4807-884A-6B3025663A02}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{B84A166D-F59E-455D-899C-C0DC582470A3}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{F0CAC3BC-1459-4CDF-9E0B-F21295BCE019}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{6122D6B0-DC6F-4997-9544-C39F9D160A6E}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{413E4486-599A-49C7-8C6F-A7C9F33DB428}] => (Allow) D:\Games\Wottest\WoTLauncher.exe FirewallRules: [{A7147F6B-B686-471B-9D3A-6E0766BA8FBD}] => (Allow) D:\Games\Wottest\WorldofTanks.exe FirewallRules: [{45079C54-EC15-4684-86D3-9FAFB306CEED}] => (Allow) D:\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{2490F775-4D51-47FA-9B81-1BD242B4E89E}] => (Allow) D:\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [TCP Query User{E6CD5011-1602-4F18-B163-7466F9A0D156}C:\users\fx 6350\downloads\bitmessage.exe] => (Allow) C:\users\fx 6350\downloads\bitmessage.exe FirewallRules: [UDP Query User{637D07F8-4D84-4CF2-A13A-C4585775F876}C:\users\fx 6350\downloads\bitmessage.exe] => (Allow) C:\users\fx 6350\downloads\bitmessage.exe FirewallRules: [{419F22EA-B5DC-4F54-B17E-4FB80CF43931}] => (Block) C:\users\fx 6350\downloads\bitmessage.exe FirewallRules: [{8F91FE78-6378-45D9-867E-D5F1C68450BB}] => (Block) C:\users\fx 6350\downloads\bitmessage.exe FirewallRules: [{FE4AB9EF-1AD1-4509-9F67-8C3FCECC1550}] => (Allow) D:\Steam\steamapps\common\Starion Tactics\Starion.exe FirewallRules: [{B82B38C4-C12D-4D0E-86A1-60C1560F8AA1}] => (Allow) D:\Steam\steamapps\common\Starion Tactics\Starion.exe FirewallRules: [{D65E5A31-A4A2-415C-B97A-5091C9A61E4F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A0D595C2-D530-497C-9FEE-817CD8EB6725}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{12611F95-2C56-4ACD-BC52-1F47DEB92083}] => (Allow) D:\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe FirewallRules: [{56370A07-FE3C-4923-A517-A1D05E87B7C0}] => (Allow) D:\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe FirewallRules: [{5A44A345-1C86-419B-91E0-67F4A79FEA9B}] => (Allow) C:\Users\FX 6350\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9B059200-D230-498E-9A63-1FC5EA5ADC97}] => (Allow) C:\Users\FX 6350\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A88419A5-7240-4E5B-A7EB-52B356B5E937}] => (Allow) C:\Users\FX 6350\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8FD2BF1A-6CF6-4648-85A0-37AAFEDC6A23}] => (Allow) C:\Users\FX 6350\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9369617B-235E-49E4-8563-02FF25CA8CE7}] => (Allow) C:\Users\FX 6350\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C416BD1F-5221-4BBF-A492-3BD3B6ED30D2}] => (Allow) C:\Users\FX 6350\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{29A84BDB-5A84-4753-90EA-9FB7FD14D741}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{092E14A7-9271-407A-8290-DB7D3082ECFC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{DA972BDF-1CE6-4506-95CA-CA2387B818A1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{6B79417E-AB7A-4018-8349-C8F8E6F6F9CC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{583511B5-EB3D-4615-B011-D0DDA3B8C053}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [TCP Query User{F4C88032-8BF8-4D54-A19D-678B9B56D3AB}D:\games\starbound\win32\starbound_server.exe] => (Allow) D:\games\starbound\win32\starbound_server.exe FirewallRules: [UDP Query User{C95FBC2F-E187-42B1-B4AF-B54BB501B9EE}D:\games\starbound\win32\starbound_server.exe] => (Allow) D:\games\starbound\win32\starbound_server.exe FirewallRules: [TCP Query User{A22D0360-D597-4F0D-B86B-EAE5D3211762}D:\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base39576\sc2_x64.exe FirewallRules: [UDP Query User{FC500021-170A-4CB0-85C5-99B8B539D3FB}D:\starcraft ii\versions\base39576\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base39576\sc2_x64.exe FirewallRules: [TCP Query User{0E4C0EBA-2C4D-4869-AE3B-FB5661D74C3E}D:\starcraft ii\support64\sc2editor_x64.exe] => (Allow) D:\starcraft ii\support64\sc2editor_x64.exe FirewallRules: [UDP Query User{3058C6DF-D905-4B68-959A-27EF6F50E609}D:\starcraft ii\support64\sc2editor_x64.exe] => (Allow) D:\starcraft ii\support64\sc2editor_x64.exe FirewallRules: [{EAAD376E-F8A4-4807-9F5A-466573A8E1F6}] => (Allow) D:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe FirewallRules: [{358D6A33-8FA9-4FEA-9958-A480BA47EEEF}] => (Allow) D:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe FirewallRules: [TCP Query User{65DDB358-ACB5-41CE-AAAD-158943EAD629}D:\starcraft ii\versions\base41743\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base41743\sc2_x64.exe FirewallRules: [UDP Query User{CB39B93A-8B90-4EB2-95E1-84F11C68EF07}D:\starcraft ii\versions\base41743\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base41743\sc2_x64.exe FirewallRules: [TCP Query User{C44F0D23-5BD8-423C-B55F-7B8408334A45}D:\diablo iii\diablo iii.exe] => (Allow) D:\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{468F68CE-AEAC-44C6-97F0-21E7263612DF}D:\diablo iii\diablo iii.exe] => (Allow) D:\diablo iii\diablo iii.exe FirewallRules: [{559933E2-DAD7-4305-8D5A-FD0BDB4E58AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{49713C10-39C4-42F3-A157-4B1B3A73DB8E}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{F95B22CB-69AF-4BDD-B989-D747AA62CFC1}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe ==================== Wiederherstellungspunkte ========================= ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (05/03/2016 03:44:25 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4 Error: (05/03/2016 03:44:13 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: rdyboost4 Error: (05/03/2016 03:44:12 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Error: (05/03/2016 03:44:12 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4 Error: (05/03/2016 03:44:12 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: LsaC:\Windows\System32\Secur32.dll4 Error: (05/03/2016 03:44:12 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: ESENTC:\WINDOWS\system32\esentprf.dll4 Error: (05/03/2016 03:44:12 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll4 Error: (05/03/2016 03:43:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: HiSuite.exe, Version: 51.1.1.6, Zeitstempel: 0x56d7ebb7 Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.1, Zeitstempel: 0x4d5f0c22 Ausnahmecode: 0xc0000417 Fehleroffset: 0x0008af3e ID des fehlerhaften Prozesses: 0x1014 Startzeit der fehlerhaften Anwendung: 0xHiSuite.exe0 Pfad der fehlerhaften Anwendung: HiSuite.exe1 Pfad des fehlerhaften Moduls: HiSuite.exe2 Berichtskennung: HiSuite.exe3 Vollständiger Name des fehlerhaften Pakets: HiSuite.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HiSuite.exe5 Error: (05/03/2016 03:16:08 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4 Error: (05/03/2016 03:16:08 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: rdyboost4 Systemfehler: ============= Error: (05/03/2016 03:45:13 PM) (Source: DCOM) (EventID: 10016) (User: JAKOB) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}JAKOBFX 6350S-1-5-21-1442891826-1525247849-1935013076-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/03/2016 03:45:13 PM) (Source: DCOM) (EventID: 10016) (User: JAKOB) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}JAKOBFX 6350S-1-5-21-1442891826-1525247849-1935013076-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/03/2016 03:45:12 PM) (Source: DCOM) (EventID: 10016) (User: JAKOB) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}JAKOBFX 6350S-1-5-21-1442891826-1525247849-1935013076-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/03/2016 03:45:12 PM) (Source: DCOM) (EventID: 10016) (User: JAKOB) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}JAKOBFX 6350S-1-5-21-1442891826-1525247849-1935013076-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/03/2016 03:45:12 PM) (Source: DCOM) (EventID: 10016) (User: JAKOB) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}JAKOBFX 6350S-1-5-21-1442891826-1525247849-1935013076-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/03/2016 03:45:12 PM) (Source: DCOM) (EventID: 10016) (User: JAKOB) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}JAKOBFX 6350S-1-5-21-1442891826-1525247849-1935013076-1000LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/03/2016 03:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenzugriff_245b85" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (05/03/2016 03:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Benutzerdatenspeicher _245b85" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (05/03/2016 03:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Kontaktdaten_245b85" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (05/03/2016 03:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Synchronisierungshost_245b85" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. CodeIntegrity: =================================== Date: 2016-04-24 10:37:04.744 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-22 16:43:33.389 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-18 15:15:33.194 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-23 00:36:57.239 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-15 16:46:38.769 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-14 16:37:04.558 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-13 19:56:42.231 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-03 12:53:24.523 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-12 17:31:47.320 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-11 11:59:08.405 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Speicherinformationen =========================== Prozessor: AMD FX(tm)-6350 Six-Core Processor Prozentuale Nutzung des RAM: 38% Installierter physikalischer RAM: 8174.11 MB Verfügbarer physikalischer RAM: 5011.79 MB Summe virtueller Speicher: 9454.11 MB Verfügbarer virtueller Speicher: 6025.96 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:149.66 GB) (Free:1.14 GB) NTFS Drive d: () (Fixed) (Total:781.32 GB) (Free:167.87 GB) NTFS Drive e: (Kabarett_Vol_2) (CDROM) (Total:4.32 GB) (Free:0 GB) UDF Drive f: (我的光盘) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9B4C55D3) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=149.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) Partition 4: (Not Active) - (Size=781.3 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt ============================ |
Themen zu Facebook Malware, am PC nicht möglich sich bei FB mit irgendeinem Browser einzulogen |
beheben, browser, computer, einloggen, facebok malware, facebook, facebook virus, fehlermeldung, folge, folgende, freunde, infiziert, klicke, klicken, konten, konto, links, malware, problem, probleme, schnelle, schütze, schützen, spam, teilen, verhindern, versucht, virus |