Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Browser öffnen auf Klick hin adware Seiten

Browser öffnen auf Klick hin adware Seiten


Plagegeister aller Art und deren Bekämpfung: Browser öffnen auf Klick hin adware Seiten

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 2 von 5 1 2 34 Letzte »
Alt 27.05.2016, 20:44   #16
Deathkid535
/// Malwareteam
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Passiert das auch beim normalen Browsern oder nur bei dem Programm was du da verwendest?

Alt 28.05.2016, 00:08   #17
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Vorher ja. Aber das haben sie/du ja anscheinend nach dem Entfernen mit FRST behoben, denn es ist seit dem nichts mehr aufgepoppt.
__________________
Alt 28.05.2016, 00:34   #18
Deathkid535
/// Malwareteam
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Wir sind hier per du. Man hat genug formales Gschisti Gschasti im Leben, muss hier nicht sein

Aber so ganz versteh ich dich jetzt nicht. Also von vorne (): Hast du noch Probleme? Wenn ja, welche?
__________________
__________________
Alt 28.05.2016, 13:41   #19
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Aaaaaalso. Bis jetzt ist mir noch nicht wieder was im Browser passiert. (Denke mal das war durch den Entfernen Button in FRST)
ABER wenn ich Tweeten öffne, besteht eine 60-80% chance, dass sich in den nächsten 20 sekunden Werbung öffnet.

Alt 28.05.2016, 15:23   #20
Deathkid535
/// Malwareteam
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


OK, versuch mal bitte Tweeten mit REVO zu deinstallieren, danach nehmen installieren. Das mit REVO geht so:

Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    Tweeten

  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 
Alt 28.05.2016, 17:48   #21
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Revo findet tweeten nicht. Aber geek uninstaller
Angehängte Grafiken
Dateityp: jpg ss (2016-05-28 at 06.39.34).jpg (60,8 KB, 125x aufgerufen)

Alt 28.05.2016, 20:12   #22
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Es fängt im Browser wieder an. Wenn ich etwas in der URL leiste eingeben will, dann erscheint manchmal eine Seite vom Virus/OderWieManDasNennt.
Ich habe nur Revo installiert und TweetDeck(Nicht tweeten. Hab geacht das steht damit in verbindung.) damit deinstalliert.

Man man man ist das nervig.

Alt 29.05.2016, 08:48   #23
Deathkid535
/// Malwareteam
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Hi,

OK häng nochmal bitte ein FRST-Log mit angehaktem Addition.txt an, und zusätzlich noch das da:

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.


Ich werd mir das dann sehr genau nochmal durchschauen, kann also länger dauern.

Alt 29.05.2016, 12:18   #24
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:28-05-2016
durchgeführt von Marlin (Administrator) auf BLACKMAGIC (29-05-2016 13:15:37)
Gestartet von C:\Users\Marlin\Desktop
Geladene Profile: Marlin (Verfügbare Profile: Marlin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: German (Germany)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Webroot) C:\Program Files\Webroot\WRSA.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Cepstral, LLC) C:\Program Files (x86)\Cepstral\bin\CepstralLicSrv.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Olof Lagerkvist) C:\Windows\System32\imdsksvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) D:\Programme\Razer Cortex\RzKLService.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Lynx Technology) C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe
(LogMeIn Inc.) K:\Programme\Hamachi\hamachi-2.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(LogMeIn, Inc.) K:\Programme\Hamachi\LMIGuardianSvc.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Webroot) C:\Program Files\Webroot\WRSA.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(LogMeIn Inc.) K:\Programme\Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) K:\Programme\Hamachi\LMIGuardianSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Valve Corporation) D:\Games etc\Steam\Steam.exe
() D:\Programme\Puush\puush.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
(Roccat GmbH) D:\Roccat Kova+\Kova[+]Monitor.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Valve Corporation) D:\Games etc\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\HitLeap\HitLeap Viewer 2.8\core\control\hitleap-viewer.exe
(Webroot) C:\ProgramData\WRData\PKG\npwebroot.exe
() C:\Program Files (x86)\HitLeap\HitLeap Viewer 2.8\core\muter\hitleap-viewer-muter.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe
(Razer, Inc.) C:\Users\Marlin\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\wmi64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\HitLeap\HitLeap Viewer 2.8\core\cef\hitleap-viewer-browser.exe
() C:\Program Files (x86)\HitLeap\HitLeap Viewer 2.8\core\cef\hitleap-viewer-browser.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => "D:\Programme\SoftEther VPN Client\vpnclient_x64.exe" /uihelp
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5006536 2016-04-04] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2015-12-04] (Realtek Semiconductor)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-12-18] (Intel Corporation)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [933888 2012-08-21] (AVM Berlin)
HKLM-x32\...\Run: [RoccatKova+] => D:\Roccat Kova+\Kova[+]Monitor.EXE [539688 2011-03-17] (Roccat GmbH)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-05-24] (Razer Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23745808 2016-05-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-27] (Raptr, Inc)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => K:\Programme\Hamachi\hamachi-2-ui.exe [5565960 2016-05-06] (LogMeIn Inc.)
HKLM-x32\...\Run: [WRSVC] => C:\Program Files\Webroot\WRSA.exe [876712 2016-05-24] (Webroot)
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Steam] => D:\Games etc\Steam\steam.exe [2917456 2016-05-28] (Valve Corporation)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Clownfish] => 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [TeamSpeak 3 Client] => D:\Teamspeak\ts3client_win64.exe [11480344 2016-04-26] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [puush] => D:\Programme\Puush\puush.exe [568904 2015-03-30] ()
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Spotify Web Helper] => C:\Users\Marlin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Spotify] => C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [EasyHideIPVPN] => K:\Programme\Easy-Hide-IP VPN\vpn.client.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: G - G:\Setup.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: H - H:\Setup.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: {246a3911-507e-11e4-9626-d0509928e910} - E:\LGAutoRun.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: {9da0785c-3c05-11e4-8df1-d0509928e910} - E:\pushinst.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: {c581b910-3c1e-11e4-9aa5-806e6f6e6963} - F:\ASRSetup.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> K:\Dropbox\sspipes.scr
HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17195.214\QMGCShellExt64.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-03-18] ()
Startup: C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-01-19] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

AutoConfigURL: [S-1-5-21-3419645104-3717089636-2781738795-1000] => hxxp://unstops.biz/wpad.dat?7f2ae8b11d8b6bbc19fd1a28c3e30e6b10541591
Tcpip\..\Interfaces\{1D0F9C4D-A3C9-4219-AAA5-578087290EDC}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{33A5DE98-AE1F-4277-A4DE-87238A8E3C7A}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{72C6C5EB-8AB4-4F8D-9200-FD4D6A355DED}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F61F6F00-24CF-42FC-AC37-F3DE762E1112}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F871823E-B0B9-449C-BD1C-BBE065120691}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130938236596445570&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-28] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
BHO: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar64.dll [2016-05-24] (Webroot)
BHO: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files\Common Files\Webroot\WebFiltering\wrflt.dll [2016-05-24] (Webroot)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-28] (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
BHO-x32: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar.dll [2016-05-24] (Webroot)
BHO-x32: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files (x86)\Common Files\Webroot\WebFiltering\wrflt.dll [2016-05-24] (Webroot)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar64.dll [2016-05-24] (Webroot)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar.dll [2016-05-24] (Webroot)
Toolbar: HKU\S-1-5-21-3419645104-3717089636-2781738795-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Keine Datei
Toolbar: HKU\S-1-5-21-3419645104-3717089636-2781738795-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: 
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3419645104-3717089636-2781738795-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Marlin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-09-05] (Unity Technologies ApS)
FF Extension: Amazon-Icon - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\amazon-icon@giga.de [2015-06-21] [ist nicht signiert]
FF Extension: Furaffinity Download extension for Firefox - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\fuerholz@gmx.net.xpi [2015-12-15]
FF Extension: InkBunny Downloader - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\jid1-A9hxZPPMAhCzdQ@jetpack.xpi [2015-12-16] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-12-12]
FF Extension: ChatZilla - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2015-12-20]
FF Extension: Webroot Password Manager - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2016-05-24]
FF Extension: Tamper Data - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2015-11-20]
FF Extension: Web Developer - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2015-12-20]
FF Extension: InkBunny Downloader - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@ib_downloader.xpi [2016-04-27] [ist nicht signiert]
FF Extension: Amazon-Icon - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\amazon-icon@giga.de [2016-01-25] [ist nicht signiert]
FF Extension: Furaffinity Download extension for Firefox - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\fuerholz@gmx.net.xpi [2015-12-15]
FF Extension: InkBunny Downloader - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\jid1-A9hxZPPMAhCzdQ@jetpack.xpi [2015-12-16] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-12-12]
FF Extension: ChatZilla - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2016-01-25]
FF Extension: Webroot Password Manager - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2016-05-24]
FF Extension: Tamper Data - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2015-11-20]
FF Extension: Web Developer - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2015-12-20]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-05-25]
FF HKLM-x32\...\Firefox\Extensions: [webrootsecure@webroot.com] - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer
FF Extension: Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer [2016-05-24]
StartMenuInternet: FIREFOX.EXE - D:\Programme\Firefox\firefox.exe

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://forum.temeraire.net/de/index.php","hxxp://draconic.twilightrealm.com/","hxxp://twokinds.keenspot.com/","hxxps://web.whatsapp.com/","hxxps://www.webshell.de/de/forum","hxxp://awsw.yuku.com/"
CHR Profile: C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-05-07]
CHR Extension: (Google Präsentationen) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (MEGA) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-05-25]
CHR Extension: (YouTube) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]
CHR Extension: (uBlock Origin) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-05-25]
CHR Extension: (Google-Suche) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Dropbox für Gmail) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2015-12-04]
CHR Extension: (Kaspersky Protection) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2015-11-19]
CHR Extension: (Freefall Tournament) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\encjogopgacdjlkmpdknhlfnanoihodh [2015-03-19]
CHR Extension: (Aurelion Sol Build Guide) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fceobikcedidphjfgmjjjolgeoiakhnc [2016-05-04]
CHR Extension: (Google Tabellen) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Google Docs Offline) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Webroot Filtering Extension) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd [2016-05-25]
CHR Extension: (Webroot Password Manager) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngkhgikojglcgnckopipfdajaifmmnnc [2016-05-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Passwort-Warnung) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\noondiphcddnnabmjcihcjfbhfklnnep [2016-04-22]
CHR Extension: (ProxPrice) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nopgehbobniifpngnhmljfojnkkopbje [2016-03-04]
CHR Extension: (Google Code Archive - Long-term stora...) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\opmbhclbceeoiegfpidanbkkflbfpiig [2016-04-26]
CHR Extension: (Virtual Keyboard) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflmllfnnabikmfkkaddkoolinlfninn [2015-12-02]
CHR Extension: (Google Mail) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngkhgikojglcgnckopipfdajaifmmnnc] - hxxp://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-11-18] (Kaspersky Lab ZAO)
R2 Cepstral License Server; C:\Program Files (x86)\Cepstral\bin\CepstralLicSrv.exe [57344 2007-03-15] (Cepstral, LLC) [Datei ist nicht signiert]
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-19] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-19] (Dropbox, Inc.)
S4 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-12-26] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; K:\Programme\Hamachi\hamachi-2.exe [2552840 2016-05-06] (LogMeIn Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-02-26] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [253528 2015-07-09] ()
R2 ImDskSvc; C:\Windows\system32\imdsksvc.exe [19552 2015-08-14] (Olof Lagerkvist)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-20] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-03] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3191392 2014-05-15] (INCA Internet Co., Ltd.)
S4 Origin Client Service; D:\Games etc\Origin\OriginClientService.exe [2120712 2016-04-30] (Electronic Arts)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-03-04] (Plays.tv, LLC)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-08-24] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-08-24] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 RzKLService; D:\Programme\Razer Cortex\RzKLService.exe [129168 2015-08-21] (Razer Inc.)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4255232 2016-02-15] (A-Volute) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R2 TwonkyServer; C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe [1923120 2015-10-08] (Lynx Technology)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WRSVC; C:\Program Files\Webroot\WRSA.exe [876712 2016-05-24] (Webroot)
S2 EasyRedirect; K:\Programme\Easy-Hide-IP VPN\rdr\EasyRedirect.exe [X]
S3 MediaFire Desktop Updater Service; C:\Program Files (x86)\MediaFire Desktop\bin\UpdaterLocalCOM.exe [X]
S2 SEVPNCLIENT; "D:\Programme\SoftEther VPN Client\vpnclient_x64.exe" /service [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
R3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
R3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
S4 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2015-04-17] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
R2 AWEAlloc; C:\Windows\System32\DRIVERS\awealloc.sys [21048 2015-08-06] (Olof Lagerkvist)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [488216 2014-02-03] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-05-27] ()
S3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2014-10-07] (Echobit, LLC)
S3 fwlanusb5; C:\Windows\System32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-12-08] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-02-26] (Intel Corporation)
R2 ImDisk; C:\Windows\System32\DRIVERS\imdisk.sys [49104 2015-08-14] (Olof Lagerkvist)
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] ()
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70000 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [77728 2016-03-01] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [181640 2015-11-18] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [237480 2016-05-25] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [943536 2016-05-25] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [49240 2016-05-25] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [41144 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-11-18] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [103096 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 KovaPlusFltr; C:\Windows\System32\drivers\KovaPlusFltr.sys [15104 2010-01-25] (ROCCAT Development, Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [31744 2008-09-07] (hxxp://libusb-win32.sourceforge.net) [Datei ist nicht signiert]
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2015-04-17] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [180480 2015-10-08] (Intel Corporation)
R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0118.sys [38432 2016-03-22] (SoftEther Corporation)
S3 Neo_VPN2; C:\Windows\System32\DRIVERS\Neo_0096.sys [38432 2016-03-22] (SoftEther Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [40640 2016-02-15] (Windows (R) Win 7 DDK provider)
S3 SEE; C:\Windows\System32\drivers\see.sys [50208 2016-01-02] (SoftEther Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2016-02-04] (Duplex Secure Ltd.)
R3 USBPcap; C:\Windows\System32\DRIVERS\USBPcap.sys [48344 2015-12-10] (USBPcap)
R3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [119712 2016-04-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [192352 2016-04-28] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2016-01-19] (Oracle Corporation)
R0 WRkrn; C:\Windows\System32\drivers\WRkrn.sys [117728 2016-05-24] (Webroot)
S3 wrUrlFlt; C:\Windows\system32\DRIVERS\wrUrlFlt.sys [54512 2016-05-24] (Webroot)
S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [29288 2015-02-02] (Wondershare)
R3 ALSysIO; \??\C:\Users\Marlin\AppData\Local\Temp\ALSysIO64.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
S3 ATP; system32\DRIVERS\cmdatp.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]
U0 SR; kein ImagePath
U2 srservice; kein ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

Alt 29.05.2016, 12:18   #25
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Code:
ATTFilter
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-29 13:15 - 2016-05-29 13:15 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Marlin\Desktop\tdsskiller.exe
2016-05-28 18:24 - 2016-05-28 18:24 - 00000742 _____ C:\Users\Marlin\Desktop\Revo Uninstaller.lnk
2016-05-28 18:24 - 2016-05-28 18:24 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-05-28 16:24 - 2016-05-28 16:24 - 00000000 ____D C:\Users\Marlin\AppData\LocalLow\BitTorrent
2016-05-28 15:56 - 2016-05-28 15:56 - 01703295 _____ C:\Users\Marlin\Desktop\wpdb.sql
2016-05-28 15:55 - 2016-05-28 15:55 - 00000000 ____D C:\Users\Marlin\Desktop\otterforum
2016-05-28 12:06 - 2016-05-28 12:06 - 00003013 _____ C:\Users\Marlin\Desktop\HitLeap Viewer.lnk
2016-05-28 12:06 - 2016-05-28 12:06 - 00002929 _____ C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HitLeap Viewer.lnk
2016-05-28 12:06 - 2016-05-28 12:06 - 00000000 ____D C:\Program Files (x86)\HitLeap
2016-05-27 23:53 - 2016-05-27 23:53 - 00000718 _____ C:\Users\Marlin\www.kieran.pw.conf
2016-05-27 23:46 - 2016-05-27 23:46 - 00003058 _____ C:\Users\Marlin\agb.phpBAk
2016-05-27 23:44 - 2016-05-27 23:44 - 00003058 _____ C:\Users\Marlin\agb.php
2016-05-27 18:18 - 2016-05-27 18:18 - 06541784 _____ (Tim Kosse) C:\Users\Marlin\Downloads\FileZilla_3.18.0_win64-setup.exe
2016-05-27 01:47 - 2016-05-27 02:10 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Enigma Software Group
2016-05-27 01:47 - 2016-05-27 01:47 - 00000000 _____ C:\autoexec.bat
2016-05-27 01:46 - 2016-05-27 01:46 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-05-27 00:05 - 2016-05-29 13:15 - 00050957 _____ C:\Users\Marlin\Desktop\FRST.txt
2016-05-27 00:04 - 2016-05-27 00:04 - 00000000 ____D C:\Users\Marlin\AppData\Local\GWX
2016-05-26 00:55 - 2016-05-26 00:58 - 00000000 ____D C:\Users\Marlin\Desktop\droid
2016-05-25 16:42 - 2016-04-12 03:23 - 00154344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-25 16:42 - 2016-04-12 03:23 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-05-25 16:42 - 2016-04-12 03:20 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-05-25 16:42 - 2016-04-12 03:01 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-05-25 16:42 - 2016-04-12 03:01 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-05-25 16:42 - 2016-04-12 03:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-05-25 16:42 - 2016-04-12 02:50 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-05-25 16:42 - 2016-04-12 02:43 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-25 16:42 - 2016-04-12 02:43 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-25 16:42 - 2016-04-12 02:43 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-25 16:42 - 2016-04-12 02:42 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-05-25 16:42 - 2016-04-12 02:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-05-25 16:42 - 2016-04-12 02:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-05-25 16:42 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-05-25 16:42 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-05-25 16:42 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-05-25 16:42 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-05-25 16:42 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-05-25 16:42 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-05-25 16:38 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-05-25 16:38 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-05-25 16:38 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-05-25 16:38 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-05-25 12:33 - 2016-05-29 13:15 - 00000000 ____D C:\FRST
2016-05-25 12:33 - 2016-05-28 19:46 - 02383872 _____ (Farbar) C:\Users\Marlin\Desktop\FRST64.exe
2016-05-25 09:16 - 2016-05-25 09:42 - 00000000 ____D C:\Users\Marlin\Desktop\Anti Virus
2016-05-25 09:16 - 2016-05-25 09:16 - 00004419 _____ C:\Users\Marlin\Desktop\JRT.txt
2016-05-25 09:10 - 2016-05-25 09:10 - 00000000 ____D C:\Program Files (x86)\ESET
2016-05-25 08:06 - 2016-05-25 08:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweeten
2016-05-25 01:10 - 2016-05-25 01:10 - 00000000 ____H C:\Users\Marlin\AppData\Local\BITFA99.tmp
2016-05-25 01:09 - 2016-05-25 01:10 - 00000000 _____ C:\Users\Marlin\AppData\Local\{056C4BAF-A0FF-4DDD-ABE9-6611CE374B05}
2016-05-25 01:07 - 2016-05-25 01:07 - 00000011 _____ C:\ProgramData\.tv7
2016-05-25 00:48 - 2016-05-25 00:48 - 00000000 ____D C:\.Trash-999
2016-05-24 23:58 - 2016-05-24 23:58 - 00000000 ____D C:\Identity
2016-05-24 23:57 - 2016-05-28 22:05 - 00000000 ____D C:\ProgramData\WRData
2016-05-24 23:57 - 2016-05-24 23:57 - 00182200 _____ (Webroot) C:\Windows\SysWOW64\WRusr.dll
2016-05-24 23:57 - 2016-05-24 23:57 - 00117728 _____ (Webroot) C:\Windows\system32\Drivers\WRkrn.sys
2016-05-24 23:57 - 2016-05-24 23:57 - 00117304 _____ (Webroot) C:\Windows\system32\WRusr.dll
2016-05-24 23:57 - 2016-05-24 23:57 - 00054512 ____T (Webroot) C:\Windows\system32\Drivers\wrUrlFlt.sys
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Users\Marlin\AppData\LocalLow\LastPass
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Users\Marlin\AppData\Local\lptmp
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Program Files\Webroot
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Program Files\Common Files\Webroot
2016-05-24 23:56 - 2016-05-26 23:36 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-24 23:56 - 2016-05-24 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-05-24 23:56 - 2016-05-24 23:56 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-05-24 23:56 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-05-24 23:56 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-05-24 23:56 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-05-24 23:10 - 2016-05-24 23:10 - 00023802 _____ C:\Users\Marlin\AppData\Local\recently-used.xbel
2016-05-24 22:29 - 2016-05-24 22:29 - 00000000 _____ C:\Users\Marlin\AppData\Local\{1A1B3749-31EB-494F-AA76-3DFC76586726}
2016-05-24 22:13 - 2016-05-24 22:13 - 00000184 _____ C:\Users\Marlin\Desktop\Aurelion.url
2016-05-21 16:28 - 2016-05-21 16:28 - 00000000 _____ C:\Users\Marlin\AppData\Local\{AB9E70B5-71FF-4C0D-9E0C-EEBA9714DFC4}
2016-05-19 02:45 - 2016-04-12 16:52 - 00908717 _____ C:\Users\Marlin\Desktop\Para's InstaLock 0.49.exe
2016-05-18 20:55 - 2016-05-18 20:57 - 352321536 _____ C:\Users\Marlin\Downloads\pmagic_2013_08_01.iso
2016-05-14 00:44 - 2016-05-14 00:44 - 00001097 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2016-05-14 00:44 - 2016-05-14 00:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-05-14 00:43 - 2016-05-14 00:43 - 00000000 ____D C:\Program Files\Oracle
2016-05-14 00:09 - 2016-05-27 18:21 - 00002084 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-05-13 14:10 - 2016-05-13 15:10 - 05995712 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-05-13 13:25 - 2016-05-13 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-05-13 09:56 - 2016-05-13 09:56 - 00015816 _____ (Razer Inc.) C:\Windows\SysWOW64\RzStats.IPC.dll
2016-05-11 21:37 - 2016-05-11 21:37 - 00000688 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2 Multiplayer.lnk
2016-05-11 21:25 - 2016-05-12 00:03 - 00000000 ____D C:\Users\Marlin\Desktop\Präs
2016-05-11 14:55 - 2016-05-29 13:13 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f163753f4a4f.job
2016-05-11 14:55 - 2016-05-29 01:00 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf53fb98686a.job
2016-05-11 14:55 - 2016-05-11 14:55 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0bf53fb98686a
2016-05-11 14:55 - 2016-05-11 14:55 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0f163753f4a4f
2016-05-11 14:52 - 2016-05-11 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-05-10 22:26 - 2016-05-10 22:25 - 06513888 _____ (Tim Kosse) C:\Users\Marlin\Downloads\FileZilla_3.17.0.1_win64-setup.exe
2016-05-10 22:21 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-05-10 22:21 - 2016-04-14 15:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-10 22:21 - 2016-04-09 09:01 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-10 22:21 - 2016-04-09 09:01 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-05-10 22:21 - 2016-04-09 08:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-05-10 22:21 - 2016-04-09 08:57 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-10 22:21 - 2016-04-09 08:57 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-05-10 22:21 - 2016-04-09 08:54 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-05-10 22:21 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-05-10 22:21 - 2016-04-09 07:49 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-10 22:21 - 2016-04-06 17:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-05-10 22:20 - 2016-04-23 19:08 - 00394960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-10 22:20 - 2016-04-23 18:24 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-05-10 22:20 - 2016-04-23 07:25 - 25816064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-10 22:20 - 2016-04-23 07:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-05-10 22:20 - 2016-04-23 07:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-05-10 22:20 - 2016-04-23 07:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 02893312 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-05-10 22:20 - 2016-04-23 07:00 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-05-10 22:20 - 2016-04-23 06:52 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-05-10 22:20 - 2016-04-23 06:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-05-10 22:20 - 2016-04-23 06:48 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-05-10 22:20 - 2016-04-23 06:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-10 22:20 - 2016-04-23 06:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-05-10 22:20 - 2016-04-23 06:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-05-10 22:20 - 2016-04-23 06:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-05-10 22:20 - 2016-04-23 06:46 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-10 22:20 - 2016-04-23 06:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-10 22:20 - 2016-04-23 06:36 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-05-10 22:20 - 2016-04-23 06:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-10 22:20 - 2016-04-23 06:27 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-05-10 22:20 - 2016-04-23 06:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-05-10 22:20 - 2016-04-23 06:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-05-10 22:20 - 2016-04-23 06:21 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-05-10 22:20 - 2016-04-23 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-05-10 22:20 - 2016-04-23 06:20 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-05-10 22:20 - 2016-04-23 06:11 - 20350464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-05-10 22:20 - 2016-04-23 06:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-10 22:20 - 2016-04-23 06:08 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-05-10 22:20 - 2016-04-23 06:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-05-10 22:20 - 2016-04-23 06:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-05-10 22:20 - 2016-04-23 06:07 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-10 22:20 - 2016-04-23 06:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-05-10 22:20 - 2016-04-23 06:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-05-10 22:20 - 2016-04-23 06:06 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-05-10 22:20 - 2016-04-23 06:06 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-10 22:20 - 2016-04-23 06:05 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-10 22:20 - 2016-04-23 06:04 - 02285568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-05-10 22:20 - 2016-04-23 06:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-05-10 22:20 - 2016-04-23 06:01 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-05-10 22:20 - 2016-04-23 06:00 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-10 22:20 - 2016-04-23 05:59 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-05-10 22:20 - 2016-04-23 05:58 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-05-10 22:20 - 2016-04-23 05:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-05-10 22:20 - 2016-04-23 05:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-05-10 22:20 - 2016-04-23 05:51 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-10 22:20 - 2016-04-23 05:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-05-10 22:20 - 2016-04-23 05:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-05-10 22:20 - 2016-04-23 05:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-05-10 22:20 - 2016-04-23 05:43 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-05-10 22:20 - 2016-04-23 05:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-05-10 22:20 - 2016-04-23 05:40 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-05-10 22:20 - 2016-04-23 05:39 - 01547776 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-10 22:20 - 2016-04-23 05:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-05-10 22:20 - 2016-04-23 05:36 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-05-10 22:20 - 2016-04-23 05:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-05-10 22:20 - 2016-04-23 05:31 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-05-10 22:20 - 2016-04-23 05:30 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-05-10 22:20 - 2016-04-23 05:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-05-10 22:20 - 2016-04-23 05:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-10 22:20 - 2016-04-23 05:26 - 13811200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-05-10 22:20 - 2016-04-23 05:12 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-05-10 22:20 - 2016-04-23 05:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-05-10 22:20 - 2016-04-23 05:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-05-10 22:20 - 2016-04-09 09:02 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-05-10 22:20 - 2016-04-09 09:01 - 05546216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-10 22:20 - 2016-04-09 09:01 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-05-10 22:20 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-05-10 22:20 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-05-10 22:20 - 2016-04-09 08:59 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:52 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-05-10 22:20 - 2016-04-09 07:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-05-10 22:20 - 2016-04-09 07:52 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-05-10 22:20 - 2016-04-09 07:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-05-10 22:20 - 2016-04-09 07:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-05-10 22:20 - 2016-04-09 07:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-05-10 22:20 - 2016-04-09 07:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-05-10 22:20 - 2016-04-09 07:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-05-10 22:20 - 2016-04-09 07:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-05-10 22:20 - 2016-04-09 07:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-05-10 22:20 - 2016-04-09 07:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-10 22:20 - 2016-04-09 05:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-05 18:32 - 2016-05-05 18:32 - 00000000 ____D C:\Users\Marlin\AppData\Local\UWKProcess
2016-05-05 18:29 - 2016-05-05 18:29 - 00000000 ____D C:\Users\Marlin\AppData\LocalLow\DefaultCompany
2016-05-05 15:47 - 2014-10-19 15:54 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2016-05-05 14:05 - 2016-05-05 14:05 - 00000000 ____D C:\Users\Marlin\Desktop\Electronic Arts
2016-05-04 14:24 - 2016-03-18 00:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-05-04 14:24 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-05-03 19:34 - 2016-04-04 20:14 - 00038120 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-05-03 19:34 - 2016-04-04 20:02 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-05-03 19:34 - 2016-04-02 15:08 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-05-03 19:34 - 2016-03-23 16:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-05-03 19:34 - 2016-03-16 20:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-05-03 19:34 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-05-03 19:34 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-05-03 19:34 - 2016-03-16 02:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-05-03 19:34 - 2016-03-16 02:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-05-03 19:34 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-05-03 19:34 - 2016-03-09 21:00 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-05-03 19:34 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-05-03 19:34 - 2016-03-09 20:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-05-03 19:34 - 2016-03-09 20:40 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-05-03 19:34 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-05-03 19:34 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-05-03 19:34 - 2016-03-06 20:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-05-03 19:34 - 2016-03-06 20:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-05-03 19:34 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-05-03 19:34 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-05-03 19:23 - 2016-01-22 08:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-05-03 19:23 - 2016-01-22 08:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-05-03 19:23 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-05-03 19:23 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-05-03 19:19 - 2013-04-10 18:07 - 00002435 _____ C:\Windows\CreateRP-Success_Message.vbs
2016-05-03 19:18 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-05-03 19:18 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-05-03 19:18 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-05-03 19:18 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-05-03 19:18 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-05-03 19:18 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-05-03 19:18 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-05-03 19:18 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-05-03 19:18 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-05-03 19:18 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-05-03 19:18 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-05-03 19:18 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-05-03 19:18 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-05-03 19:18 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-05-03 19:18 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-05-03 19:18 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-05-03 19:18 - 2016-02-05 20:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-05-03 19:18 - 2016-02-05 20:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-05-03 19:18 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-05-03 19:18 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-05-03 19:18 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-05-03 19:18 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-05-03 19:18 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-05-03 19:18 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-05-03 19:18 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-05-03 19:18 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-05-03 19:18 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-05-03 19:18 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-05-03 19:18 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2016-05-03 19:18 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-05-03 19:18 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-05-03 19:18 - 2016-02-02 20:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-05-03 19:18 - 2016-01-21 02:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-05-03 19:18 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-05-03 19:18 - 2015-12-20 20:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-05-03 19:18 - 2015-12-20 20:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-05-03 19:18 - 2015-12-20 16:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-05-03 19:18 - 2015-06-03 22:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-05-03 18:56 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-05-03 18:56 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-05-03 18:56 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-05-03 18:56 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-05-03 18:56 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-05-03 18:56 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-05-03 18:56 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-05-03 18:56 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-05-03 18:56 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-05-03 18:56 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-05-03 18:56 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-05-03 18:56 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-05-03 18:56 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-05-03 18:56 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-05-03 18:56 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-05-03 18:56 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-05-03 18:56 - 2016-01-07 19:42 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-05-02 20:45 - 2016-05-02 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2016-05-02 20:23 - 2016-05-02 21:10 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-05-01 18:52 - 2016-05-02 21:10 - 00000000 ____D C:\Users\Marlin\Desktop\HiTFaKeR-v0.4
2016-05-01 18:48 - 2016-05-25 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy-Hide-IP VPN
2016-05-01 18:48 - 2016-04-22 12:27 - 00547544 _____ (EasyTech) C:\Windows\system32\EasyRedirect64.dll
2016-05-01 18:48 - 2016-04-22 12:27 - 00388312 _____ (EasyTech) C:\Windows\SysWOW64\EasyRedirect.dll
2016-05-01 18:21 - 2016-05-02 21:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elite Proxy Switcher
2016-05-01 18:21 - 2016-05-01 18:21 - 00000000 ____D C:\ProgramData\EPS
2016-04-30 16:15 - 2016-04-30 16:15 - 00000832 _____ C:\Users\Marlin\Desktop\World of Tanks ProMod.lnk
2016-04-30 16:02 - 2016-04-30 16:15 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\ProMod
2016-04-30 15:39 - 2016-05-02 21:10 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-04-30 15:39 - 2016-04-30 15:57 - 00000000 ____D C:\Users\Marlin\Desktop\Games
2016-04-30 15:39 - 2015-12-04 09:51 - 04694784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-04-30 15:39 - 2015-12-04 09:51 - 04463263 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-04-30 15:39 - 2015-12-04 09:51 - 03271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 03053392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 02893568 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-04-30 15:39 - 2015-12-04 09:51 - 02130584 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 02030200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 01356512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 01328504 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 01020208 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00192992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-04-30 15:39 - 2015-12-04 09:51 - 00023704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-04-30 15:39 - 2015-12-04 09:50 - 03282032 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-04-30 15:39 - 2015-12-04 09:50 - 01601952 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-04-30 15:39 - 2015-12-04 09:50 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-04-30 15:39 - 2015-12-04 09:50 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-04-30 15:39 - 2015-12-04 09:50 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-04-30 15:30 - 2016-04-30 15:30 - 00000000 ____D C:\Program Files (x86)\Realtek

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-29 13:15 - 2015-06-12 21:25 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-05-29 13:14 - 2016-04-16 23:28 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Spotify
2016-05-29 13:14 - 2015-12-10 17:11 - 00000000 ____D C:\Users\Marlin\AppData\Local\Spotify
2016-05-29 13:14 - 2014-12-21 12:08 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Raptr
2016-05-29 13:13 - 2016-04-25 20:16 - 00000000 ____D C:\Users\Marlin\AppData\Local\LogMeIn Hamachi
2016-05-29 13:13 - 2015-07-16 01:14 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bf53fb750165.job
2016-05-29 13:13 - 2014-09-14 17:19 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-29 13:13 - 2014-09-14 14:00 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-05-29 13:13 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-29 01:48 - 2015-09-12 15:08 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\BitTorrent
2016-05-29 01:47 - 2015-05-27 19:23 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Skype
2016-05-29 01:42 - 2015-10-28 02:37 - 00000000 ____D C:\Users\Marlin\AppData\Local\Clipboarder
2016-05-29 01:35 - 2014-10-12 23:05 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\vlc
2016-05-29 01:13 - 2014-09-14 17:19 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-29 01:10 - 2015-12-30 18:55 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-28 23:40 - 2015-02-13 19:58 - 00000600 _____ C:\Users\Marlin\AppData\Local\PUTTY.RND
2016-05-28 23:40 - 2014-09-23 17:31 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\FileZilla
2016-05-28 22:23 - 2009-07-14 06:45 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-28 22:23 - 2009-07-14 06:45 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-28 19:12 - 2014-09-23 18:35 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\.minecraft
2016-05-28 17:11 - 2015-08-28 17:02 - 00409410 _____ C:\Windows\system32\perfh011.dat
2016-05-28 17:11 - 2015-08-28 17:02 - 00122294 _____ C:\Windows\system32\perfc011.dat
2016-05-28 17:11 - 2015-08-28 16:54 - 00502046 _____ C:\Windows\system32\perfh006.dat
2016-05-28 17:11 - 2015-08-28 16:54 - 00098852 _____ C:\Windows\system32\perfc006.dat
2016-05-28 17:11 - 2015-08-28 16:37 - 00390974 _____ C:\Windows\system32\prfh0404.dat
2016-05-28 17:11 - 2015-08-28 16:37 - 00115284 _____ C:\Windows\system32\prfc0404.dat
2016-05-28 17:11 - 2015-08-28 16:30 - 00706512 _____ C:\Windows\system32\prfh0416.dat
2016-05-28 17:11 - 2015-08-28 16:30 - 00147850 _____ C:\Windows\system32\prfc0416.dat
2016-05-28 17:11 - 2015-08-28 16:23 - 00721650 _____ C:\Windows\system32\prfh0816.dat
2016-05-28 17:11 - 2015-08-28 16:23 - 00153100 _____ C:\Windows\system32\prfc0816.dat
2016-05-28 17:11 - 2015-08-28 16:17 - 00732990 _____ C:\Windows\system32\perfh015.dat
2016-05-28 17:11 - 2015-08-28 16:17 - 00156066 _____ C:\Windows\system32\perfc015.dat
2016-05-28 17:11 - 2015-08-28 16:11 - 00649314 _____ C:\Windows\system32\perfh01F.dat
2016-05-28 17:11 - 2015-08-28 16:11 - 00140194 _____ C:\Windows\system32\perfc01F.dat
2016-05-28 17:11 - 2015-08-28 16:00 - 00373802 _____ C:\Windows\system32\prfh0804.dat
2016-05-28 17:11 - 2015-08-28 16:00 - 00119786 _____ C:\Windows\system32\prfc0804.dat
2016-05-28 17:11 - 2015-08-28 15:44 - 00717232 _____ C:\Windows\system32\perfh019.dat
2016-05-28 17:11 - 2015-08-28 15:44 - 00151036 _____ C:\Windows\system32\perfc019.dat
2016-05-28 17:11 - 2015-08-28 15:39 - 00487146 _____ C:\Windows\system32\perfh014.dat
2016-05-28 17:11 - 2015-08-28 15:39 - 00095598 _____ C:\Windows\system32\perfc014.dat
2016-05-28 17:11 - 2015-08-28 15:35 - 00599620 _____ C:\Windows\system32\perfh008.dat
2016-05-28 17:11 - 2015-08-28 15:35 - 00111322 _____ C:\Windows\system32\perfc008.dat
2016-05-28 17:11 - 2015-08-28 15:30 - 00656352 _____ C:\Windows\system32\perfh01D.dat
2016-05-28 17:11 - 2015-08-28 15:30 - 00142668 _____ C:\Windows\system32\perfc01D.dat
2016-05-28 17:11 - 2015-08-28 15:26 - 00421056 _____ C:\Windows\system32\perfh012.dat
2016-05-28 17:11 - 2015-08-28 15:26 - 00120578 _____ C:\Windows\system32\perfc012.dat
2016-05-28 17:11 - 2015-08-28 15:22 - 00661472 _____ C:\Windows\system32\perfh005.dat
2016-05-28 17:11 - 2015-08-28 15:22 - 00141620 _____ C:\Windows\system32\perfc005.dat
2016-05-28 17:11 - 2015-08-28 15:11 - 00736130 _____ C:\Windows\system32\perfh013.dat
2016-05-28 17:11 - 2015-08-28 15:11 - 00153296 _____ C:\Windows\system32\perfc013.dat
2016-05-28 17:11 - 2015-08-28 15:04 - 00474134 _____ C:\Windows\system32\perfh00B.dat
2016-05-28 17:11 - 2015-08-28 15:04 - 00101714 _____ C:\Windows\system32\perfc00B.dat
2016-05-28 17:11 - 2015-08-28 15:00 - 00676386 _____ C:\Windows\system32\perfh00E.dat
2016-05-28 17:11 - 2015-08-28 15:00 - 00171468 _____ C:\Windows\system32\perfc00E.dat
2016-05-28 17:11 - 2015-08-28 14:52 - 00738088 _____ C:\Windows\system32\perfh00A.dat
2016-05-28 17:11 - 2015-08-28 14:52 - 00158668 _____ C:\Windows\system32\perfc00A.dat
2016-05-28 17:11 - 2015-08-28 14:47 - 00384976 _____ C:\Windows\system32\perfh00D.dat
2016-05-28 17:11 - 2015-08-28 14:47 - 00084952 _____ C:\Windows\system32\perfc00D.dat
2016-05-28 17:11 - 2015-08-28 14:38 - 00732678 _____ C:\Windows\system32\perfh010.dat
2016-05-28 17:11 - 2015-08-28 14:38 - 00147040 _____ C:\Windows\system32\perfc010.dat
2016-05-28 17:11 - 2015-08-28 14:34 - 00738348 _____ C:\Windows\system32\perfh00C.dat
2016-05-28 17:11 - 2015-08-28 14:34 - 00471646 _____ C:\Windows\system32\perfh001.dat
2016-05-28 17:11 - 2015-08-28 14:34 - 00149774 _____ C:\Windows\system32\perfc00C.dat
2016-05-28 17:11 - 2015-08-28 14:34 - 00094966 _____ C:\Windows\system32\perfc001.dat
2016-05-28 17:11 - 2010-11-21 08:50 - 00700130 _____ C:\Windows\system32\perfh007.dat
2016-05-28 17:11 - 2010-11-21 08:50 - 00149768 _____ C:\Windows\system32\perfc007.dat
2016-05-28 17:11 - 2009-07-14 07:13 - 17467958 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-28 17:11 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-05-28 16:20 - 2014-10-24 00:22 - 00000000 ____D C:\Users\Marlin\Desktop\Programme
2016-05-28 16:20 - 2014-10-23 22:06 - 00000448 __RSH C:\ProgramData\ntuser.pol
2016-05-28 16:12 - 2014-12-10 22:38 - 00000000 ____D C:\Users\Marlin\.VirtualBox
2016-05-27 23:53 - 2014-09-14 16:56 - 00000000 ____D C:\Users\Marlin
2016-05-27 18:21 - 2015-01-24 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-05-27 18:21 - 2015-01-24 20:19 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2016-05-27 15:15 - 2014-09-20 20:34 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\OBS
2016-05-27 04:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-05-27 01:47 - 2014-10-10 14:15 - 04923392 ___SH C:\Users\Marlin\Desktop\Thumbs.db
2016-05-27 00:18 - 2014-09-14 16:58 - 17078958 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-05-26 23:00 - 2015-06-14 22:46 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-26 23:00 - 2015-06-14 22:46 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-26 22:34 - 2015-06-17 17:42 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-05-26 21:07 - 2016-04-16 17:08 - 00000000 ____D C:\Users\Marlin\Downloads\Telegram Desktop
2016-05-26 19:31 - 2015-06-21 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2016-05-26 16:31 - 2015-03-11 21:11 - 00000000 ____D C:\Users\Marlin\AppData\Local\CrashDumps
2016-05-25 16:55 - 2015-08-28 15:51 - 00000000 ____D C:\Windows\et-EE
2016-05-25 16:55 - 2015-08-28 15:47 - 00000000 ____D C:\Windows\lt-LT
2016-05-25 16:55 - 2015-08-28 15:07 - 00000000 ____D C:\Windows\lv-LV
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\lv-LV
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\lt-LT
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\et-EE
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\lv-LV
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\lt-LT
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\et-EE
2016-05-25 16:21 - 2015-11-18 23:43 - 00943536 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-05-25 16:21 - 2015-06-11 20:32 - 00049240 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
2016-05-25 16:20 - 2015-07-04 03:18 - 00237480 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-05-25 14:47 - 2016-01-22 14:43 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-05-25 14:09 - 2015-01-13 18:31 - 00000000 ____D C:\AdwCleaner
2016-05-25 13:48 - 2016-01-02 21:02 - 00000000 ___RD C:\Users\Marlin\MediaFire
2016-05-25 00:27 - 2015-03-22 19:59 - 00000000 ____D C:\ProgramData\TEMP
2016-05-24 23:56 - 2014-11-08 23:43 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-05-24 23:10 - 2014-10-15 14:34 - 00000000 ____D C:\Users\Marlin\AppData\Local\gtk-2.0
2016-05-24 23:10 - 2014-10-15 14:30 - 00000000 ____D C:\Users\Marlin\.gimp-2.8
2016-05-24 22:20 - 2016-03-29 21:44 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Tweeten
2016-05-24 22:10 - 2016-04-26 00:53 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2016-05-24 22:10 - 2016-03-26 00:13 - 00000671 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-24 22:10 - 2015-07-06 15:48 - 00000723 _____ C:\Users\Marlin\Desktop\Amorous.lnk
2016-05-24 22:10 - 2015-05-11 22:55 - 00000000 __SHD C:\Users\Marlin\Desktop\Tools
2016-05-24 22:10 - 2014-10-23 22:49 - 00001281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-24 22:10 - 2014-10-08 20:33 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks
2016-05-24 22:10 - 2014-09-14 16:56 - 00001026 _____ C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-24 19:56 - 2014-10-02 14:16 - 00177000 _____ C:\IFRToolLog.txt
2016-05-21 21:49 - 2015-08-28 03:26 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-19 18:18 - 2016-02-11 16:29 - 00000633 _____ C:\Users\Marlin\Desktop\Phone.txt
2016-05-19 16:33 - 2016-04-16 23:52 - 00000000 ____D C:\Users\Marlin\Documents\Euro Truck Simulator 2
2016-05-19 01:37 - 2015-12-04 19:42 - 00000958 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-05-18 19:29 - 2016-01-04 15:59 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-05-18 19:29 - 2014-09-14 14:49 - 00000000 ____D C:\ProgramData\Skype
2016-05-18 19:08 - 2015-04-22 07:54 - 00000000 ____D C:\Users\Alexander
2016-05-14 00:39 - 2014-12-02 17:16 - 00000501 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-05-13 19:55 - 2015-11-15 19:09 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Audacity
2016-05-13 15:10 - 2015-12-30 18:55 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-13 15:10 - 2015-12-30 18:55 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-13 15:10 - 2015-12-30 18:55 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-05-13 13:25 - 2015-07-19 14:08 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-05-12 23:01 - 2015-06-14 22:46 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-12 20:57 - 2015-08-28 03:26 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-05-12 20:30 - 2014-12-31 12:44 - 00000000 ____D C:\Users\Marlin\Documents\ETS2MP
2016-05-11 21:37 - 2016-04-18 17:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP
2016-05-11 15:46 - 2016-01-26 14:52 - 00000000 ____D C:\ProgramData\TwonkyServer
2016-05-11 14:51 - 2009-07-14 06:45 - 00355016 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-10 23:20 - 2010-11-21 09:00 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-10 23:12 - 2015-11-25 23:26 - 00000600 _____ C:\Users\Marlin\AppData\Roaming\PUTTY.RND
2016-05-10 23:10 - 2014-09-14 11:47 - 00000000 ____D C:\Windows\system32\MRT
2016-05-10 23:01 - 2014-09-14 11:47 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-10 22:12 - 2016-01-02 21:00 - 00000000 ____D C:\Program Files (x86)\MediaFire Desktop
2016-05-09 23:36 - 2015-02-20 20:27 - 00000000 ____D C:\ProgramData\Origin
2016-05-06 16:29 - 2015-12-22 19:55 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-05-06 14:49 - 2015-06-12 21:23 - 00000000 ____D C:\ProgramData\Razer
2016-05-05 18:29 - 2015-01-16 15:38 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-05-05 18:20 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-05-05 15:49 - 2016-03-08 03:10 - 00000000 ____D C:\Users\Marlin\Documents\Electronic Arts
2016-05-03 15:06 - 2014-09-23 16:06 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-05-03 15:06 - 2014-09-23 16:06 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-05-02 22:10 - 2015-10-15 18:08 - 00000000 ____D C:\Users\Marlin\AppData\Local\Battle.net
2016-05-02 21:11 - 2016-04-02 22:17 - 00000000 ____D C:\Program Files (x86)\RealWorld Cursor Editor
2016-05-02 21:10 - 2016-01-01 23:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client
2016-05-02 21:10 - 2015-09-08 15:14 - 00000000 ____D C:\Program Files\Realtek
2016-05-02 21:10 - 2015-06-13 18:52 - 00000000 ____D C:\ProgramData\Apple
2016-05-02 21:10 - 2015-06-13 18:52 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-05-02 21:10 - 2015-01-20 19:20 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\puush
2016-05-02 21:10 - 2014-09-14 17:14 - 00000000 ____D C:\Windows\system32\SRSLabs
2016-05-02 21:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security
2016-05-02 21:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-05-02 21:03 - 2014-09-14 17:14 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-04-30 15:40 - 2014-09-14 17:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-04-30 13:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-01-12 14:09 - 2016-01-12 14:09 - 0000011 _____ () C:\Users\Marlin\AppData\Roaming\.tv7
2016-04-16 14:24 - 2016-04-16 14:24 - 0005120 _____ () C:\Users\Marlin\AppData\Roaming\GiftBag.db
2014-09-24 19:48 - 2014-09-24 19:48 - 0000012 _____ () C:\Users\Marlin\AppData\Roaming\id.txt
2014-10-12 16:21 - 2014-10-12 16:21 - 0000098 _____ () C:\Users\Marlin\AppData\Roaming\LauncherSettings_live.cfg
2014-11-12 18:53 - 2014-11-13 15:37 - 0001216 _____ () C:\Users\Marlin\AppData\Roaming\Marlin.txt
2015-11-25 23:26 - 2016-05-10 23:12 - 0000600 _____ () C:\Users\Marlin\AppData\Roaming\PUTTY.RND
2015-08-29 11:50 - 2015-08-29 11:50 - 0001268 _____ () C:\Users\Marlin\AppData\Roaming\Roaming - Shortcut.lnk
2015-08-29 11:50 - 2015-08-29 11:51 - 0044032 ___SH () C:\Users\Marlin\AppData\Roaming\Thumbs.db
2016-01-02 21:48 - 2016-01-04 21:13 - 20806800 _____ () C:\Users\Marlin\AppData\Roaming\xulrunner.zip
2016-05-25 01:10 - 2016-05-25 01:10 - 0000000 ____H () C:\Users\Marlin\AppData\Local\BITFA99.tmp
2014-09-24 19:53 - 2015-10-22 02:25 - 0011776 _____ () C:\Users\Marlin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-13 19:58 - 2016-05-28 23:40 - 0000600 _____ () C:\Users\Marlin\AppData\Local\PUTTY.RND
2016-05-24 23:10 - 2016-05-24 23:10 - 0023802 _____ () C:\Users\Marlin\AppData\Local\recently-used.xbel
2015-06-12 15:18 - 2015-10-11 22:41 - 0007599 _____ () C:\Users\Marlin\AppData\Local\Resmon.ResmonCfg
2016-05-25 01:09 - 2016-05-25 01:10 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{056C4BAF-A0FF-4DDD-ABE9-6611CE374B05}
2015-10-08 08:08 - 2015-10-08 08:08 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{17367099-8997-4CFF-BF2C-F000DF000440}
2016-05-24 22:29 - 2016-05-24 22:29 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{1A1B3749-31EB-494F-AA76-3DFC76586726}
2016-01-10 00:24 - 2016-01-10 00:24 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{5BD514BE-42FC-46EB-A519-E8C388502CAC}
2015-12-08 15:23 - 2015-12-08 15:23 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{5D944AE5-599D-45D9-9A19-38C0440454A8}
2015-12-16 14:27 - 2015-12-16 14:27 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{73AA8701-6E85-4A4D-BF2B-5D5DA87280D5}
2016-05-21 16:28 - 2016-05-21 16:28 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{AB9E70B5-71FF-4C0D-9E0C-EEBA9714DFC4}
2015-08-13 11:15 - 2015-08-13 11:15 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{B8E48531-81EC-4123-9E5A-E18A4912D3F8}
2015-12-16 14:27 - 2015-12-16 14:27 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{BD45C9D4-BE8E-457B-B07F-11E05B39E8ED}
2016-05-25 01:07 - 2016-05-25 01:07 - 0000011 _____ () C:\ProgramData\.tv7

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Marlin\multibit-hd-windows-x64-0.3.0.exe


Einige Dateien in TEMP:
====================
C:\Users\Marlin\AppData\Local\Temp\geek_x64.exe
C:\Users\Marlin\AppData\Local\Temp\proxy_vole3078156386628584763.dll
C:\Users\Marlin\AppData\Local\Temp\proxy_vole6623774401576491129.dll
C:\Users\Marlin\AppData\Local\Temp\proxy_vole8733910277905170186.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-05-28 23:18

==================== Ende von FRST.txt ============================

Alt 29.05.2016, 12:21   #26
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Code:
ATTFilter
13:16:28.0241 0x2540  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
13:16:32.0572 0x2540  ============================================================
13:16:32.0572 0x2540  Current date / time: 2016/05/29 13:16:32.0572
13:16:32.0572 0x2540  SystemInfo:
13:16:32.0572 0x2540  
13:16:32.0572 0x2540  OS Version: 6.1.7601 ServicePack: 1.0
13:16:32.0572 0x2540  Product type: Workstation
13:16:32.0572 0x2540  ComputerName: BLACKMAGIC
13:16:32.0572 0x2540  UserName: Marlin
13:16:32.0572 0x2540  Windows directory: C:\Windows
13:16:32.0572 0x2540  System windows directory: C:\Windows
13:16:32.0572 0x2540  Running under WOW64
13:16:32.0572 0x2540  Processor architecture: Intel x64
13:16:32.0572 0x2540  Number of processors: 4
13:16:32.0572 0x2540  Page size: 0x1000
13:16:32.0572 0x2540  Boot type: Normal boot
13:16:32.0572 0x2540  ============================================================
13:17:27.0916 0x2540  KLMD registered as C:\Windows\system32\drivers\69280448.sys
13:17:28.0022 0x2540  System UUID: {6C2FD3C5-63F0-DE68-5992-60EC3EA8BF3F}
13:17:28.0409 0x2540  Drive \Device\Harddisk0\DR0 - Size: 0x37E4896000 ( 223.57 Gb ), SectorSize: 0x200, Cylinders: 0x7201, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:17:28.0435 0x2540  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:17:28.0443 0x2540  Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:17:28.0446 0x2540  ============================================================
13:17:28.0446 0x2540  \Device\Harddisk0\DR0:
13:17:28.0446 0x2540  MBR partitions:
13:17:28.0446 0x2540  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1BF23000
13:17:28.0446 0x2540  \Device\Harddisk1\DR1:
13:17:28.0476 0x2540  MBR partitions:
13:17:28.0476 0x2540  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
13:17:28.0476 0x2540  \Device\Harddisk2\DR2:
13:17:28.0476 0x2540  MBR partitions:
13:17:28.0476 0x2540  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
13:17:28.0476 0x2540  ============================================================
13:17:28.0477 0x2540  C: <-> \Device\Harddisk0\DR0\Partition1
13:17:29.0036 0x2540  D: <-> \Device\Harddisk1\DR1\Partition1
13:17:29.0136 0x2540  K: <-> \Device\Harddisk2\DR2\Partition1
13:17:29.0136 0x2540  ============================================================
13:17:29.0136 0x2540  Initialize success
13:17:29.0136 0x2540  ============================================================
13:17:47.0900 0x2848  ============================================================
13:17:47.0900 0x2848  Scan started
13:17:47.0900 0x2848  Mode: Manual; SigCheck; TDLFS; 
13:17:47.0900 0x2848  ============================================================
13:17:47.0900 0x2848  KSN ping started
13:18:02.0635 0x2848  KSN ping finished: true
13:18:09.0679 0x2848  ================ Scan system memory ========================
13:18:09.0679 0x2848  System memory - ok
13:18:09.0679 0x2848  ================ Scan services =============================
13:18:09.0723 0x2848  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
13:18:09.0771 0x2848  1394ohci - ok
13:18:09.0790 0x2848  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:18:09.0804 0x2848  ACPI - ok
13:18:09.0807 0x2848  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:18:09.0820 0x2848  AcpiPmi - ok
13:18:09.0825 0x2848  [ 36114214BF8D7C464D1E92E4EB6B2DD3, 8E7CB266D4ABCDF332A3D4D341753811D51B72985E36F24A7E757DCA11A65A2A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:18:09.0835 0x2848  AdobeARMservice - ok
13:18:09.0865 0x2848  [ 6A050671F2C76FB48131F12786802807, 71B37A9CEAE5AB1B069FB010BC547E14445461885B74FA879E63F9F2DAF644A5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:18:09.0878 0x2848  AdobeFlashPlayerUpdateSvc - ok
13:18:09.0890 0x2848  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
13:18:09.0905 0x2848  adp94xx - ok
13:18:09.0913 0x2848  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
13:18:09.0926 0x2848  adpahci - ok
13:18:09.0932 0x2848  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
13:18:09.0942 0x2848  adpu320 - ok
13:18:09.0947 0x2848  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:18:09.0957 0x2848  AeLookupSvc - ok
13:18:09.0967 0x2848  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
13:18:09.0984 0x2848  AFD - ok
13:18:09.0988 0x2848  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
13:18:09.0996 0x2848  agp440 - ok
13:18:10.0000 0x2848  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
13:18:10.0010 0x2848  ALG - ok
13:18:10.0013 0x2848  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:18:10.0021 0x2848  aliide - ok
13:18:10.0052 0x2848  ALSysIO - ok
13:18:10.0060 0x2848  [ 5F4D8699A9CA2F48E7BE0245BF906EA3, EE9A043DA383939038BC3DE4C0EA9F4CE9476730582D184E234E14F25800E410 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:18:10.0080 0x2848  AMD External Events Utility - ok
13:18:10.0093 0x2848  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
13:18:10.0100 0x2848  amdide - ok
13:18:10.0104 0x2848  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
13:18:10.0113 0x2848  AmdK8 - ok
13:18:10.0116 0x2848  amdkmdag - ok
13:18:10.0130 0x2848  [ 7189382461CBDC16E964653290B3DFA7, D40C826FAB707F2A73ABD0F575DB51ED889603956374C8F126AA32AD0B4A8E65 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
13:18:10.0151 0x2848  amdkmdap - ok
13:18:10.0155 0x2848  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
13:18:10.0165 0x2848  AmdPPM - ok
13:18:10.0169 0x2848  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:18:10.0179 0x2848  amdsata - ok
13:18:10.0185 0x2848  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:18:10.0195 0x2848  amdsbs - ok
13:18:10.0199 0x2848  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:18:10.0208 0x2848  amdxata - ok
13:18:10.0217 0x2848  [ 34BBA51A066D55C948EDDAE065553CD1, BB7577F3622609E1FAD795DB79B9AF9111D911B2BA369F794E2D3D37B75EA535 ] AndnetBus       C:\Windows\system32\DRIVERS\lgandnetbus64.sys
13:18:10.0226 0x2848  AndnetBus - ok
13:18:10.0229 0x2848  [ DB9374B42A0203DF3B13F7909742F18E, ADA57FA76458DEA6F2F468D9A5FFD7059588CEE94A7387D5E79B112777C56758 ] AndNetDiag      C:\Windows\system32\DRIVERS\lgandnetdiag64.sys
13:18:10.0238 0x2848  AndNetDiag - ok
13:18:10.0242 0x2848  [ 362169798009F467211D8BB9EBC6BE17, E6008F6A5B3199028E62D00BF4456AAB35C012D62BDC9CA94911DF4D451651CA ] ANDNetModem     C:\Windows\system32\DRIVERS\lgandnetmodem64.sys
13:18:10.0250 0x2848  ANDNetModem - ok
13:18:10.0253 0x2848  andnetndis - ok
13:18:10.0256 0x2848  [ 4542CC17440E85D2D2D73A7D40FAED0A, F157F9A137DEACFC5A1A982265F5CE05A79C0CF8F13291773E2351BEFCB94E08 ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
13:18:10.0265 0x2848  Apowersoft_AudioDevice - ok
13:18:10.0268 0x2848  [ 6474F8823C7188D2DA579F01FB6CED6B, 81D4E9D026CA60FB8840D520D151B8C2F4745A75DF90A4D6C80641F1A23AB605 ] AppID           C:\Windows\system32\drivers\appid.sys
13:18:10.0278 0x2848  AppID - ok
13:18:10.0281 0x2848  [ 8F58BA1F7772D6D7CE45F03309608001, CDB109E0DD241042C058F7D81A1BDEBC34435CB2DC4A7A7A3692193DD5806097 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:18:10.0290 0x2848  AppIDSvc - ok
13:18:10.0293 0x2848  [ B62867835B41BCD839D9896AB4D7DF09, 98036D0202DB6171E90485898175833AC44873A85E6453EBE928E433B364CE07 ] Appinfo         C:\Windows\System32\appinfo.dll
13:18:10.0303 0x2848  Appinfo - ok
13:18:10.0316 0x2848  [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:18:10.0323 0x2848  Apple Mobile Device Service - ok
13:18:10.0329 0x2848  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:18:10.0341 0x2848  AppMgmt - ok
13:18:10.0345 0x2848  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
13:18:10.0354 0x2848  arc - ok
13:18:10.0358 0x2848  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:18:10.0368 0x2848  arcsas - ok
13:18:10.0381 0x2848  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:18:10.0394 0x2848  aspnet_state - ok
13:18:10.0397 0x2848  [ E1AFEE1584C74050DE0DD16DE2A54BF3, 77C8D98159D8BCDC7917B04977949823D50C49D0D13587310E060A4B8893AE42 ] AsrAppCharger   C:\Windows\system32\DRIVERS\AsrAppCharger.sys
13:18:10.0405 0x2848  AsrAppCharger - ok
13:18:10.0408 0x2848  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:18:10.0432 0x2848  AsyncMac - ok
13:18:10.0435 0x2848  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
13:18:10.0443 0x2848  atapi - ok
13:18:10.0449 0x2848  [ 324F54FF811638E57DF5B86E1926229C, 52E207AF43C11E8173175C8AA06C95FB5375532D76AE7400243F5FEDAB2E4F8C ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
13:18:10.0458 0x2848  AtiHDAudioService - ok
13:18:10.0466 0x2848  [ FC0E8778C000291CAF60EB88C011E931, 09BCCA3DE01021AEF76DFB46F01D21BA6FF409E816FA7547E5C3DFBF3A615ED2 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
13:18:10.0478 0x2848  atksgt - ok
13:18:10.0481 0x2848  ATP - ok
13:18:10.0495 0x2848  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:18:10.0515 0x2848  AudioEndpointBuilder - ok
13:18:10.0528 0x2848  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
13:18:10.0546 0x2848  AudioSrv - ok
13:18:10.0549 0x2848  [ 1DC2F715792CF33428AD7993ACBD224D, 129FBD517E016914CD61C35894C0B9B2074E680F1EB21201597E5C13CAF4529F ] avmeject        C:\Windows\system32\drivers\avmeject.sys
13:18:10.0556 0x2848  avmeject - ok
13:18:10.0566 0x2848  [ 50C3C62FFE6337E6E4F2F01CB07DF63C, CC9C7D2827E872F22A2A79D42195530F61DF6EA6A1C8F520E25DB35537574FAB ] AVP16.0.0       C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
13:18:10.0576 0x2848  AVP16.0.0 - ok
13:18:10.0579 0x2848  [ 04749A5BFA61B9431CA1EDD0548C6F9E, 5BEFF313939C49E2A6BEE6CA4405EF78D0A0B5A3C03B2610D666116424D60BA5 ] AWEAlloc        C:\Windows\system32\DRIVERS\awealloc.sys
13:18:10.0586 0x2848  AWEAlloc - ok
13:18:10.0591 0x2848  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:18:10.0603 0x2848  AxInstSV - ok
13:18:10.0613 0x2848  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
13:18:10.0630 0x2848  b06bdrv - ok
13:18:10.0637 0x2848  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
13:18:10.0650 0x2848  b57nd60a - ok
13:18:10.0656 0x2848  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:18:10.0665 0x2848  BDESVC - ok
13:18:10.0671 0x2848  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:18:10.0694 0x2848  Beep - ok
13:18:10.0709 0x2848  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
13:18:10.0730 0x2848  BFE - ok
13:18:10.0748 0x2848  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
13:18:10.0784 0x2848  BITS - ok
13:18:10.0788 0x2848  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
13:18:10.0797 0x2848  blbdrive - ok
13:18:10.0806 0x2848  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:18:10.0820 0x2848  Bonjour Service - ok
13:18:10.0824 0x2848  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:18:10.0834 0x2848  bowser - ok
13:18:10.0839 0x2848  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
13:18:10.0849 0x2848  BrFiltLo - ok
13:18:10.0852 0x2848  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
13:18:10.0862 0x2848  BrFiltUp - ok
13:18:10.0867 0x2848  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
13:18:10.0878 0x2848  Browser - ok
13:18:10.0892 0x2848  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:18:10.0905 0x2848  Brserid - ok
13:18:10.0909 0x2848  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:18:10.0919 0x2848  BrSerWdm - ok
13:18:10.0922 0x2848  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:18:10.0932 0x2848  BrUsbMdm - ok
13:18:10.0935 0x2848  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:18:10.0943 0x2848  BrUsbSer - ok
13:18:10.0947 0x2848  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
13:18:10.0958 0x2848  BTHMODEM - ok
13:18:10.0963 0x2848  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
13:18:10.0987 0x2848  bthserv - ok
13:18:10.0990 0x2848  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:18:11.0015 0x2848  cdfs - ok
13:18:11.0021 0x2848  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:18:11.0031 0x2848  cdrom - ok
13:18:11.0035 0x2848  [ 4F16CBA65FAA457BCFF7CC614D7880D1, A07C7CC1689145B21C506FBC5D471E32E4C34E43EDD820CF7A7843558345EC33 ] Cepstral License Server C:\Program Files (x86)\Cepstral\bin\CepstralLicSrv.exe
13:18:11.0039 0x2848  Cepstral License Server - detected UnsignedFile.Multi.Generic ( 1 )
13:18:12.0946 0x2d14  Object required for P2P: [ 6A050671F2C76FB48131F12786802807 ] AdobeFlashPlayerUpdateSvc
13:18:13.0647 0x2848  Detect skipped due to KSN trusted
13:18:13.0647 0x2848  Cepstral License Server - ok
13:18:13.0651 0x2848  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:18:13.0674 0x2848  CertPropSvc - ok
13:18:13.0679 0x2848  [ 76FBFD583CCE97FD06FCD510805A5908, 9CBBCC49E3CB1882C89798C0FB1836EFD0ED84775CCDFFEC898DFAB3996A2E12 ] CGVPNCliService C:\Program Files\CyberGhost 5\Service.exe
13:18:13.0689 0x2848  CGVPNCliService - ok
13:18:13.0693 0x2848  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
13:18:13.0703 0x2848  circlass - ok
13:18:13.0714 0x2848  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
13:18:13.0729 0x2848  CLFS - ok
13:18:13.0735 0x2848  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:18:13.0745 0x2848  clr_optimization_v2.0.50727_32 - ok
13:18:13.0751 0x2848  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:18:13.0760 0x2848  clr_optimization_v2.0.50727_64 - ok
13:18:13.0769 0x2848  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:18:13.0785 0x2848  clr_optimization_v4.0.30319_32 - ok
13:18:13.0789 0x2848  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:18:13.0801 0x2848  clr_optimization_v4.0.30319_64 - ok
13:18:13.0804 0x2848  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
13:18:13.0812 0x2848  CmBatt - ok
13:18:13.0816 0x2848  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:18:13.0824 0x2848  cmdide - ok
13:18:13.0833 0x2848  [ B2A6D2A30E93B6F215F74AC7E1733C9C, 960299F7BF2501B46296EDEA050BF30313C17A9B785574B56B79C070BD1B6E1A ] cm_km           C:\Windows\system32\DRIVERS\cm_km.sys
13:18:13.0849 0x2848  cm_km - ok
13:18:13.0860 0x2848  [ CA3FB5A6B626D8A00A89E049CF95954E, CD5E3E40972513195108BA46CEC1D0AEA6B09A67EEBDD17EB759BD1729B07C06 ] CNG             C:\Windows\system32\Drivers\cng.sys
13:18:13.0878 0x2848  CNG - ok
13:18:13.0882 0x2848  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
13:18:13.0890 0x2848  Compbatt - ok
13:18:13.0893 0x2848  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
13:18:13.0903 0x2848  CompositeBus - ok
13:18:13.0906 0x2848  COMSysApp - ok
13:18:13.0909 0x2848  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
13:18:13.0916 0x2848  crcdisk - ok
13:18:13.0922 0x2848  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:18:13.0934 0x2848  CryptSvc - ok
13:18:13.0945 0x2848  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
13:18:13.0962 0x2848  CSC - ok
13:18:13.0976 0x2848  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
13:18:13.0997 0x2848  CscService - ok
13:18:14.0000 0x2848  dbupdate - ok
13:18:14.0003 0x2848  dbupdatem - ok
13:18:14.0017 0x2848  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:18:14.0037 0x2848  DcomLaunch - ok
13:18:14.0047 0x2848  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
13:18:14.0077 0x2848  defragsvc - ok
13:18:14.0081 0x2848  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:18:14.0113 0x2848  DfsC - ok
13:18:14.0119 0x2848  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
13:18:14.0128 0x2848  dg_ssudbus - ok
13:18:14.0136 0x2848  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:18:14.0151 0x2848  Dhcp - ok
13:18:14.0179 0x2848  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
13:18:14.0217 0x2848  DiagTrack - ok
13:18:14.0232 0x2848  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
13:18:14.0258 0x2848  discache - ok
13:18:14.0262 0x2848  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
13:18:14.0270 0x2848  Disk - ok
13:18:14.0274 0x2848  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
13:18:14.0284 0x2848  dmvsc - ok
13:18:14.0289 0x2848  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:18:14.0300 0x2848  Dnscache - ok
13:18:14.0307 0x2848  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:18:14.0334 0x2848  dot3svc - ok
13:18:14.0339 0x2848  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
13:18:14.0364 0x2848  DPS - ok
13:18:14.0366 0x2848  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:18:14.0379 0x2848  drmkaud - ok
13:18:14.0399 0x2848  [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:18:14.0424 0x2848  DXGKrnl - ok
13:18:14.0436 0x2848  [ A030FD04470A8BD8044567D2E915AFAA, 5EF4CA03F121AA9296A52C1C9B1852087A347002B2CC664D3972AF44A2E5365F ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
13:18:14.0451 0x2848  e1dexpress - ok
13:18:14.0456 0x2848  EagleX64 - ok
13:18:14.0460 0x2848  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
13:18:14.0485 0x2848  EapHost - ok
13:18:14.0489 0x2848  EasyAntiCheat - ok
13:18:14.0513 0x2848  EasyRedirect - ok
13:18:14.0569 0x2848  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
13:18:14.0638 0x2848  ebdrv - ok
13:18:14.0644 0x2848  [ B759D828F2A0DA53CB3780388B5B289E, DF2228C5E8ECC1762892ED00AB60EEF68023BE02E04C2181CCD68AEA1884A052 ] EFS             C:\Windows\System32\lsass.exe
13:18:14.0654 0x2848  EFS - ok
13:18:14.0669 0x2848  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
13:18:14.0690 0x2848  ehRecvr - ok
13:18:14.0695 0x2848  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
13:18:14.0705 0x2848  ehSched - ok
13:18:14.0708 0x2848  [ 4778EEECB75C6FB419745BEED3530B9D, 8683639FF5CC4DB9955C61C28922637D10BB9CDAA20AD260292F8E90DE198205 ] ElRawDisk       C:\Windows\system32\drivers\rsdrvx64.sys
13:18:14.0716 0x2848  ElRawDisk - ok
13:18:14.0727 0x2848  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
13:18:14.0745 0x2848  elxstor - ok
13:18:14.0748 0x2848  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:18:14.0766 0x2848  ErrDev - ok
13:18:14.0770 0x2848  [ 3B32CAA07D672F8A2E0DF5CB3A873F45, 09687E30FA5779C3593769D66CAEBED95C932746EDD6E83DABE3DCFD126AB5EC ] EsgScanner      C:\Windows\system32\DRIVERS\EsgScanner.sys
13:18:14.0777 0x2848  EsgScanner - ok
13:18:14.0781 0x2848  [ 932C05033053ADA2404FD836C9AB2C70, 39E3C40DDDCA475F55CD6A044E8CF35A1C25A776B79204CBF76D0DD5D89568D8 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
13:18:14.0788 0x2848  EuMusDesignVirtualAudioCableWdm - ok
13:18:14.0799 0x2848  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
13:18:14.0829 0x2848  EventSystem - ok
13:18:14.0832 0x2848  [ A0539478593A00AA64E600CF7E19F195, BD835D70F3EE9BFEFFABE747AD65BC97C73AD8042F653BF93535277FB0CBD4CE ] EvolveVirtualAdapter C:\Windows\system32\DRIVERS\evolve.sys
13:18:14.0839 0x2848  EvolveVirtualAdapter - ok
13:18:14.0845 0x2848  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
13:18:14.0872 0x2848  exfat - ok
13:18:14.0880 0x2848  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:18:14.0909 0x2848  fastfat - ok
13:18:14.0923 0x2848  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
13:18:14.0944 0x2848  Fax - ok
13:18:14.0947 0x2848  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
13:18:14.0956 0x2848  fdc - ok
13:18:14.0959 0x2848  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
13:18:14.0985 0x2848  fdPHost - ok
13:18:14.0988 0x2848  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:18:15.0013 0x2848  FDResPub - ok
13:18:15.0016 0x2848  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:18:15.0025 0x2848  FileInfo - ok
13:18:15.0028 0x2848  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:18:15.0051 0x2848  Filetrace - ok
13:18:15.0054 0x2848  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
13:18:15.0063 0x2848  flpydisk - ok
13:18:15.0070 0x2848  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:18:15.0082 0x2848  FltMgr - ok
13:18:15.0105 0x2848  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
13:18:15.0135 0x2848  FontCache - ok
13:18:15.0140 0x2848  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:18:15.0148 0x2848  FontCache3.0.0.0 - ok
13:18:15.0152 0x2848  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:18:15.0160 0x2848  FsDepends - ok
13:18:15.0164 0x2848  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:18:15.0171 0x2848  Fs_Rec - ok
13:18:15.0177 0x2848  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:18:15.0190 0x2848  fvevol - ok
13:18:15.0210 0x2848  [ 8A3DB33B2FA1D0CAF7A70256E00EB996, 13F51EEB0088A8891620388843A8C3BA1D1526CF8AF1C5960E167FC4C877563A ] fwlanusb5       C:\Windows\system32\DRIVERS\fwlanusb5.sys
13:18:15.0237 0x2848  fwlanusb5 - ok
13:18:15.0242 0x2848  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
13:18:15.0250 0x2848  gagp30kx - ok
13:18:15.0268 0x2848  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
13:18:15.0305 0x2848  gpsvc - ok
13:18:15.0310 0x2848  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:18:15.0319 0x2848  gupdate - ok
13:18:15.0323 0x2848  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:18:15.0331 0x2848  gupdatem - ok
13:18:15.0335 0x2848  [ B044F2043F6FEA5E20176FE08B90B45F, F89BBFAA784903176740B6853D2F9329257B425222F7604DDB46E27CAB09011A ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
13:18:15.0342 0x2848  hamachi - ok
13:18:15.0374 0x2848  Hamachi2Svc - ok
13:18:15.0377 0x2848  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:18:15.0388 0x2848  hcw85cir - ok
13:18:15.0396 0x2848  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:18:15.0412 0x2848  HdAudAddService - ok
13:18:15.0416 0x2848  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
13:18:15.0428 0x2848  HDAudBus - ok
13:18:15.0431 0x2848  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
13:18:15.0439 0x2848  HidBatt - ok
13:18:15.0444 0x2848  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
13:18:15.0456 0x2848  HidBth - ok
13:18:15.0459 0x2848  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
13:18:15.0469 0x2848  HidIr - ok
13:18:15.0472 0x2848  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
13:18:15.0495 0x2848  hidserv - ok
13:18:15.0498 0x2848  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
13:18:15.0507 0x2848  HidUsb - ok
13:18:15.0520 0x2848  [ 9918B9C21E2033DD1F1872D3D06B418D, 07C5E4236DE258920DB9F742E750C0B5D85479BD01A6DCF049ADA1F092E07B06 ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
13:18:15.0527 0x2848  hitmanpro37 - ok
13:18:15.0531 0x2848  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:18:15.0555 0x2848  hkmsvc - ok
13:18:15.0566 0x2848  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:18:15.0580 0x2848  HomeGroupListener - ok
13:18:15.0586 0x2848  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:18:15.0599 0x2848  HomeGroupProvider - ok
13:18:15.0603 0x2848  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:18:15.0613 0x2848  HpSAMD - ok
13:18:15.0627 0x2848  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:18:15.0650 0x2848  HTTP - ok
13:18:15.0655 0x2848  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:18:15.0662 0x2848  hwpolicy - ok
13:18:15.0666 0x2848  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
13:18:15.0671 0x2d14  Object send P2P result: true
13:18:15.0677 0x2848  i8042prt - ok
13:18:15.0691 0x2848  [ 815499B59D675E42A70894118E7A6422, 2E30C726C8E53C1C6B4F113569287B2F85F0502C13067C8C93C82B3561C760F4 ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
13:18:15.0710 0x2848  iaStorA - ok
13:18:15.0713 0x2848  [ A55971BD810EBDEF1E83CE57F5AC091B, 43AAE856E0E1D1647DC8AF37E907DC8FB74C9C388E48A9F68D209AECAA1E54B6 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
13:18:15.0721 0x2848  IAStorDataMgrSvc - ok
13:18:15.0723 0x2848  [ C9FFC9330A5944A709549A28B5EB37C5, 7540DE3E48DCF64C9A3B015186D66A35CF1F181FDE6D700BE3F81AC8F7223236 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
13:18:15.0730 0x2848  iaStorF - ok
13:18:15.0741 0x2848  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:18:15.0756 0x2848  iaStorV - ok
13:18:15.0760 0x2848  [ C1010ADD3DDAE1196ED21057AF7B2AAE, 68196851855AD395008D7F29FCEB28BA4BEB1F062B1844A60813E7DD102ACB1C ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
13:18:15.0767 0x2848  ICCWDT - ok
13:18:15.0772 0x2848  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
13:18:15.0776 0x2848  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
13:18:18.0444 0x2848  Detect skipped due to KSN trusted
13:18:18.0444 0x2848  IDriverT - ok
13:18:18.0460 0x2848  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:18:18.0487 0x2848  idsvc - ok
13:18:18.0490 0x2848  IEEtwCollectorService - ok
13:18:18.0493 0x2848  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
13:18:18.0502 0x2848  iirsp - ok
13:18:18.0510 0x2848  [ A83F7515B07C240D7742A4D98C89D719, EFA4DF28E2642543544BA9656D3E665BC891B5B28266C739083DF7B31C485E12 ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
13:18:18.0520 0x2848  IJPLMSVC - ok
13:18:18.0537 0x2848  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
13:18:18.0561 0x2848  IKEEXT - ok
13:18:18.0566 0x2848  [ 1060207B608201C20B841A5DFB78737E, 5DE966ED729CE0198723AC31645D7385CE4442BFCD8C564DF4870FB83DB9B601 ] ImDisk          C:\Windows\system32\DRIVERS\imdisk.sys
13:18:18.0573 0x2848  ImDisk - ok
13:18:18.0576 0x2848  [ 67FFE700BEFF03FA2449C251AB31799F, BBD6E5654E4A8EFCCB1127CF137C64A551B5947799363FC95D7DF7F0379E36D7 ] ImDskSvc        C:\Windows\system32\imdsksvc.exe
13:18:18.0583 0x2848  ImDskSvc - ok
13:18:18.0587 0x2848  [ 0BBE196EED750C18E5D4B3CB55EB097C, 6A67BF6CD9BBC77034AD1BBDE6FD1DE78440825E317DB7C517BD4D773FEBDA39 ] INETMON         C:\Windows\System32\Drivers\INETMON.sys
13:18:18.0595 0x2848  INETMON - ok
13:18:18.0674 0x2848  [ 29B908EDFE099AF8F25728B1F3197302, 9D905C919880289C3747DB464DBB12A45923AA9B59C600966B35F0EBB1D16F8C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:18:18.0766 0x2848  IntcAzAudAddService - ok
13:18:18.0790 0x2848  [ 4C17F57E43645E75800E9E84787E34E5, 6A1531D97462BA3B3DBDAD472AF15B717C958AA8C5CE2373DE0B2A41C35BE33E ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
13:18:18.0813 0x2848  Intel(R) Capability Licensing Service TCP IP Interface - ok
13:18:18.0819 0x2848  [ 9417DBC88A3A80F6177BCA204B16A016, A1CAEEDB634C5858D6C448F38BB1464F555D9AC1EC4340DFD0E10E69B4F3CF07 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
13:18:18.0827 0x2848  Intel(R) ME Service - ok
13:18:18.0834 0x2848  [ DD73746062EAF2767EC84D995B50C977, FC06F843A400CDBC64ED2DC73A15DF4348D52D8D058A490E07363A8F4E9F6F7C ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
13:18:18.0845 0x2848  Intel(R) PROSet Monitoring Service - ok
13:18:18.0849 0x2848  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
13:18:18.0858 0x2848  intelide - ok
13:18:18.0870 0x2848  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
13:18:18.0882 0x2848  intelppm - ok
13:18:18.0886 0x2848  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:18:18.0910 0x2848  IPBusEnum - ok
13:18:18.0914 0x2848  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:18:18.0938 0x2848  IpFilterDriver - ok
13:18:18.0950 0x2848  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:18:18.0968 0x2848  iphlpsvc - ok
13:18:18.0971 0x2848  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:18:18.0981 0x2848  IPMIDRV - ok
13:18:18.0986 0x2848  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:18:19.0011 0x2848  IPNAT - ok
13:18:19.0014 0x2848  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:18:19.0032 0x2848  IRENUM - ok
13:18:19.0036 0x2848  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:18:19.0044 0x2848  isapnp - ok
13:18:19.0052 0x2848  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:18:19.0065 0x2848  iScsiPrt - ok
13:18:19.0069 0x2848  [ 35C0995BCDB0E45D1EEBE4FB582D1563, 67B44EE25B8FF5778AC58255265536EC4CC444A5A8368D6311DEDAF58357E5ED ] ISCT            C:\Windows\system32\DRIVERS\ISCTD.sys
13:18:19.0077 0x2848  ISCT - ok
13:18:19.0086 0x2848  [ 9B7E59A57B46A954597D1CDC36EF6220, 70EE8B4F2EDF9D222552C70CE684F1B334FD4688E66344D5FF1D7CD2DEBBA807 ] ISCTAgent       C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
13:18:19.0097 0x2848  ISCTAgent - ok
13:18:19.0104 0x2848  [ 5C9B001D8970C2DA36254A916F3DA8F7, 625AC5C3DFAE52BD34EC3F93742D1D2C229785E4F0F3484CFB7B8728A1C830DF ] iumsvc          C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
13:18:19.0114 0x2848  iumsvc - ok
13:18:19.0117 0x2848  [ 0EF86A0C2DAA725EAD136867AE30BF16, 58033CB67D645DEABFA2028B39753CE8AFFC1490ED1D8566A1B90EB128C673EF ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
13:18:19.0126 0x2848  iusb3hcs - ok
13:18:19.0136 0x2848  [ 676660F20C1E2AA257ADB356F682CAE2, 70FC7C74B354235C40634CF2FB395B201D31855E94DE1F466DDB8A090564CE64 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
13:18:19.0150 0x2848  iusb3hub - ok
13:18:19.0167 0x2848  [ 9E6C59172401A3A347669CCEBBF9909A, 2A30063135ABBAE21145AE1B07D4F199E1B34BBCCF3A295EBA62388609700B98 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
13:18:19.0189 0x2848  iusb3xhc - ok
13:18:19.0196 0x2848  [ 0B93A01F786F37A4B1EDE84E639FFF10, 8747109A2FA2B80C8C5F5B6D2372C1B0DA4F4BF9DC1D551195ADF0715C260223 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
13:18:19.0205 0x2848  jhi_service - ok
13:18:19.0209 0x2848  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
13:18:19.0217 0x2848  kbdclass - ok
13:18:19.0220 0x2848  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
13:18:19.0229 0x2848  kbdhid - ok
13:18:19.0232 0x2848  [ B759D828F2A0DA53CB3780388B5B289E, DF2228C5E8ECC1762892ED00AB60EEF68023BE02E04C2181CCD68AEA1884A052 ] KeyIso          C:\Windows\system32\lsass.exe
13:18:19.0241 0x2848  KeyIso - ok
13:18:19.0253 0x2848  [ BEE1682DA217A4AD46C36896769AA580, 4D853D78E459F7BFE4F4217FCAD47CDACFAC19C2F6CF8261FBAA46BDB387FFDC ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
13:18:19.0269 0x2848  kl1 - ok
13:18:19.0273 0x2848  [ 86F40D79CE80ACBE6BEBAC8CE89D75A0, 8B800425160D1AF3C32EF7B5CA794658EE09CD3EE782473D8D38E1C7706076B3 ] klbackupdisk    C:\Windows\system32\DRIVERS\klbackupdisk.sys
13:18:19.0282 0x2848  klbackupdisk - ok
13:18:19.0286 0x2848  [ C80861511ADA03A65DC12FAA207592F8, 2B50E009DB0D050099E558B7510104B930966EE8BB94CC0F62D1BFD765D5C7AD ] klbackupflt     C:\Windows\system32\DRIVERS\klbackupflt.sys
13:18:19.0296 0x2848  klbackupflt - ok
13:18:19.0300 0x2848  [ 80D7529E1CF09261FADF55E69EFDA90B, 2FE5EC38866E12D78AE3F4AD8CF647BDED616E8A36D9D737F9B6564DDA4685E7 ] kldisk          C:\Windows\system32\DRIVERS\kldisk.sys
13:18:19.0311 0x2848  kldisk - ok
13:18:19.0318 0x2848  [ DE7D2DEDE9C9D5219AA439172BA8D21C, B4573553DF8605A6C9417683B6AA12A596E8777175C39567B91BF03CE895D625 ] klflt           C:\Windows\system32\DRIVERS\klflt.sys
13:18:19.0331 0x2848  klflt - ok
13:18:19.0338 0x2848  [ 84A66A73DD916014D240E9DE8864B84B, B3DB8E168E4B8249C953B05623EEAEEB4ED827BC867760DC8E118C4FE05F70B1 ] klhk            C:\Windows\system32\DRIVERS\klhk.sys
13:18:19.0351 0x2848  klhk - ok
13:18:19.0370 0x2848  [ B54F93308794842E37173152CE92F62C, 407C88B2596B753810346D91282E8FD89B031DF15596EDBC41FFDA9949F5F6FC ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
13:18:19.0395 0x2848  KLIF - ok
13:18:19.0399 0x2848  [ 4F50FD68F7F1A21AA1F811AF992574E6, 9683A48F454FEB187ED1DC1A14600E250283C9D757DAEBAEF983214916B11830 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
13:18:19.0409 0x2848  KLIM6 - ok
13:18:19.0412 0x2848  [ 22C4E9381C60DA78161FA042FDBA6873, B6CC05C1401E788BCCC8CF668216D9B78A8B51409D3CFBF419047933195062E0 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
13:18:19.0421 0x2848  klkbdflt - ok
13:18:19.0424 0x2848  klkbdflt2 - ok
13:18:19.0427 0x2848  [ D792857D47B8DF5BFEC02534C1933BE2, BDD483FA8E2DC50DB4E54D475867455F0D7E115494E2A31CD27A065C7EC26951 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
13:18:19.0436 0x2848  klmouflt - ok
13:18:19.0439 0x2848  [ F610F5F17BC87D61EF8954CCD793BAE4, A77FE26B4A474FE799C3D569BDD7858319C57FC14C1BB43ECFAB1FDB19AF5DC6 ] klpd            C:\Windows\system32\DRIVERS\klpd.sys
13:18:19.0449 0x2848  klpd - ok
13:18:19.0453 0x2848  [ B36DEE2A91F9388C4D3ED744592DE81D, 78D64539A375C80250FB9FA5E1DDA208B331A85916E19ED1353623DDF750EC58 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
13:18:19.0461 0x2848  kltdi - ok
13:18:19.0465 0x2848  [ 2AA3537309C2B9A7F120FB9E6A38250A, 6FD904542E0A21C4D6E46FB3EE11789938B90151D24531EB5319E62759D225DF ] Klwtp           C:\Windows\system32\DRIVERS\klwtp.sys
13:18:19.0476 0x2848  Klwtp - ok
13:18:19.0481 0x2848  [ 1686DE8288052316EFDD49EEA8929065, AD43D6ACCD8693BD76F218E1A4EE088BA061C1309A3E7DAA7EC94D875985D895 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
13:18:19.0493 0x2848  kneps - ok
13:18:19.0496 0x2848  [ B355CDD82F914D681DADEF1049D8174A, EEC9BD077A51766D1827449200FB542201269891E1BECEA39CDCAF4755F15E0B ] KovaPlusFltr    C:\Windows\system32\drivers\KovaPlusFltr.sys
13:18:19.0504 0x2848  KovaPlusFltr - ok
13:18:19.0508 0x2848  [ 033D1EA0A55D92B4C0F7EDB7DF8F0E5A, 31E48564C7F3AD6BB71C0E366D25D4FD55A60B48CD2B28FCB8A7A834ED7568E6 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:18:19.0517 0x2848  KSecDD - ok
13:18:19.0522 0x2848  [ 1FA53C950F443B25A79C731EF8362E7D, 00A5D62BF1F953848B3019A3771CB240915E34D536A43EA5B35F312D6F67EDC4 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:18:19.0531 0x2848  KSecPkg - ok
13:18:19.0534 0x2848  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:18:19.0557 0x2848  ksthunk - ok
13:18:19.0566 0x2848  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:18:19.0596 0x2848  KtmRm - ok
13:18:19.0604 0x2848  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:18:19.0631 0x2848  LanmanServer - ok
13:18:19.0635 0x2848  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:18:19.0660 0x2848  LanmanWorkstation - ok
13:18:19.0664 0x2848  [ 2FDA02CAA0D4E4BD3B66181F9DEF89E9, 9AC437C3CCFBF8DFABAD876854587D6D11D7901DC06F4F667A69BB82FFEE987A ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
13:18:19.0669 0x2848  libusb0 - detected UnsignedFile.Multi.Generic ( 1 )
13:18:22.0347 0x2848  Detect skipped due to KSN trusted
13:18:22.0347 0x2848  libusb0 - ok
13:18:22.0351 0x2848  [ 156AB2E56DC3CA0B582E3362E07CDED7, 7B03929273861690DC42E4C686E655BE5A1C60136AE5E739D7E62306AFD4AB9A ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
13:18:22.0359 0x2848  lirsgt - ok
13:18:22.0366 0x2848  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:18:22.0395 0x2848  lltdsvc - ok
13:18:22.0398 0x2848  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:18:22.0424 0x2848  lmhosts - ok
13:18:22.0436 0x2848  [ C31139E0907170E2A3FA8D19DCC23D35, C504E93D2018E9E487A428483C646C67B4ECE122560CF0FA49A1626E1509EEAE ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
13:18:22.0450 0x2848  LMS - ok
13:18:22.0457 0x2848  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
13:18:22.0467 0x2848  LSI_FC - ok
13:18:22.0471 0x2848  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:18:22.0480 0x2848  LSI_SAS - ok
13:18:22.0484 0x2848  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
13:18:22.0492 0x2848  LSI_SAS2 - ok
13:18:22.0496 0x2848  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
13:18:22.0506 0x2848  LSI_SCSI - ok
13:18:22.0510 0x2848  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:18:22.0536 0x2848  luafv - ok
13:18:22.0546 0x2848  [ 0C85B2B6FB74B36A251792D45E0EF860, 2E04204560C1159ABC25F273B0B7F81FDF9BA5E88C17929FD924C4E945DE5020 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
13:18:22.0559 0x2848  LVRS64 - ok
13:18:22.0649 0x2848  [ FF3A488924B0032B1A9CA6948C1FA9E8, 6F05852B75498210926F5CDF49D2A6DD97C39CD93D32E3200D7240AADA3E7BEE ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
13:18:22.0749 0x2848  LVUVC64 - ok
13:18:22.0756 0x2848  [ C06234DCDB1BFC0CF7E25CFAC5B7F5FE, 149A3880E1D58CC0768A174DF4E884F3A4432F935D134B5AE536B7020788F5D5 ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv.sys
13:18:22.0763 0x2848  ManyCam - ok
13:18:22.0769 0x2848  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
13:18:22.0780 0x2848  MBAMProtector - ok
13:18:22.0809 0x2848  [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler   C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
13:18:22.0842 0x2848  MBAMScheduler - ok
13:18:22.0867 0x2848  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
13:18:22.0896 0x2848  MBAMService - ok
13:18:22.0902 0x2848  [ 452ACB7A9914398D9E18CCCFFCF92208, 754AF45C19731C356E7E84497B04E0333759AC86DC553BA275EFC09845E43E4D ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
13:18:22.0909 0x2848  MBAMWebAccessControl - ok
13:18:22.0913 0x2848  [ 88B3BADFB02BE4471655EAF88DDC7EBD, F38D69B80A7670F85A9692A01D2D71A54BB413346C3523726E59D1282D349B83 ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv_x64.sys
13:18:22.0920 0x2848  mcaudrv_simple - ok
13:18:22.0926 0x2848  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
13:18:22.0937 0x2848  Mcx2Svc - ok
13:18:22.0940 0x2848  MediaFire Desktop Updater Service - ok
13:18:22.0944 0x2848  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
13:18:22.0952 0x2848  megasas - ok
13:18:22.0959 0x2848  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
13:18:22.0971 0x2848  MegaSR - ok
13:18:22.0977 0x2848  [ D82D6EA098C4448A964ACB14B3728786, 53D279332AA226FE1EFA40A6181230607C95A4C2C2B864FB67BAC5E5BF34E985 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
13:18:22.0987 0x2848  MEIx64 - ok
13:18:22.0991 0x2848  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
13:18:23.0015 0x2848  MMCSS - ok
13:18:23.0018 0x2848  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
13:18:23.0042 0x2848  Modem - ok
13:18:23.0045 0x2848  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:18:23.0056 0x2848  monitor - ok
13:18:23.0060 0x2848  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:18:23.0068 0x2848  mouclass - ok
13:18:23.0072 0x2848  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:18:23.0083 0x2848  mouhid - ok
13:18:23.0088 0x2848  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:18:23.0096 0x2848  mountmgr - ok
13:18:23.0102 0x2848  [ A80C7B0015AA6EA6824AE25C928645C3, 10B10F14659810FD197BDFC24C0D24DBD7EB940184D384181CA811862BE8DB3A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:18:23.0111 0x2848  MozillaMaintenance - ok
13:18:23.0117 0x2848  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:18:23.0127 0x2848  mpio - ok
13:18:23.0131 0x2848  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:18:23.0157 0x2848  mpsdrv - ok
13:18:23.0173 0x2848  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:18:23.0212 0x2848  MpsSvc - ok
13:18:23.0269 0x2848  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:18:23.0308 0x2848  MRxDAV - ok
13:18:23.0314 0x2848  [ A3A4D13D413D4F39BE3AD4C59ECACDED, 0C4AF0A66E68233D76B958A9D99C09BFCADFB0347855FB6EA5CE3F4356542B83 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:18:23.0325 0x2848  mrxsmb - ok
13:18:23.0333 0x2848  [ 62C90A2C681A85B33E365D259B74EAC5, 510E5FD19AF98D9B56666F9AE3DAC89399677D51C48A3602A4C125EE12203621 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:18:23.0346 0x2848  mrxsmb10 - ok
13:18:23.0351 0x2848  [ 3751A25C842BDE4B7AF895F70A3EE3A2, 8C3DA4C03B88A0D860DBA907B115C2AE99D7F168DA7BB36A8D3C9F1D19678A8C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:18:23.0362 0x2848  mrxsmb20 - ok
13:18:23.0365 0x2848  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:18:23.0373 0x2848  msahci - ok
13:18:23.0378 0x2848  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:18:23.0387 0x2848  msdsm - ok
13:18:23.0392 0x2848  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
13:18:23.0403 0x2848  MSDTC - ok
13:18:23.0408 0x2848  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:18:23.0431 0x2848  Msfs - ok
13:18:23.0434 0x2848  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:18:23.0459 0x2848  mshidkmdf - ok
13:18:23.0463 0x2848  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:18:23.0472 0x2848  msisadrv - ok
13:18:23.0477 0x2848  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:18:23.0503 0x2848  MSiSCSI - ok
13:18:23.0505 0x2848  msiserver - ok
13:18:23.0508 0x2848  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:18:23.0532 0x2848  MSKSSRV - ok
13:18:23.0535 0x2848  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:18:23.0559 0x2848  MSPCLOCK - ok
13:18:23.0562 0x2848  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:18:23.0587 0x2848  MSPQM - ok
13:18:23.0595 0x2848  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:18:23.0610 0x2848  MsRPC - ok
13:18:23.0677 0x2848  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
13:18:23.0684 0x2848  mssmbios - ok
13:18:23.0687 0x2848  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:18:23.0709 0x2848  MSTEE - ok
13:18:23.0712 0x2848  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
13:18:23.0720 0x2848  MTConfig - ok
13:18:23.0724 0x2848  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
13:18:23.0732 0x2848  Mup - ok
13:18:23.0736 0x2848  [ 1898CEDA3247213C084F43637EF163B3, 4429F32DB1CC70567919D7D47B844A91CF1329A6CD116F582305F3B7B60CD60B ] NAL             C:\Windows\system32\Drivers\iqvw64e.sys
13:18:23.0743 0x2848  NAL - ok
13:18:23.0753 0x2848  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
13:18:23.0783 0x2848  napagent - ok
13:18:23.0791 0x2848  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:18:23.0807 0x2848  NativeWifiP - ok
13:18:23.0825 0x2848  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:18:23.0852 0x2848  NDIS - ok
13:18:23.0856 0x2848  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:18:23.0880 0x2848  NdisCap - ok
13:18:23.0884 0x2848  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:18:23.0907 0x2848  NdisTapi - ok
13:18:23.0911 0x2848  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:18:23.0935 0x2848  Ndisuio - ok
13:18:23.0940 0x2848  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:18:23.0967 0x2848  NdisWan - ok
13:18:23.0970 0x2848  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:18:23.0997 0x2848  NDProxy - ok
13:18:24.0002 0x2848  [ 3351A92971670764F014A566D1106E2B, EE93B719C5F38386A23CB81FD818EEEA7332FE5119646CE20ED4160B10F17534 ] Neo_VPN         C:\Windows\system32\DRIVERS\Neo_0118.sys
13:18:24.0012 0x2848  Neo_VPN - ok
13:18:24.0016 0x2848  [ 3351A92971670764F014A566D1106E2B, EE93B719C5F38386A23CB81FD818EEEA7332FE5119646CE20ED4160B10F17534 ] Neo_VPN2        C:\Windows\system32\DRIVERS\Neo_0096.sys
13:18:24.0027 0x2848  Neo_VPN2 - ok
13:18:24.0041 0x2848  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:18:24.0072 0x2848  NetBIOS - ok
13:18:24.0079 0x2848  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:18:24.0109 0x2848  NetBT - ok
13:18:24.0115 0x2848  [ B759D828F2A0DA53CB3780388B5B289E, DF2228C5E8ECC1762892ED00AB60EEF68023BE02E04C2181CCD68AEA1884A052 ] Netlogon        C:\Windows\system32\lsass.exe
13:18:24.0125 0x2848  Netlogon - ok
13:18:24.0133 0x2848  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
13:18:24.0163 0x2848  Netman - ok
13:18:24.0174 0x2848  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:18:24.0186 0x2848  NetMsmqActivator - ok
13:18:24.0190 0x2848  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:18:24.0200 0x2848  NetPipeActivator - ok
13:18:24.0212 0x2848  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
13:18:24.0242 0x2848  netprofm - ok
13:18:24.0248 0x2848  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:18:24.0258 0x2848  NetTcpActivator - ok
13:18:24.0262 0x2848  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:18:24.0272 0x2848  NetTcpPortSharing - ok
13:18:24.0276 0x2848  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
13:18:24.0284 0x2848  nfrd960 - ok
13:18:24.0292 0x2848  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:18:24.0306 0x2848  NlaSvc - ok
13:18:24.0310 0x2848  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:18:24.0333 0x2848  Npfs - ok
13:18:24.0336 0x2848  npggsvc - ok
13:18:24.0339 0x2848  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
13:18:24.0365 0x2848  nsi - ok
13:18:24.0368 0x2848  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:18:24.0390 0x2848  nsiproxy - ok
13:18:24.0420 0x2848  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:18:24.0457 0x2848  Ntfs - ok
13:18:24.0461 0x2848  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
13:18:24.0483 0x2848  Null - ok
13:18:24.0488 0x2848  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:18:24.0497 0x2848  nvraid - ok
13:18:24.0502 0x2848  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:18:24.0511 0x2540  Object required for P2P: [ 29B908EDFE099AF8F25728B1F3197302 ] IntcAzAudAddService
13:18:24.0512 0x2848  nvstor - ok
13:18:24.0516 0x2848  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:18:24.0525 0x2848  nv_agp - ok
13:18:24.0535 0x2848  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:18:24.0549 0x2848  odserv - ok
13:18:24.0553 0x2848  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:18:24.0562 0x2848  ohci1394 - ok
13:18:24.0994 0x2848  [ 7D006FC340B301A1DEAFB5878C078A12, 245A4647DEB2CD5D0C3FF07B45D50D6EE039733000C7F7FEC0A1B58162594B9D ] Origin Client Service D:\Games etc\Origin\OriginClientService.exe
13:18:25.0100 0x2848  Origin Client Service - ok
13:18:25.0107 0x2848  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:18:25.0115 0x2848  ose - ok
13:18:25.0123 0x2848  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:18:25.0138 0x2848  p2pimsvc - ok
13:18:25.0148 0x2848  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
13:18:25.0164 0x2848  p2psvc - ok
13:18:25.0169 0x2848  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
13:18:25.0178 0x2848  Parport - ok
13:18:25.0182 0x2848  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:18:25.0191 0x2848  partmgr - ok
13:18:25.0196 0x2848  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:18:25.0208 0x2848  PcaSvc - ok
13:18:25.0213 0x2848  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
13:18:25.0224 0x2848  pci - ok
13:18:25.0227 0x2848  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
13:18:25.0234 0x2848  pciide - ok
13:18:25.0240 0x2848  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:18:25.0252 0x2848  pcmcia - ok
13:18:25.0256 0x2848  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:18:25.0265 0x2848  pcw - ok
13:18:25.0279 0x2848  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:18:25.0298 0x2848  PEAUTH - ok
13:18:25.0323 0x2848  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:18:25.0355 0x2848  PeerDistSvc - ok
13:18:25.0381 0x2848  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:18:25.0390 0x2848  PerfHost - ok
13:18:25.0417 0x2848  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
13:18:25.0464 0x2848  pla - ok
13:18:25.0470 0x2848  [ A060AFA5D3215E2EEA1C8D1FF43503C0, 9978E6FAE7E4E0B2F7E82660B77479285B378D4EBA6BB775A38AE35AACA0AC7D ] PlaysService    C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
13:18:25.0477 0x2848  PlaysService - ok
13:18:25.0486 0x2848  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:18:25.0501 0x2848  PlugPlay - ok
13:18:25.0506 0x2848  [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
13:18:25.0514 0x2848  PnkBstrA - ok
13:18:25.0517 0x2848  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:18:25.0526 0x2848  PNRPAutoReg - ok
13:18:25.0535 0x2848  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:18:25.0547 0x2848  PNRPsvc - ok
13:18:25.0558 0x2848  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:18:25.0589 0x2848  PolicyAgent - ok
13:18:25.0596 0x2848  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
13:18:25.0621 0x2848  Power - ok
13:18:25.0625 0x2848  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:18:25.0649 0x2848  PptpMiniport - ok
13:18:25.0653 0x2848  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
13:18:25.0662 0x2848  Processor - ok
13:18:25.0669 0x2848  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:18:25.0682 0x2848  ProfSvc - ok
13:18:25.0685 0x2848  [ B759D828F2A0DA53CB3780388B5B289E, DF2228C5E8ECC1762892ED00AB60EEF68023BE02E04C2181CCD68AEA1884A052 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:18:25.0694 0x2848  ProtectedStorage - ok
13:18:25.0699 0x2848  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:18:25.0723 0x2848  Psched - ok
13:18:25.0750 0x2848  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
13:18:25.0785 0x2848  ql2300 - ok
13:18:25.0790 0x2848  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
13:18:25.0800 0x2848  ql40xx - ok
13:18:25.0806 0x2848  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
13:18:25.0822 0x2848  QWAVE - ok
13:18:25.0825 0x2848  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:18:25.0838 0x2848  QWAVEdrv - ok
13:18:25.0841 0x2848  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:18:25.0864 0x2848  RasAcd - ok
13:18:25.0868 0x2848  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:18:25.0891 0x2848  RasAgileVpn - ok
13:18:25.0896 0x2848  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
13:18:25.0920 0x2848  RasAuto - ok
13:18:25.0925 0x2848  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:18:25.0949 0x2848  Rasl2tp - ok
13:18:25.0958 0x2848  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
13:18:25.0985 0x2848  RasMan - ok
13:18:26.0001 0x2848  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:18:26.0025 0x2848  RasPppoe - ok
13:18:26.0029 0x2848  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:18:26.0055 0x2848  RasSstp - ok
13:18:26.0062 0x2848  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
13:18:26.0072 0x2848  Razer Game Scanner Service - ok
13:18:26.0080 0x2848  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:18:26.0106 0x2848  rdbss - ok
13:18:26.0109 0x2848  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
13:18:26.0120 0x2848  rdpbus - ok
13:18:26.0123 0x2848  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:18:26.0146 0x2848  RDPCDD - ok
13:18:26.0153 0x2848  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:18:26.0168 0x2848  RDPDR - ok
13:18:26.0186 0x2848  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:18:26.0208 0x2848  RDPENCDD - ok
13:18:26.0282 0x2848  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:18:26.0308 0x2848  RDPREFMP - ok
13:18:26.0478 0x2848  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:18:26.0779 0x2848  RdpVideoMiniport - ok
13:18:26.0851 0x2848  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:18:26.0913 0x2848  RDPWD - ok
13:18:26.0920 0x2848  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:18:26.0931 0x2848  rdyboost - ok
13:18:26.0935 0x2848  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:18:26.0961 0x2848  RemoteAccess - ok
13:18:26.0967 0x2848  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:18:26.0995 0x2848  RemoteRegistry - ok
13:18:27.0000 0x2848  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:18:27.0026 0x2848  RpcEptMapper - ok
13:18:27.0031 0x2848  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
13:18:27.0041 0x2848  RpcLocator - ok
13:18:27.0053 0x2848  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll
13:18:27.0070 0x2848  RpcSs - ok
13:18:27.0076 0x2848  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:18:27.0101 0x2848  rspndr - ok
13:18:27.0255 0x2540  Object send P2P result: true
13:18:27.0257 0x2540  Object required for P2P: [ 84A66A73DD916014D240E9DE8864B84B ] klhk
13:18:27.0429 0x2848  [ 9FE061CEBE2478FABC37BBA9557C6DAA, 8D995FD75DDCC14C7C63661314F0061CD827D89CE23116842082ACF528664E37 ] RzKLService     D:\Programme\Razer Cortex\RzKLService.exe
13:18:27.0471 0x2848  RzKLService - ok
13:18:27.0476 0x2848  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
13:18:27.0484 0x2848  rzpmgrk - ok
13:18:27.0491 0x2848  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
13:18:27.0501 0x2848  rzpnk - ok
13:18:27.0510 0x2848  [ 630BD8493D336E3FF45F1148A26A9819, 8E7FA60F0AB1964E0F5DA4E615672022CDA40056830CEB3251E02091EF6B636B ] RZSURROUNDVADService C:\Windows\system32\drivers\RzSurroundVAD.sys
13:18:27.0517 0x2848  RZSURROUNDVADService - ok
13:18:27.0787 0x2848  [ 478D794D1A0B5DA2AB17E305CCA3D58F, 8563B1D95B1075222E90F839855C7882B7FB554C42AF7B630968960DF53CED7F ] RzSurroundVADStreamingService C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
13:18:27.0880 0x2848  RzSurroundVADStreamingService - detected UnsignedFile.Multi.Generic ( 1 )
13:18:29.0994 0x2540  Object send P2P result: true
13:18:30.0491 0x2848  Detect skipped due to KSN trusted
13:18:30.0491 0x2848  RzSurroundVADStreamingService - ok
13:18:30.0495 0x2848  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
13:18:30.0503 0x2848  s3cap - ok
13:18:30.0507 0x2848  [ B759D828F2A0DA53CB3780388B5B289E, DF2228C5E8ECC1762892ED00AB60EEF68023BE02E04C2181CCD68AEA1884A052 ] SamSs           C:\Windows\system32\lsass.exe
13:18:30.0515 0x2848  SamSs - ok
13:18:30.0519 0x2848  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:18:30.0529 0x2848  sbp2port - ok
13:18:30.0535 0x2848  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:18:30.0561 0x2848  SCardSvr - ok
13:18:30.0565 0x2848  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:18:30.0588 0x2848  scfilter - ok
13:18:30.0610 0x2848  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
13:18:30.0642 0x2848  Schedule - ok
13:18:30.0647 0x2848  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:18:30.0672 0x2848  SCPolicySvc - ok
13:18:30.0676 0x2848  [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
13:18:30.0683 0x2848  ScreamBAudioSvc - ok
13:18:30.0689 0x2848  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:18:30.0701 0x2848  SDRSVC - ok
13:18:30.0704 0x2848  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:18:30.0715 0x2848  secdrv - ok
13:18:30.0719 0x2848  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
13:18:30.0728 0x2848  seclogon - ok
13:18:30.0732 0x2848  [ 943E9032607FAF14F69308578B8A79C9, 9539AA60152E653EE82F2C06E0E3FB07ECB99FD9FA348357030B1A5ED5229FE9 ] SEE             C:\Windows\system32\drivers\see.sys
13:18:30.0740 0x2848  SEE - ok
13:18:30.0745 0x2848  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
13:18:30.0771 0x2848  SENS - ok
13:18:30.0774 0x2848  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:18:30.0785 0x2848  SensrSvc - ok
13:18:30.0787 0x2848  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
13:18:30.0796 0x2848  Serenum - ok
13:18:30.0801 0x2848  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
13:18:30.0811 0x2848  Serial - ok
13:18:30.0814 0x2848  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
13:18:30.0822 0x2848  sermouse - ok
13:18:30.0829 0x2848  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
13:18:30.0854 0x2848  SessionEnv - ok
13:18:30.0856 0x2848  SEVPNCLIENT - ok
13:18:30.0860 0x2848  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:18:30.0871 0x2848  sffdisk - ok
13:18:30.0873 0x2848  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:18:30.0883 0x2848  sffp_mmc - ok
13:18:30.0886 0x2848  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:18:30.0908 0x2848  sffp_sd - ok
13:18:30.0911 0x2848  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
13:18:30.0920 0x2848  sfloppy - ok
13:18:30.0928 0x2848  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:18:30.0958 0x2848  SharedAccess - ok
13:18:30.0967 0x2848  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:18:30.0997 0x2848  ShellHWDetection - ok
13:18:31.0001 0x2848  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:18:31.0008 0x2848  SiSRaid2 - ok
13:18:31.0012 0x2848  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:18:31.0022 0x2848  SiSRaid4 - ok
13:18:31.0030 0x2848  [ 9A66A87BBC0EC4463042959B7C0D4AC1, 2E61DC50AD4A4D4782F3271BAD010137DA9A6AFC46C7568C709F68C7621DCD40 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:18:31.0045 0x2848  SkypeUpdate - ok
13:18:31.0049 0x2848  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:18:31.0073 0x2848  Smb - ok
13:18:31.0079 0x2848  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:18:31.0089 0x2848  SNMPTRAP - ok
13:18:31.0091 0x2848  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:18:31.0099 0x2848  spldr - ok
13:18:31.0112 0x2848  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
13:18:31.0131 0x2848  Spooler - ok
13:18:31.0190 0x2848  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
13:18:31.0281 0x2848  sppsvc - ok
13:18:31.0287 0x2848  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:18:31.0312 0x2848  sppuinotify - ok
13:18:31.0328 0x2848  [ FEB80A9EC320569CC82D4DB9F4AC78BC, E6340CDA9B5F59DBE68128356E357FEDA3655A296BFE4B7F44944F2DE5DA9765 ] sptd            C:\Windows\System32\Drivers\sptd.sys
13:18:31.0344 0x2848  sptd - ok
13:18:31.0357 0x2848  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:18:31.0374 0x2848  srv - ok
13:18:31.0384 0x2848  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:18:31.0398 0x2848  srv2 - ok
13:18:31.0403 0x2848  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:18:31.0414 0x2848  srvnet - ok
13:18:31.0420 0x2848  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:18:31.0446 0x2848  SSDPSRV - ok
13:18:31.0449 0x2848  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:18:31.0474 0x2848  SstpSvc - ok
13:18:31.0479 0x2848  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
13:18:31.0490 0x2848  ssudmdm - ok
13:18:31.0516 0x2848  [ BB798C19449FBA919E88E6E09D3DD0BA, 8E43CBF5E0F04B4FAB46DC936659E8D9BC86EC38228D9A3B69112B945FB5E463 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
13:18:31.0548 0x2848  Steam Client Service - ok
13:18:31.0552 0x2848  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:18:31.0561 0x2848  stexstor - ok
13:18:31.0573 0x2848  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
13:18:31.0594 0x2848  stisvc - ok
13:18:31.0598 0x2848  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:18:31.0606 0x2848  storflt - ok
13:18:31.0610 0x2848  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:18:31.0617 0x2848  storvsc - ok
13:18:31.0620 0x2848  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
13:18:31.0627 0x2848  swenum - ok
13:18:31.0638 0x2848  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
13:18:31.0669 0x2848  swprv - ok
13:18:31.0673 0x2848  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
13:18:31.0682 0x2848  Synth3dVsc - ok
13:18:31.0712 0x2848  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
13:18:31.0750 0x2848  SysMain - ok
13:18:31.0756 0x2848  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:18:31.0769 0x2848  TabletInputService - ok
13:18:31.0772 0x2848  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
13:18:31.0780 0x2848  tap0901 - ok
13:18:31.0789 0x2848  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:18:31.0815 0x2848  TapiSrv - ok
13:18:31.0848 0x2848  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:18:31.0888 0x2848  Tcpip - ok
13:18:31.0922 0x2848  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:18:31.0958 0x2848  TCPIP6 - ok
13:18:31.0965 0x2848  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:18:31.0974 0x2848  tcpipreg - ok
13:18:31.0977 0x2848  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:18:31.0986 0x2848  TDPIPE - ok
13:18:31.0989 0x2848  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:18:31.0997 0x2848  TDTCP - ok
13:18:32.0001 0x2848  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:18:32.0011 0x2848  tdx - ok
13:18:32.0129 0x2848  [ D6DDCFFF145CB7D334EECC2F9A8E304F, DC2E19A799F336DF299460C8DB4EE0B2597ADC6C4728F2BB3BBCFA1192BE809C ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
13:18:32.0261 0x2848  TeamViewer - ok
13:18:32.0272 0x2848  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
13:18:32.0280 0x2848  TermDD - ok
13:18:32.0283 0x2848  [ EF4469AB69EB15E5D3754E6AEAFBCD3D, 3609214C3D5181364B544EBF17E9A109952BE1C4C35BE0A8727BFA8F49ECB130 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
13:18:32.0291 0x2848  terminpt - ok
13:18:32.0305 0x2848  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
13:18:32.0326 0x2848  TermService - ok
13:18:32.0330 0x2848  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
13:18:32.0342 0x2848  Themes - ok
13:18:32.0346 0x2848  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
13:18:32.0372 0x2848  THREADORDER - ok
13:18:32.0378 0x2848  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
13:18:32.0404 0x2848  TrkWks - ok
13:18:32.0409 0x2848  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:18:32.0414 0x25d4  Object required for P2P: [ 7D006FC340B301A1DEAFB5878C078A12 ] Origin Client Service
13:18:32.0436 0x2848  TrustedInstaller - ok
13:18:32.0440 0x2848  [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:18:32.0448 0x2848  tssecsrv - ok
13:18:32.0452 0x2848  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:18:32.0461 0x2848  TsUsbFlt - ok
13:18:32.0464 0x2848  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
13:18:32.0473 0x2848  TsUsbGD - ok

Alt 29.05.2016, 12:21   #27
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Code:
ATTFilter
13:18:32.0477 0x2848  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
13:18:32.0488 0x2848  tsusbhub - ok
13:18:32.0494 0x2848  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:18:32.0519 0x2848  tunnel - ok
13:18:32.0523 0x2848  TwonkyServer - ok
13:18:32.0528 0x2848  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
13:18:32.0536 0x2848  uagp35 - ok
13:18:32.0544 0x2848  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:18:32.0571 0x2848  udfs - ok
13:18:32.0576 0x2848  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:18:32.0586 0x2848  UI0Detect - ok
13:18:32.0589 0x2848  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:18:32.0598 0x2848  uliagpkx - ok
13:18:32.0602 0x2848  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
13:18:32.0612 0x2848  umbus - ok
13:18:32.0614 0x2848  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
13:18:32.0624 0x2848  UmPass - ok
13:18:32.0629 0x2848  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
13:18:32.0642 0x2848  UmRdpService - ok
13:18:32.0652 0x2848  [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
13:18:32.0666 0x2848  UMVPFSrv - ok
13:18:32.0675 0x2848  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
13:18:32.0704 0x2848  upnphost - ok
13:18:32.0708 0x2848  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
13:18:32.0718 0x2848  USBAAPL64 - ok
13:18:32.0723 0x2848  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
13:18:32.0733 0x2848  usbaudio - ok
13:18:32.0738 0x2848  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
13:18:32.0748 0x2848  usbccgp - ok
13:18:32.0753 0x2848  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:18:32.0763 0x2848  usbcir - ok
13:18:32.0767 0x2848  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
13:18:32.0776 0x2848  usbehci - ok
13:18:32.0784 0x2848  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
13:18:32.0797 0x2848  usbhub - ok
13:18:32.0800 0x2848  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
13:18:32.0809 0x2848  usbohci - ok
13:18:32.0813 0x2848  [ 6A477133FA0DE50E166372DA18341841, F1591035FF5F9121BF982C9FA0125A38AE3E19C996F59930545B1CC5DFEF4348 ] USBPcap         C:\Windows\system32\DRIVERS\USBPcap.sys
13:18:32.0823 0x2848  USBPcap - ok
13:18:32.0826 0x2848  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
13:18:32.0836 0x2848  usbprint - ok
13:18:32.0839 0x2848  [ 2C42E595E7E381596B9A14F88F5AE027, 948C2AD7FA0B01184312D1ABE43F2F3D85A934CF0658A8B2BDF9F0919568377B ] usbrndis6       C:\Windows\system32\DRIVERS\usb80236.sys
13:18:32.0848 0x2848  usbrndis6 - ok
13:18:32.0852 0x2848  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:18:32.0862 0x2848  USBSTOR - ok
13:18:32.0865 0x2848  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
13:18:32.0874 0x2848  usbuhci - ok
13:18:32.0880 0x2848  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
13:18:32.0891 0x2848  usbvideo - ok
13:18:32.0894 0x2848  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
13:18:32.0903 0x2848  usb_rndisx - ok
13:18:32.0906 0x2848  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
13:18:32.0929 0x2848  UxSms - ok
13:18:32.0932 0x2848  [ B759D828F2A0DA53CB3780388B5B289E, DF2228C5E8ECC1762892ED00AB60EEF68023BE02E04C2181CCD68AEA1884A052 ] VaultSvc        C:\Windows\system32\lsass.exe
13:18:32.0940 0x2848  VaultSvc - ok
13:18:32.0958 0x2848  [ 1AEF0B09CC241604ECFCCA037FC9B9A7, 992CD1F3647585F3CF7B92ECDBD9537BFB159D0C0DF0BF7D37432F3DA44C2422 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
13:18:32.0984 0x2848  VBoxDrv - ok
13:18:32.0989 0x2848  [ F429FED78CC80F85BD55CDA8403FD681, 581579E2616D4F69B068BC37C63DD0EC87AE28F1D011B9564EB7756A1FD22A9F ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys
13:18:32.0999 0x2848  VBoxNetAdp - ok
13:18:33.0001 0x2848  VBoxNetFlt - ok
13:18:33.0008 0x2848  [ 37C2B3B717BB16C003074B17911682EE, E8EBBBF325D04E33532265DF518B6CDAB59521766660905178BEFFC1C9A47E22 ] VBoxNetLwf      C:\Windows\system32\DRIVERS\VBoxNetLwf.sys
13:18:33.0019 0x2848  VBoxNetLwf - ok
13:18:33.0023 0x2848  [ 90F27457F9D7C5190033001565B34BEC, 3D9405C3B66A5F7E0666FFF2B415168055A93BD7DE786B7D7D2963B4B1C9A3A4 ] VBoxUSB         C:\Windows\system32\Drivers\VBoxUSB.sys
13:18:33.0032 0x2848  VBoxUSB - ok
13:18:33.0037 0x2848  [ D31F5F9B3D768C68DBB5BCE5855471D4, 7462FCDD7C4FCA0E1DE42E2C677F31AF509475C76B6030CEA3ACEF25B50C50D7 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
13:18:33.0047 0x2848  VBoxUSBMon - ok
13:18:33.0051 0x2848  [ F257A2737280F0076EAE3AB489C06474, A02E37292D86E675D55C13097E9F107C73DDFD8AAC69310F7D9910A811A541D8 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
13:18:33.0059 0x2848  VClone - ok
13:18:33.0062 0x2848  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:18:33.0070 0x2848  vdrvroot - ok
13:18:33.0081 0x2848  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
13:18:33.0112 0x2848  vds - ok
13:18:33.0115 0x2848  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:18:33.0126 0x2848  vga - ok
13:18:33.0129 0x2848  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:18:33.0151 0x2848  VgaSave - ok
13:18:33.0153 0x2848  VGPU - ok
13:18:33.0159 0x2848  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
13:18:33.0171 0x2848  vhdmp - ok
13:18:33.0174 0x2848  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:18:33.0181 0x2848  viaide - ok
13:18:33.0187 0x2848  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:18:33.0199 0x2848  vmbus - ok
13:18:33.0202 0x2848  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
13:18:33.0211 0x2848  VMBusHID - ok
13:18:33.0215 0x2848  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:18:33.0224 0x2848  volmgr - ok
13:18:33.0233 0x2848  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:18:33.0246 0x2848  volmgrx - ok
13:18:33.0253 0x2848  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:18:33.0265 0x2848  volsnap - ok
13:18:33.0270 0x2848  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:18:33.0281 0x2848  vsmraid - ok
13:18:33.0310 0x2848  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
13:18:33.0361 0x2848  VSS - ok
13:18:33.0373 0x2848  [ 79F4D90FAA0ACC1866F2F3E03E39CA89, EE08BCBF29A7E4AFFF520B8DF067281425F433EC275F8C86CE8F20F000E92E3D ] vssbrigde64     C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe
13:18:33.0383 0x2848  vssbrigde64 - ok
13:18:33.0387 0x2848  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
13:18:33.0397 0x2848  vwifibus - ok
13:18:33.0401 0x2848  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
13:18:33.0413 0x2848  vwififlt - ok
13:18:33.0416 0x2848  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
13:18:33.0428 0x2848  vwifimp - ok
13:18:33.0436 0x2848  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
13:18:33.0467 0x2848  W32Time - ok
13:18:33.0472 0x2848  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
13:18:33.0480 0x2848  WacomPen - ok
13:18:33.0484 0x2848  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:18:33.0508 0x2848  WANARP - ok
13:18:33.0511 0x2848  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:18:33.0534 0x2848  Wanarpv6 - ok
13:18:33.0556 0x2848  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
13:18:33.0585 0x2848  WatAdminSvc - ok
13:18:33.0612 0x2848  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
13:18:33.0646 0x2848  wbengine - ok
13:18:33.0653 0x2848  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:18:33.0666 0x2848  WbioSrvc - ok
13:18:33.0674 0x2848  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:18:33.0691 0x2848  wcncsvc - ok
13:18:33.0695 0x2848  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:18:33.0703 0x2848  WcsPlugInService - ok
13:18:33.0706 0x2848  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
13:18:33.0713 0x2848  Wd - ok
13:18:33.0729 0x2848  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:18:33.0751 0x2848  Wdf01000 - ok
13:18:33.0755 0x2848  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:18:33.0764 0x2848  WdiServiceHost - ok
13:18:33.0767 0x2848  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:18:33.0777 0x2848  WdiSystemHost - ok
13:18:33.0784 0x2848  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
13:18:33.0797 0x2848  WebClient - ok
13:18:33.0803 0x2848  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:18:33.0830 0x2848  Wecsvc - ok
13:18:33.0837 0x2848  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:18:33.0861 0x2848  wercplsupport - ok
13:18:33.0865 0x2848  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:18:33.0888 0x2848  WerSvc - ok
13:18:33.0891 0x2848  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:18:33.0913 0x2848  WfpLwf - ok
13:18:33.0916 0x2848  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:18:33.0924 0x2848  WIMMount - ok
13:18:33.0926 0x2848  WinDefend - ok
13:18:33.0931 0x2848  WinHttpAutoProxySvc - ok
13:18:33.0941 0x2848  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:18:33.0969 0x2848  Winmgmt - ok
13:18:34.0006 0x2848  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
13:18:34.0054 0x2848  WinRM - ok
13:18:34.0066 0x2848  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.sys
13:18:34.0078 0x2848  WinUsb - ok
13:18:34.0095 0x2848  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:18:34.0123 0x2848  Wlansvc - ok
13:18:34.0128 0x2848  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
13:18:34.0138 0x2848  WmiAcpi - ok
13:18:34.0145 0x2848  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:18:34.0157 0x2848  wmiApSrv - ok
13:18:34.0159 0x2848  WMPNetworkSvc - ok
13:18:34.0163 0x2848  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:18:34.0172 0x2848  WPCSvc - ok
13:18:34.0176 0x2848  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:18:34.0200 0x2848  WPDBusEnum - ok
13:18:34.0206 0x2848  [ F580713CA14F24A50385CE8B03B5E0AC, 91CE2BC5B92E4535ECAE717C7EFF0F4FE0296DBD1709483C7620C34DA3857342 ] WRkrn           C:\Windows\system32\drivers\WRkrn.sys
13:18:34.0219 0x2848  WRkrn - ok
13:18:34.0238 0x2848  [ 404DB454E51A7B87C4E63B6D478F140A, 6A4885D0293DA790AEDC00BEAF83DF78FEDFD31B20C36D647BED7C47A09E34B2 ] WRSVC           C:\Program Files\Webroot\WRSA.exe
13:18:34.0261 0x2848  WRSVC - ok
13:18:34.0266 0x2848  [ 71D086F3B6F67D1DBB7D4C5CD798C171, 86241D553111F17299A1FFA61A6BD863402D660C56AC7D6DA8A003A3331134E2 ] wrUrlFlt        C:\Windows\system32\DRIVERS\wrUrlFlt.sys
13:18:34.0275 0x2848  wrUrlFlt - ok
13:18:34.0278 0x2848  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:18:34.0301 0x2848  ws2ifsl - ok
13:18:34.0305 0x2848  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudioDevice_383S(1) C:\Windows\system32\drivers\WsAudioDevice_383S(1).sys
13:18:34.0312 0x2848  WsAudioDevice_383S(1) - ok
13:18:34.0316 0x2848  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
13:18:34.0329 0x2848  wscsvc - ok
13:18:34.0332 0x2848  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
13:18:34.0342 0x2848  WSDPrintDevice - ok
13:18:34.0345 0x2848  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
13:18:34.0356 0x2848  WSDScan - ok
13:18:34.0358 0x2848  WSearch - ok
13:18:34.0405 0x2848  [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:18:34.0461 0x2848  wuauserv - ok
13:18:34.0467 0x2848  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:18:34.0477 0x2848  WudfPf - ok
13:18:34.0483 0x2848  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:18:34.0495 0x2848  WUDFRd - ok
13:18:34.0500 0x2848  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:18:34.0511 0x2848  wudfsvc - ok
13:18:34.0519 0x2848  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:18:34.0532 0x2848  WwanSvc - ok
13:18:34.0535 0x2848  xhunter1 - ok
13:18:34.0540 0x2848  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
13:18:34.0548 0x2848  xusb21 - ok
13:18:34.0560 0x2848  ================ Scan global ===============================
13:18:34.0563 0x2848  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
13:18:34.0569 0x2848  [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
13:18:34.0578 0x2848  [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
13:18:34.0584 0x2848  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
13:18:34.0593 0x2848  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
13:18:34.0599 0x2848  [ Global ] - ok
13:18:34.0599 0x2848  ================ Scan MBR ==================================
13:18:34.0601 0x2848  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:18:34.0833 0x2848  \Device\Harddisk0\DR0 - ok
13:18:34.0889 0x2848  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
13:18:34.0964 0x2848  \Device\Harddisk1\DR1 - ok
13:18:34.0966 0x2848  [ EA923EB0EC0060F1451E9AD7B5762CFE ] \Device\Harddisk2\DR2
13:18:35.0053 0x2848  \Device\Harddisk2\DR2 - ok
13:18:35.0053 0x2848  ================ Scan VBR ==================================
13:18:35.0055 0x2848  [ 784C159E478F37FB1F3B32ED8ED2AA7D ] \Device\Harddisk0\DR0\Partition1
13:18:35.0056 0x2848  \Device\Harddisk0\DR0\Partition1 - ok
13:18:35.0058 0x2848  [ E74E2A5FCFDC88E02080F4E50EC8BA57 ] \Device\Harddisk1\DR1\Partition1
13:18:35.0096 0x2848  \Device\Harddisk1\DR1\Partition1 - ok
13:18:35.0098 0x2848  [ 7E356CCB0E5159E9EA568A9319E48BCB ] \Device\Harddisk2\DR2\Partition1
13:18:35.0135 0x25d4  Object send P2P result: true
13:18:35.0137 0x25d4  Object required for P2P: [ 5332223C0D4CEC95787607906B53E861 ] Razer Game Scanner Service
13:18:35.0151 0x2848  \Device\Harddisk2\DR2\Partition1 - ok
13:18:35.0151 0x2848  ================ Scan generic autorun ======================
13:18:35.0154 0x2848  [ 235F426670EC4117EADD24A6185A48B9, 609FEE1CE0BE381C81F2F943066FBFC0E8F5043FEDB25E6FBD3F0C174DA17F4F ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
13:18:35.0157 0x2848  IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
13:18:37.0858 0x25d4  Object send P2P result: true
13:18:37.0876 0x2848  Detect skipped due to KSN trusted
13:18:37.0876 0x2848  IAStorIcon - ok
13:18:37.0877 0x2848  SoftEther VPN Client UI Helper - ok
13:18:37.0964 0x2848  [ 3043C48E967DBF7155FD755F47950129, 4453D4A3E47F8B87EA603E5D9A98AAAAF4ACA189AA91A90E8AD7658C28EE8393 ] C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
13:18:38.0059 0x2848  StartCN - ok
13:18:38.0346 0x2848  [ 967B1380E79127AA0B142D5CC32FB062, 12093B707852F7587C70CE1D7E75D53BE068DC87383D056837705924DFDD969E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
13:18:38.0646 0x2848  RtHDVCpl - ok
13:18:38.0665 0x2848  [ 2F0B53858AA78DE66EDC863A6D0E1985, 6EFE96C7D8B886ECD25342CF4563EB7DCBEF53CCADB2BFA91D8A827AE67D1066 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
13:18:38.0678 0x2848  USB3MON - ok
13:18:38.0695 0x2848  [ CB454FBAB5376D13813C9235E87F1EAD, AFF6F58EDC228F4217A528D951FA5DA317A00D44D1B57841E855D728725F2852 ] C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
13:18:38.0715 0x2848  AVMWlanClient - detected UnsignedFile.Multi.Generic ( 1 )
13:18:40.0498 0x1db8  Object required for P2P: [ BB798C19449FBA919E88E6E09D3DD0BA ] Steam Client Service
13:18:41.0534 0x2848  AVMWlanClient ( UnsignedFile.Multi.Generic ) - warning
13:18:41.0534 0x2848  Force sending object to P2P due to detect: C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
13:18:43.0270 0x1db8  Object send P2P result: true
13:18:44.0254 0x2848  Object send P2P result: true
13:18:46.0943 0x2848  [ F41D82EAF620AC7094956D4F3E872728, 380AACFAFA4D558DBECDFE8523B79453B94E9F67E116806623208BD0E12BFE0C ] D:\Roccat Kova+\Kova[+]Monitor.EXE
13:18:46.0958 0x2848  RoccatKova+ - detected UnsignedFile.Multi.Generic ( 1 )
13:18:49.0562 0x2848  RoccatKova+ ( UnsignedFile.Multi.Generic ) - warning
13:18:52.0269 0x2848  [ CCAED308730C82DD7FDC7EFDBDCA98D1, F635594F770B377BF5ECC87EC486884B98138D72A37295819404F44D72CCC105 ] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
13:18:52.0287 0x2848  Razer Synapse - ok
13:18:52.0291 0x2848  Dropbox - ok
13:18:52.0297 0x2848  [ F183BA59384CC417239A1A7194AEFA62, EBEBAE9F4609704CBD14E1C3099940C28EFE6E96CA7E77FCA3B26A671844B426 ] C:\Program Files (x86)\RAPTRI~1\Raptr\raptrstub.exe
13:18:52.0308 0x2848  Raptr - ok
13:18:52.0457 0x2848  [ 4864F4A62A735C673D27CCFBBB1C405A, 56FB81F39AF9B0CD07E11CB227B3CAFBE907DF44C7C61C6A8DB023294C255992 ] K:\Programme\Hamachi\hamachi-2-ui.exe
13:18:52.0602 0x2848  LogMeIn Hamachi Ui - ok
13:18:52.0633 0x2848  [ 404DB454E51A7B87C4E63B6D478F140A, 6A4885D0293DA790AEDC00BEAF83DF78FEDFD31B20C36D647BED7C47A09E34B2 ] C:\Program Files\Webroot\WRSA.exe
13:18:52.0665 0x2848  WRSVC - ok
13:18:52.0686 0x2848  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:18:52.0725 0x2848  Sidebar - ok
13:18:52.0733 0x2848  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:18:52.0747 0x2848  mctadmin - ok
13:18:52.0769 0x2848  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
13:18:52.0798 0x2848  Sidebar - ok
13:18:52.0803 0x2848  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
13:18:52.0815 0x2848  mctadmin - ok
13:18:52.0841 0x2848  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
13:18:52.0873 0x2848  Sidebar - ok
13:18:52.0982 0x2848  [ 9EA8EA4CAF5E19D75056631CDBB1FE58, 4752A2EE64C04B6D06FFA1D33B3834CC71DC6F8559C6BF15C64B72DD18AC63E8 ] D:\Games etc\Steam\steam.exe
13:18:53.0036 0x2848  Steam - ok
13:18:53.0046 0x2848  Waiting for KSN requests completion. In queue: 9
13:18:54.0046 0x2848  Waiting for KSN requests completion. In queue: 9
13:18:55.0046 0x2848  Waiting for KSN requests completion. In queue: 9
13:18:55.0673 0x1134  Object required for P2P: [ 9EA8EA4CAF5E19D75056631CDBB1FE58 ] D:\Games etc\Steam\steam.exe
13:18:56.0046 0x2848  Waiting for KSN requests completion. In queue: 1
13:18:57.0046 0x2848  Waiting for KSN requests completion. In queue: 1
13:18:58.0046 0x2848  Waiting for KSN requests completion. In queue: 1
13:18:58.0407 0x1134  Object send P2P result: true
13:18:59.0063 0x2848  AV detected via SS2: Webroot SecureAnywhere, C:\Program Files\Webroot\WRSA.exe ( 9.0.8.100 ), 0x41000 ( enabled : updated )
13:18:59.0073 0x2848  AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41000 ( enabled : updated )
13:18:59.0076 0x2848  FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41010 ( enabled )
13:19:01.0745 0x2848  ============================================================
13:19:01.0745 0x2848  Scan finished
13:19:01.0745 0x2848  ============================================================
13:19:01.0753 0x00e0  Detected object count: 2
13:19:01.0753 0x00e0  Actual detected object count: 2
13:19:18.0248 0x00e0  AVMWlanClient ( UnsignedFile.Multi.Generic ) - skipped by user
13:19:18.0248 0x00e0  AVMWlanClient ( UnsignedFile.Multi.Generic ) - User select action: Skip 
13:19:18.0249 0x00e0  RoccatKova+ ( UnsignedFile.Multi.Generic ) - skipped by user
13:19:18.0249 0x00e0  RoccatKova+ ( UnsignedFile.Multi.Generic ) - User select action: Skip

Alt 30.05.2016, 21:48   #28
Deathkid535
/// Malwareteam
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Hi,

Wenn SpyHunter nicht absichtlich drauf ist das bitte deinstallieren.

Schritt # 1: FRST-Fix

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
AutoConfigURL: [S-1-5-21-3419645104-3717089636-2781738795-1000] => hxxp://unstops.biz/wpad.dat?7f2ae8b11d8b6bbc19fd1a28c3e30e6b10541591
Tcpip\..\Interfaces\{72C6C5EB-8AB4-4F8D-9200-FD4D6A355DED}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F61F6F00-24CF-42FC-AC37-F3DE762E1112}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F871823E-B0B9-449C-BD1C-BBE065120691}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
ManualProxies: 
EmptyTemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt # 2: FRST

Und noch ein frisches FRST-Log bitte.



Schritt # 3: Bitte Posten
  • Das Fixlog von FRST
  • Das frische FRST-Log
Alt 31.05.2016, 16:54   #29
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-05-2016 02
durchgeführt von Marlin (2016-05-31 17:51:56) Run:2
Gestartet von C:\Users\Marlin\Desktop
Geladene Profile: Marlin (Verfügbare Profile: Marlin)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
AutoConfigURL: [S-1-5-21-3419645104-3717089636-2781738795-1000] => hxxp://unstops.biz/wpad.dat?7f2ae8b11d8b6bbc19fd1a28c3e30e6b10541591
Tcpip\..\Interfaces\{72C6C5EB-8AB4-4F8D-9200-FD4D6A355DED}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F61F6F00-24CF-42FC-AC37-F3DE762E1112}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F871823E-B0B9-449C-BD1C-BBE065120691}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
ManualProxies: 
EmptyTemp:
*****************

"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Schlüssel nicht gefunden. 
"HKLM\SOFTWARE\Policies\Google" => Schlüssel erfolgreich entfernt
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL => Wert erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{72C6C5EB-8AB4-4F8D-9200-FD4D6A355DED}\\NameServer => Wert erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{F61F6F00-24CF-42FC-AC37-F3DE762E1112}\\NameServer => Wert erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{F871823E-B0B9-449C-BD1C-BBE065120691}\\NameServer => Wert erfolgreich entfernt
HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\\ => Wert erfolgreich entfernt
EmptyTemp: => 2.4 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 17:52:04 ====

Alt 31.05.2016, 16:55   #30
Kieran
 
Browser öffnen auf Klick hin adware Seiten - Standard

Browser öffnen auf Klick hin adware Seiten


Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-05-2016 02
durchgeführt von Marlin (Administrator) auf BLACKMAGIC (31-05-2016 17:54:22)
Gestartet von C:\Users\Marlin\Desktop
Geladene Profile: Marlin (Verfügbare Profile: Marlin)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: German (Germany)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Webroot) C:\Program Files\Webroot\WRSA.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Cepstral, LLC) C:\Program Files (x86)\Cepstral\bin\CepstralLicSrv.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Olof Lagerkvist) C:\Windows\System32\imdsksvc.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) D:\Programme\Razer Cortex\RzKLService.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Lynx Technology) C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe
(LogMeIn Inc.) K:\Programme\Hamachi\hamachi-2.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(LogMeIn, Inc.) K:\Programme\Hamachi\LMIGuardianSvc.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Webroot) C:\Program Files\Webroot\WRSA.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(LogMeIn Inc.) K:\Programme\Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) K:\Programme\Hamachi\LMIGuardianSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Valve Corporation) D:\Games etc\Steam\Steam.exe
(TeamSpeak Systems GmbH) D:\Teamspeak\ts3client_win64.exe
() D:\Programme\Puush\puush.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
(Roccat GmbH) D:\Roccat Kova+\Kova[+]Monitor.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(Mozilla Corporation) K:\Programme\ThunderBird\thunderbird.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Marlin\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Valve Corporation) D:\Games etc\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-02-26] (Intel Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => "D:\Programme\SoftEther VPN Client\vpnclient_x64.exe" /uihelp
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5006536 2016-04-04] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16408320 2015-12-04] (Realtek Semiconductor)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-12-18] (Intel Corporation)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [933888 2012-08-21] (AVM Berlin)
HKLM-x32\...\Run: [RoccatKova+] => D:\Roccat Kova+\Kova[+]Monitor.EXE [539688 2011-03-17] (Roccat GmbH)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-05-24] (Razer Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23745808 2016-05-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-27] (Raptr, Inc)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => K:\Programme\Hamachi\hamachi-2-ui.exe [5565960 2016-05-06] (LogMeIn Inc.)
HKLM-x32\...\Run: [WRSVC] => C:\Program Files\Webroot\WRSA.exe [876712 2016-05-24] (Webroot)
HKLM\...\Policies\Explorer: [NoViewOnDrive] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKLM\...\Policies\Explorer: [NoViewContextMenu] 0
HKLM\...\Policies\Explorer: [NoShellSearchButton] 0
HKLM\...\Policies\Explorer: [NoFind] 0
HKLM\...\Policies\Explorer: [NoFile] 0
HKLM\...\Policies\Explorer: [HideClock] 0
HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0
HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKLM\...\Policies\Explorer: [NoSetFolders] 0
HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKLM\...\Policies\Explorer: [NoSetTaskbar] 0
HKLM\...\Policies\Explorer: [NoDeletePrinter] 0
HKLM\...\Policies\Explorer: [NoDFSTab] 0
HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0
HKLM\...\Policies\Explorer: [NoLogoff] 0
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0
HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0
HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKLM\...\Policies\Explorer: [NoResolveSearch] 0
HKLM\...\Policies\Explorer: [NoSaveSettings] 0
HKLM\...\Policies\Explorer: [NoHardwareTab] 0
HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKLM\...\Policies\Explorer: [NoDesktop] 0
HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Steam] => D:\Games etc\Steam\steam.exe [2917456 2016-05-28] (Valve Corporation)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Clownfish] => 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [TeamSpeak 3 Client] => D:\Teamspeak\ts3client_win64.exe [11480344 2016-04-26] (TeamSpeak Systems GmbH)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [puush] => D:\Programme\Puush\puush.exe [568904 2015-03-30] ()
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Spotify Web Helper] => C:\Users\Marlin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [Spotify] => C:\Users\Marlin\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-29] (Spotify Ltd)
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Run: [EasyHideIPVPN] => K:\Programme\Easy-Hide-IP VPN\vpn.client.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\Policies\Explorer: [NoStartMenuSubFolders] 0
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: G - G:\Setup.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: H - H:\Setup.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: {246a3911-507e-11e4-9626-d0509928e910} - E:\LGAutoRun.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: {9da0785c-3c05-11e4-8df1-d0509928e910} - E:\pushinst.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\...\MountPoints2: {c581b910-3c1e-11e4-9aa5-806e6f6e6963} - F:\ASRSetup.exe
HKU\S-1-5-21-3419645104-3717089636-2781738795-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> K:\Dropbox\sspipes.scr
HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0
HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0
HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDevMgrUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\11.3.17195.214\QMGCShellExt64.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marlin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-03-18] ()
Startup: C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2016-01-19] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

AutoConfigURL: [S-1-5-21-3419645104-3717089636-2781738795-1000] => hxxp://unstops.biz/wpad.dat?7f2ae8b11d8b6bbc19fd1a28c3e30e6b10541591
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{1D0F9C4D-A3C9-4219-AAA5-578087290EDC}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{33A5DE98-AE1F-4277-A4DE-87238A8E3C7A}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130938236596445570&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-28] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
BHO: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar64.dll [2016-05-24] (Webroot)
BHO: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files\Common Files\Webroot\WebFiltering\wrflt.dll [2016-05-24] (Webroot)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-28] (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
BHO-x32: Webroot Vault -> {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} -> C:\ProgramData\WRData\pkg\LPBar.dll [2016-05-24] (Webroot)
BHO-x32: Webroot Filtering Extension -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61} -> C:\Program Files (x86)\Common Files\Webroot\WebFiltering\wrflt.dll [2016-05-24] (Webroot)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar64.dll [2016-05-24] (Webroot)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-11-18] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Webroot Toolbar - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\pkg\LPBar.dll [2016-05-24] (Webroot)
Toolbar: HKU\S-1-5-21-3419645104-3717089636-2781738795-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Keine Datei
Toolbar: HKU\S-1-5-21-3419645104-3717089636-2781738795-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: 
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3419645104-3717089636-2781738795-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Marlin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-09-05] (Unity Technologies ApS)
FF Extension: Amazon-Icon - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\amazon-icon@giga.de [2015-06-21] [ist nicht signiert]
FF Extension: Furaffinity Download extension for Firefox - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\fuerholz@gmx.net.xpi [2015-12-15]
FF Extension: InkBunny Downloader - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\jid1-A9hxZPPMAhCzdQ@jetpack.xpi [2015-12-16] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-12-12]
FF Extension: ChatZilla - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2015-12-20]
FF Extension: Webroot Password Manager - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2016-05-24]
FF Extension: Tamper Data - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2015-11-20]
FF Extension: Web Developer - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\bywxuxu9.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2015-12-20]
FF Extension: InkBunny Downloader - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@ib_downloader.xpi [2016-04-27] [ist nicht signiert]
FF Extension: Amazon-Icon - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\amazon-icon@giga.de [2016-01-25] [ist nicht signiert]
FF Extension: Furaffinity Download extension for Firefox - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\fuerholz@gmx.net.xpi [2015-12-15]
FF Extension: InkBunny Downloader - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\jid1-A9hxZPPMAhCzdQ@jetpack.xpi [2015-12-16] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-12-12]
FF Extension: ChatZilla - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2016-01-25]
FF Extension: Webroot Password Manager - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{8ac62a8b-8b3f-43ba-9b1a-90c299b9dfda} [2016-05-24]
FF Extension: Tamper Data - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi [2015-11-20]
FF Extension: Web Developer - C:\Users\Marlin\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2015-12-20]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-05-25]
FF HKLM-x32\...\Firefox\Extensions: [webrootsecure@webroot.com] - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer
FF Extension: Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer [2016-05-24]
StartMenuInternet: FIREFOX.EXE - D:\Programme\Firefox\firefox.exe

Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://forum.temeraire.net/de/index.php","hxxp://draconic.twilightrealm.com/","hxxp://twokinds.keenspot.com/","hxxps://web.whatsapp.com/","hxxps://www.webshell.de/de/forum","hxxp://awsw.yuku.com/"
CHR Profile: C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-05-07]
CHR Extension: (Google Präsentationen) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (MEGA) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-05-25]
CHR Extension: (YouTube) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]
CHR Extension: (uBlock Origin) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-05-25]
CHR Extension: (Google-Suche) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Dropbox für Gmail) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2015-12-04]
CHR Extension: (Kaspersky Protection) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2015-11-19]
CHR Extension: (Freefall Tournament) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\encjogopgacdjlkmpdknhlfnanoihodh [2015-03-19]
CHR Extension: (Aurelion Sol Build Guide) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fceobikcedidphjfgmjjjolgeoiakhnc [2016-05-04]
CHR Extension: (Google Tabellen) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Google Docs Offline) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Webroot Filtering Extension) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd [2016-05-25]
CHR Extension: (Webroot Password Manager) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngkhgikojglcgnckopipfdajaifmmnnc [2016-05-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Passwort-Warnung) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\noondiphcddnnabmjcihcjfbhfklnnep [2016-04-22]
CHR Extension: (ProxPrice) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nopgehbobniifpngnhmljfojnkkopbje [2016-03-04]
CHR Extension: (Google Code Archive - Long-term stora...) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\opmbhclbceeoiegfpidanbkkflbfpiig [2016-04-26]
CHR Extension: (Virtual Keyboard) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflmllfnnabikmfkkaddkoolinlfninn [2015-12-02]
CHR Extension: (Google Mail) - C:\Users\Marlin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngkhgikojglcgnckopipfdajaifmmnnc] - hxxp://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-11-18] (Kaspersky Lab ZAO)
R2 Cepstral License Server; C:\Program Files (x86)\Cepstral\bin\CepstralLicSrv.exe [57344 2007-03-15] (Cepstral, LLC) [Datei ist nicht signiert]
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-19] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-19] (Dropbox, Inc.)
S4 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-12-26] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; K:\Programme\Hamachi\hamachi-2.exe [2552840 2016-05-06] (LogMeIn Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-02-26] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [253528 2015-07-09] ()
R2 ImDskSvc; C:\Windows\system32\imdsksvc.exe [19552 2015-08-14] (Olof Lagerkvist)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-20] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-03] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3191392 2014-05-15] (INCA Internet Co., Ltd.)
S4 Origin Client Service; D:\Games etc\Origin\OriginClientService.exe [2120712 2016-04-30] (Electronic Arts)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-03-04] (Plays.tv, LLC)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-08-24] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-08-24] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 RzKLService; D:\Programme\Razer Cortex\RzKLService.exe [129168 2015-08-21] (Razer Inc.)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4255232 2016-02-15] (A-Volute) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R2 TwonkyServer; C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe [1923120 2015-10-08] (Lynx Technology)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WRSVC; C:\Program Files\Webroot\WRSA.exe [876712 2016-05-24] (Webroot)
S2 EasyRedirect; K:\Programme\Easy-Hide-IP VPN\rdr\EasyRedirect.exe [X]
S3 MediaFire Desktop Updater Service; C:\Program Files (x86)\MediaFire Desktop\bin\UpdaterLocalCOM.exe [X]
S2 SEVPNCLIENT; "D:\Programme\SoftEther VPN Client\vpnclient_x64.exe" /service [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
S4 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2015-04-17] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2012-04-25] (AVM Berlin)
R2 AWEAlloc; C:\Windows\System32\DRIVERS\awealloc.sys [21048 2015-08-06] (Olof Lagerkvist)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [488216 2014-02-03] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-05-27] ()
S3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2014-10-07] (Echobit, LLC)
R3 fwlanusb5; C:\Windows\System32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-12-08] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-02-26] (Intel Corporation)
R2 ImDisk; C:\Windows\System32\DRIVERS\imdisk.sys [49104 2015-08-14] (Olof Lagerkvist)
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] ()
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70000 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [77728 2016-03-01] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [181640 2015-11-18] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [237480 2016-05-25] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [943536 2016-05-25] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [49240 2016-05-25] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [41144 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-11-18] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [103096 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 KovaPlusFltr; C:\Windows\System32\drivers\KovaPlusFltr.sys [15104 2010-01-25] (ROCCAT Development, Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [31744 2008-09-07] (hxxp://libusb-win32.sourceforge.net) [Datei ist nicht signiert]
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2015-04-17] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [180480 2015-10-08] (Intel Corporation)
R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0118.sys [38432 2016-03-22] (SoftEther Corporation)
S3 Neo_VPN2; C:\Windows\System32\DRIVERS\Neo_0096.sys [38432 2016-03-22] (SoftEther Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [40640 2016-02-15] (Windows (R) Win 7 DDK provider)
S3 SEE; C:\Windows\System32\drivers\see.sys [50208 2016-01-02] (SoftEther Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2016-02-04] (Duplex Secure Ltd.)
R3 USBPcap; C:\Windows\System32\DRIVERS\USBPcap.sys [48344 2015-12-10] (USBPcap)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [119712 2016-04-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [192352 2016-04-28] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125008 2016-01-19] (Oracle Corporation)
R0 WRkrn; C:\Windows\System32\drivers\WRkrn.sys [117728 2016-05-24] (Webroot)
S3 wrUrlFlt; C:\Windows\system32\DRIVERS\wrUrlFlt.sys [54512 2016-05-24] (Webroot)
S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [29288 2015-02-02] (Wondershare)
R3 ALSysIO; \??\C:\Users\Marlin\AppData\Local\Temp\ALSysIO64.sys [X]
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]
S3 ATP; system32\DRIVERS\cmdatp.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]
U0 SR; kein ImagePath
U2 srservice; kein ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-31 17:51 - 2016-05-31 17:52 - 00002341 _____ C:\Users\Marlin\Desktop\Fixlog.txt
2016-05-29 13:16 - 2016-05-29 13:21 - 00250532 _____ C:\TDSSKiller.3.1.0.9_29.05.2016_13.16.28_log.txt
2016-05-29 13:15 - 2016-05-29 13:17 - 00102138 _____ C:\Users\Marlin\Desktop\Addition.txt
2016-05-29 13:15 - 2016-05-29 13:15 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Marlin\Desktop\tdsskiller.exe
2016-05-28 18:24 - 2016-05-28 18:24 - 00000742 _____ C:\Users\Marlin\Desktop\Revo Uninstaller.lnk
2016-05-28 18:24 - 2016-05-28 18:24 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-05-28 16:24 - 2016-05-28 16:24 - 00000000 ____D C:\Users\Marlin\AppData\LocalLow\BitTorrent
2016-05-28 15:56 - 2016-05-28 15:56 - 01703295 _____ C:\Users\Marlin\Desktop\wpdb.sql
2016-05-28 15:55 - 2016-05-28 15:55 - 00000000 ____D C:\Users\Marlin\Desktop\otterforum
2016-05-28 12:06 - 2016-05-28 12:06 - 00003013 _____ C:\Users\Marlin\Desktop\HitLeap Viewer.lnk
2016-05-28 12:06 - 2016-05-28 12:06 - 00002929 _____ C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HitLeap Viewer.lnk
2016-05-28 12:06 - 2016-05-28 12:06 - 00000000 ____D C:\Program Files (x86)\HitLeap
2016-05-27 23:53 - 2016-05-27 23:53 - 00000718 _____ C:\Users\Marlin\www.kieran.pw.conf
2016-05-27 23:46 - 2016-05-27 23:46 - 00003058 _____ C:\Users\Marlin\agb.phpBAk
2016-05-27 23:44 - 2016-05-27 23:44 - 00003058 _____ C:\Users\Marlin\agb.php
2016-05-27 18:18 - 2016-05-27 18:18 - 06541784 _____ (Tim Kosse) C:\Users\Marlin\Downloads\FileZilla_3.18.0_win64-setup.exe
2016-05-27 01:47 - 2016-05-27 02:10 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Enigma Software Group
2016-05-27 01:47 - 2016-05-27 01:47 - 00000000 _____ C:\autoexec.bat
2016-05-27 01:46 - 2016-05-27 01:46 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-05-27 00:05 - 2016-05-31 17:54 - 00048704 _____ C:\Users\Marlin\Desktop\FRST.txt
2016-05-27 00:04 - 2016-05-27 00:04 - 00000000 ____D C:\Users\Marlin\AppData\Local\GWX
2016-05-26 00:55 - 2016-05-29 13:35 - 00000000 ____D C:\Users\Marlin\Desktop\droid
2016-05-25 16:42 - 2016-04-12 03:23 - 00154344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-25 16:42 - 2016-04-12 03:23 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-05-25 16:42 - 2016-04-12 03:20 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-05-25 16:42 - 2016-04-12 03:20 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-05-25 16:42 - 2016-04-12 03:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-05-25 16:42 - 2016-04-12 03:01 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-05-25 16:42 - 2016-04-12 03:01 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-05-25 16:42 - 2016-04-12 03:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-05-25 16:42 - 2016-04-12 02:50 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-05-25 16:42 - 2016-04-12 02:43 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-25 16:42 - 2016-04-12 02:43 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-25 16:42 - 2016-04-12 02:43 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-25 16:42 - 2016-04-12 02:42 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-05-25 16:42 - 2016-04-12 02:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-05-25 16:42 - 2016-04-12 02:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-05-25 16:42 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-05-25 16:42 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-05-25 16:42 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-05-25 16:42 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-05-25 16:42 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-05-25 16:42 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-05-25 16:38 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-05-25 16:38 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-05-25 16:38 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-05-25 16:38 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-05-25 16:38 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-05-25 16:38 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-05-25 12:33 - 2016-05-31 17:54 - 00000000 ____D C:\FRST
2016-05-25 12:33 - 2016-05-31 17:51 - 02383872 _____ (Farbar) C:\Users\Marlin\Desktop\FRST64.exe
2016-05-25 09:16 - 2016-05-25 09:42 - 00000000 ____D C:\Users\Marlin\Desktop\Anti Virus
2016-05-25 09:16 - 2016-05-25 09:16 - 00004419 _____ C:\Users\Marlin\Desktop\JRT.txt
2016-05-25 09:10 - 2016-05-25 09:10 - 00000000 ____D C:\Program Files (x86)\ESET
2016-05-25 08:06 - 2016-05-25 08:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweeten
2016-05-25 01:10 - 2016-05-25 01:10 - 00000000 ____H C:\Users\Marlin\AppData\Local\BITFA99.tmp
2016-05-25 01:09 - 2016-05-25 01:10 - 00000000 _____ C:\Users\Marlin\AppData\Local\{056C4BAF-A0FF-4DDD-ABE9-6611CE374B05}
2016-05-25 01:07 - 2016-05-25 01:07 - 00000011 _____ C:\ProgramData\.tv7
2016-05-25 00:48 - 2016-05-25 00:48 - 00000000 ____D C:\.Trash-999
2016-05-24 23:58 - 2016-05-24 23:58 - 00000000 ____D C:\Identity
2016-05-24 23:57 - 2016-05-31 17:53 - 00000000 ____D C:\ProgramData\WRData
2016-05-24 23:57 - 2016-05-24 23:57 - 00182200 _____ (Webroot) C:\Windows\SysWOW64\WRusr.dll
2016-05-24 23:57 - 2016-05-24 23:57 - 00117728 _____ (Webroot) C:\Windows\system32\Drivers\WRkrn.sys
2016-05-24 23:57 - 2016-05-24 23:57 - 00117304 _____ (Webroot) C:\Windows\system32\WRusr.dll
2016-05-24 23:57 - 2016-05-24 23:57 - 00054512 ____T (Webroot) C:\Windows\system32\Drivers\wrUrlFlt.sys
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Users\Marlin\AppData\LocalLow\LastPass
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Users\Marlin\AppData\Local\lptmp
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webroot SecureAnywhere
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Program Files\Webroot
2016-05-24 23:57 - 2016-05-24 23:57 - 00000000 ____D C:\Program Files\Common Files\Webroot
2016-05-24 23:56 - 2016-05-26 23:36 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-24 23:56 - 2016-05-24 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-05-24 23:56 - 2016-05-24 23:56 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-05-24 23:56 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-05-24 23:56 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-05-24 23:56 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-05-24 23:10 - 2016-05-24 23:10 - 00023802 _____ C:\Users\Marlin\AppData\Local\recently-used.xbel
2016-05-24 22:29 - 2016-05-24 22:29 - 00000000 _____ C:\Users\Marlin\AppData\Local\{1A1B3749-31EB-494F-AA76-3DFC76586726}
2016-05-24 22:13 - 2016-05-24 22:13 - 00000184 _____ C:\Users\Marlin\Desktop\Aurelion.url
2016-05-21 16:28 - 2016-05-21 16:28 - 00000000 _____ C:\Users\Marlin\AppData\Local\{AB9E70B5-71FF-4C0D-9E0C-EEBA9714DFC4}
2016-05-19 02:45 - 2016-04-12 16:52 - 00908717 _____ C:\Users\Marlin\Desktop\Para's InstaLock 0.49.exe
2016-05-18 20:55 - 2016-05-18 20:57 - 352321536 _____ C:\Users\Marlin\Downloads\pmagic_2013_08_01.iso
2016-05-14 00:44 - 2016-05-14 00:44 - 00001097 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2016-05-14 00:44 - 2016-05-14 00:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-05-14 00:43 - 2016-05-14 00:43 - 00000000 ____D C:\Program Files\Oracle
2016-05-14 00:09 - 2016-05-27 18:21 - 00002084 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-05-13 14:10 - 2016-05-13 15:10 - 05995712 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-05-13 13:25 - 2016-05-13 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-05-13 09:56 - 2016-05-13 09:56 - 00015816 _____ (Razer Inc.) C:\Windows\SysWOW64\RzStats.IPC.dll
2016-05-11 21:37 - 2016-05-11 21:37 - 00000688 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2 Multiplayer.lnk
2016-05-11 21:25 - 2016-05-12 00:03 - 00000000 ____D C:\Users\Marlin\Desktop\Präs
2016-05-11 14:55 - 2016-05-31 17:53 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f163753f4a4f.job
2016-05-11 14:55 - 2016-05-30 09:00 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0bf53fb98686a.job
2016-05-11 14:55 - 2016-05-11 14:55 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0bf53fb98686a
2016-05-11 14:55 - 2016-05-11 14:55 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0f163753f4a4f
2016-05-11 14:52 - 2016-05-11 14:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-05-10 22:26 - 2016-05-10 22:25 - 06513888 _____ (Tim Kosse) C:\Users\Marlin\Downloads\FileZilla_3.17.0.1_win64-setup.exe
2016-05-10 22:21 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-05-10 22:21 - 2016-04-14 15:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-10 22:21 - 2016-04-09 09:01 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-10 22:21 - 2016-04-09 09:01 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-05-10 22:21 - 2016-04-09 08:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-05-10 22:21 - 2016-04-09 08:57 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-10 22:21 - 2016-04-09 08:57 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-05-10 22:21 - 2016-04-09 08:54 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-05-10 22:21 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-05-10 22:21 - 2016-04-09 07:49 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-10 22:21 - 2016-04-06 17:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-05-10 22:20 - 2016-04-23 19:08 - 00394960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-10 22:20 - 2016-04-23 18:24 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-05-10 22:20 - 2016-04-23 07:25 - 25816064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-10 22:20 - 2016-04-23 07:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-05-10 22:20 - 2016-04-23 07:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-05-10 22:20 - 2016-04-23 07:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 02893312 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-05-10 22:20 - 2016-04-23 07:00 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-05-10 22:20 - 2016-04-23 07:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-05-10 22:20 - 2016-04-23 06:52 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-05-10 22:20 - 2016-04-23 06:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-05-10 22:20 - 2016-04-23 06:48 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-05-10 22:20 - 2016-04-23 06:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-10 22:20 - 2016-04-23 06:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-05-10 22:20 - 2016-04-23 06:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-05-10 22:20 - 2016-04-23 06:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-05-10 22:20 - 2016-04-23 06:46 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-10 22:20 - 2016-04-23 06:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-10 22:20 - 2016-04-23 06:36 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-05-10 22:20 - 2016-04-23 06:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-10 22:20 - 2016-04-23 06:27 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-05-10 22:20 - 2016-04-23 06:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-05-10 22:20 - 2016-04-23 06:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-05-10 22:20 - 2016-04-23 06:21 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-05-10 22:20 - 2016-04-23 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-05-10 22:20 - 2016-04-23 06:20 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-05-10 22:20 - 2016-04-23 06:11 - 20350464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-05-10 22:20 - 2016-04-23 06:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-10 22:20 - 2016-04-23 06:08 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-05-10 22:20 - 2016-04-23 06:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-05-10 22:20 - 2016-04-23 06:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-05-10 22:20 - 2016-04-23 06:07 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-10 22:20 - 2016-04-23 06:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-05-10 22:20 - 2016-04-23 06:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-05-10 22:20 - 2016-04-23 06:06 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-05-10 22:20 - 2016-04-23 06:06 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-10 22:20 - 2016-04-23 06:05 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-10 22:20 - 2016-04-23 06:04 - 02285568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-05-10 22:20 - 2016-04-23 06:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-05-10 22:20 - 2016-04-23 06:01 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-05-10 22:20 - 2016-04-23 06:00 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-10 22:20 - 2016-04-23 05:59 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-05-10 22:20 - 2016-04-23 05:58 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-05-10 22:20 - 2016-04-23 05:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-05-10 22:20 - 2016-04-23 05:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-05-10 22:20 - 2016-04-23 05:51 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-10 22:20 - 2016-04-23 05:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-05-10 22:20 - 2016-04-23 05:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-05-10 22:20 - 2016-04-23 05:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-05-10 22:20 - 2016-04-23 05:43 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-05-10 22:20 - 2016-04-23 05:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-05-10 22:20 - 2016-04-23 05:40 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-05-10 22:20 - 2016-04-23 05:39 - 01547776 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-10 22:20 - 2016-04-23 05:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-05-10 22:20 - 2016-04-23 05:36 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-05-10 22:20 - 2016-04-23 05:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-05-10 22:20 - 2016-04-23 05:31 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-05-10 22:20 - 2016-04-23 05:30 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-05-10 22:20 - 2016-04-23 05:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-05-10 22:20 - 2016-04-23 05:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-10 22:20 - 2016-04-23 05:26 - 13811200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-05-10 22:20 - 2016-04-23 05:12 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-05-10 22:20 - 2016-04-23 05:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-05-10 22:20 - 2016-04-23 05:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-05-10 22:20 - 2016-04-09 09:02 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-05-10 22:20 - 2016-04-09 09:01 - 05546216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-10 22:20 - 2016-04-09 09:01 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-05-10 22:20 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-05-10 22:20 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-05-10 22:20 - 2016-04-09 08:59 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-05-10 22:20 - 2016-04-09 08:58 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:52 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-05-10 22:20 - 2016-04-09 07:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-05-10 22:20 - 2016-04-09 07:52 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-05-10 22:20 - 2016-04-09 07:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-05-10 22:20 - 2016-04-09 07:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-05-10 22:20 - 2016-04-09 07:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-05-10 22:20 - 2016-04-09 07:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-05-10 22:20 - 2016-04-09 07:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-05-10 22:20 - 2016-04-09 07:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-05-10 22:20 - 2016-04-09 07:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-05-10 22:20 - 2016-04-09 07:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 07:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-10 22:20 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-10 22:20 - 2016-04-09 05:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-05 18:32 - 2016-05-05 18:32 - 00000000 ____D C:\Users\Marlin\AppData\Local\UWKProcess
2016-05-05 18:29 - 2016-05-05 18:29 - 00000000 ____D C:\Users\Marlin\AppData\LocalLow\DefaultCompany
2016-05-05 15:47 - 2014-10-19 15:54 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2016-05-05 14:05 - 2016-05-05 14:05 - 00000000 ____D C:\Users\Marlin\Desktop\Electronic Arts
2016-05-04 14:24 - 2016-03-18 00:56 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-05-04 14:24 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-05-03 19:34 - 2016-04-04 20:14 - 00038120 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-05-03 19:34 - 2016-04-04 20:02 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-05-03 19:34 - 2016-04-02 15:08 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-05-03 19:34 - 2016-03-23 16:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-05-03 19:34 - 2016-03-17 20:04 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-05-03 19:34 - 2016-03-16 20:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-05-03 19:34 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-05-03 19:34 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-05-03 19:34 - 2016-03-16 02:16 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-05-03 19:34 - 2016-03-16 02:16 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-05-03 19:34 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-05-03 19:34 - 2016-03-09 21:00 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-05-03 19:34 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-05-03 19:34 - 2016-03-09 20:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-05-03 19:34 - 2016-03-09 20:40 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-05-03 19:34 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-05-03 19:34 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-05-03 19:34 - 2016-03-06 20:53 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-05-03 19:34 - 2016-03-06 20:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-05-03 19:34 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-05-03 19:34 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-05-03 19:23 - 2016-01-22 08:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-05-03 19:23 - 2016-01-22 08:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-05-03 19:23 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-05-03 19:23 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-05-03 19:19 - 2013-04-10 18:07 - 00002435 _____ C:\Windows\CreateRP-Success_Message.vbs
2016-05-03 19:18 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-05-03 19:18 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-05-03 19:18 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-05-03 19:18 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-05-03 19:18 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-05-03 19:18 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-05-03 19:18 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-05-03 19:18 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-05-03 19:18 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-05-03 19:18 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-05-03 19:18 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-05-03 19:18 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-05-03 19:18 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-05-03 19:18 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-05-03 19:18 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-05-03 19:18 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-05-03 19:18 - 2016-02-05 20:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-05-03 19:18 - 2016-02-05 20:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-05-03 19:18 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-05-03 19:18 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-05-03 19:18 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-05-03 19:18 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-05-03 19:18 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-05-03 19:18 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-05-03 19:18 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-05-03 19:18 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-05-03 19:18 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-05-03 19:18 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-05-03 19:18 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2016-05-03 19:18 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-05-03 19:18 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-05-03 19:18 - 2016-02-02 20:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-05-03 19:18 - 2016-01-21 02:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-05-03 19:18 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-05-03 19:18 - 2015-12-20 20:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-05-03 19:18 - 2015-12-20 20:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-05-03 19:18 - 2015-12-20 16:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-05-03 19:18 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-05-03 19:18 - 2015-06-03 22:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-05-03 18:56 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-05-03 18:56 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-05-03 18:56 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-05-03 18:56 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-05-03 18:56 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-05-03 18:56 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-05-03 18:56 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-05-03 18:56 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-05-03 18:56 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-05-03 18:56 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-05-03 18:56 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-05-03 18:56 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-05-03 18:56 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-05-03 18:56 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-05-03 18:56 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-05-03 18:56 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-05-03 18:56 - 2016-01-07 19:42 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-05-02 20:45 - 2016-05-02 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
2016-05-02 20:23 - 2016-05-02 21:10 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-05-01 18:52 - 2016-05-02 21:10 - 00000000 ____D C:\Users\Marlin\Desktop\HiTFaKeR-v0.4
2016-05-01 18:48 - 2016-05-25 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy-Hide-IP VPN
2016-05-01 18:48 - 2016-04-22 12:27 - 00547544 _____ (EasyTech) C:\Windows\system32\EasyRedirect64.dll
2016-05-01 18:48 - 2016-04-22 12:27 - 00388312 _____ (EasyTech) C:\Windows\SysWOW64\EasyRedirect.dll
2016-05-01 18:21 - 2016-05-02 21:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elite Proxy Switcher
2016-05-01 18:21 - 2016-05-01 18:21 - 00000000 ____D C:\ProgramData\EPS

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-31 17:53 - 2016-04-25 20:16 - 00000000 ____D C:\Users\Marlin\AppData\Local\LogMeIn Hamachi
2016-05-31 17:53 - 2016-04-16 23:28 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Spotify
2016-05-31 17:53 - 2015-12-10 17:11 - 00000000 ____D C:\Users\Marlin\AppData\Local\Spotify
2016-05-31 17:53 - 2015-10-28 02:37 - 00000000 ____D C:\Users\Marlin\AppData\Local\Clipboarder
2016-05-31 17:53 - 2015-07-16 01:14 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0bf53fb750165.job
2016-05-31 17:53 - 2015-06-12 21:25 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-05-31 17:53 - 2014-12-21 12:08 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Raptr
2016-05-31 17:53 - 2014-10-10 14:15 - 04923392 ___SH C:\Users\Marlin\Desktop\Thumbs.db
2016-05-31 17:53 - 2014-09-14 17:19 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-31 17:53 - 2014-09-14 14:00 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-05-31 17:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-31 17:52 - 2009-07-14 06:45 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-31 17:52 - 2009-07-14 06:45 - 00026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-30 09:15 - 2015-05-27 19:23 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Skype
2016-05-30 09:13 - 2014-09-14 17:19 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-30 09:10 - 2015-12-30 18:55 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-30 08:13 - 2015-08-28 17:02 - 00409410 _____ C:\Windows\system32\perfh011.dat
2016-05-30 08:13 - 2015-08-28 17:02 - 00122294 _____ C:\Windows\system32\perfc011.dat
2016-05-30 08:13 - 2015-08-28 16:54 - 00502046 _____ C:\Windows\system32\perfh006.dat
2016-05-30 08:13 - 2015-08-28 16:54 - 00098852 _____ C:\Windows\system32\perfc006.dat
2016-05-30 08:13 - 2015-08-28 16:37 - 00390974 _____ C:\Windows\system32\prfh0404.dat
2016-05-30 08:13 - 2015-08-28 16:37 - 00115284 _____ C:\Windows\system32\prfc0404.dat
2016-05-30 08:13 - 2015-08-28 16:30 - 00706512 _____ C:\Windows\system32\prfh0416.dat
2016-05-30 08:13 - 2015-08-28 16:30 - 00147850 _____ C:\Windows\system32\prfc0416.dat
2016-05-30 08:13 - 2015-08-28 16:23 - 00721650 _____ C:\Windows\system32\prfh0816.dat
2016-05-30 08:13 - 2015-08-28 16:23 - 00153100 _____ C:\Windows\system32\prfc0816.dat
2016-05-30 08:13 - 2015-08-28 16:17 - 00732990 _____ C:\Windows\system32\perfh015.dat
2016-05-30 08:13 - 2015-08-28 16:17 - 00156066 _____ C:\Windows\system32\perfc015.dat
2016-05-30 08:13 - 2015-08-28 16:11 - 00649314 _____ C:\Windows\system32\perfh01F.dat
2016-05-30 08:13 - 2015-08-28 16:11 - 00140194 _____ C:\Windows\system32\perfc01F.dat
2016-05-30 08:13 - 2015-08-28 16:00 - 00373802 _____ C:\Windows\system32\prfh0804.dat
2016-05-30 08:13 - 2015-08-28 16:00 - 00119786 _____ C:\Windows\system32\prfc0804.dat
2016-05-30 08:13 - 2015-08-28 15:44 - 00717232 _____ C:\Windows\system32\perfh019.dat
2016-05-30 08:13 - 2015-08-28 15:44 - 00151036 _____ C:\Windows\system32\perfc019.dat
2016-05-30 08:13 - 2015-08-28 15:39 - 00487146 _____ C:\Windows\system32\perfh014.dat
2016-05-30 08:13 - 2015-08-28 15:39 - 00095598 _____ C:\Windows\system32\perfc014.dat
2016-05-30 08:13 - 2015-08-28 15:35 - 00599620 _____ C:\Windows\system32\perfh008.dat
2016-05-30 08:13 - 2015-08-28 15:35 - 00111322 _____ C:\Windows\system32\perfc008.dat
2016-05-30 08:13 - 2015-08-28 15:30 - 00656352 _____ C:\Windows\system32\perfh01D.dat
2016-05-30 08:13 - 2015-08-28 15:30 - 00142668 _____ C:\Windows\system32\perfc01D.dat
2016-05-30 08:13 - 2015-08-28 15:26 - 00421056 _____ C:\Windows\system32\perfh012.dat
2016-05-30 08:13 - 2015-08-28 15:26 - 00120578 _____ C:\Windows\system32\perfc012.dat
2016-05-30 08:13 - 2015-08-28 15:22 - 00661472 _____ C:\Windows\system32\perfh005.dat
2016-05-30 08:13 - 2015-08-28 15:22 - 00141620 _____ C:\Windows\system32\perfc005.dat
2016-05-30 08:13 - 2015-08-28 15:11 - 00736130 _____ C:\Windows\system32\perfh013.dat
2016-05-30 08:13 - 2015-08-28 15:11 - 00153296 _____ C:\Windows\system32\perfc013.dat
2016-05-30 08:13 - 2015-08-28 15:04 - 00474134 _____ C:\Windows\system32\perfh00B.dat
2016-05-30 08:13 - 2015-08-28 15:04 - 00101714 _____ C:\Windows\system32\perfc00B.dat
2016-05-30 08:13 - 2015-08-28 15:00 - 00676386 _____ C:\Windows\system32\perfh00E.dat
2016-05-30 08:13 - 2015-08-28 15:00 - 00171468 _____ C:\Windows\system32\perfc00E.dat
2016-05-30 08:13 - 2015-08-28 14:52 - 00738088 _____ C:\Windows\system32\perfh00A.dat
2016-05-30 08:13 - 2015-08-28 14:52 - 00158668 _____ C:\Windows\system32\perfc00A.dat
2016-05-30 08:13 - 2015-08-28 14:47 - 00384976 _____ C:\Windows\system32\perfh00D.dat
2016-05-30 08:13 - 2015-08-28 14:47 - 00084952 _____ C:\Windows\system32\perfc00D.dat
2016-05-30 08:13 - 2015-08-28 14:38 - 00732678 _____ C:\Windows\system32\perfh010.dat
2016-05-30 08:13 - 2015-08-28 14:38 - 00147040 _____ C:\Windows\system32\perfc010.dat
2016-05-30 08:13 - 2015-08-28 14:34 - 00738348 _____ C:\Windows\system32\perfh00C.dat
2016-05-30 08:13 - 2015-08-28 14:34 - 00471646 _____ C:\Windows\system32\perfh001.dat
2016-05-30 08:13 - 2015-08-28 14:34 - 00149774 _____ C:\Windows\system32\perfc00C.dat
2016-05-30 08:13 - 2015-08-28 14:34 - 00094966 _____ C:\Windows\system32\perfc001.dat
2016-05-30 08:13 - 2010-11-21 08:50 - 00700130 _____ C:\Windows\system32\perfh007.dat
2016-05-30 08:13 - 2010-11-21 08:50 - 00149768 _____ C:\Windows\system32\perfc007.dat
2016-05-30 08:13 - 2009-07-14 07:13 - 17467958 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-30 08:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-05-30 08:09 - 2015-04-22 07:54 - 00000000 ____D C:\Users\Alexander
2016-05-29 01:48 - 2015-09-12 15:08 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\BitTorrent
2016-05-29 01:35 - 2014-10-12 23:05 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\vlc
2016-05-28 23:40 - 2015-02-13 19:58 - 00000600 _____ C:\Users\Marlin\AppData\Local\PUTTY.RND
2016-05-28 23:40 - 2014-09-23 17:31 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\FileZilla
2016-05-28 19:12 - 2014-09-23 18:35 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\.minecraft
2016-05-28 16:20 - 2014-10-24 00:22 - 00000000 ____D C:\Users\Marlin\Desktop\Programme
2016-05-28 16:20 - 2014-10-23 22:06 - 00000448 __RSH C:\ProgramData\ntuser.pol
2016-05-28 16:12 - 2014-12-10 22:38 - 00000000 ____D C:\Users\Marlin\.VirtualBox
2016-05-27 23:53 - 2014-09-14 16:56 - 00000000 ____D C:\Users\Marlin
2016-05-27 18:21 - 2015-01-24 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2016-05-27 18:21 - 2015-01-24 20:19 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2016-05-27 15:15 - 2014-09-20 20:34 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\OBS
2016-05-27 04:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-05-27 00:18 - 2014-09-14 16:58 - 17078958 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-05-26 23:00 - 2015-06-14 22:46 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-26 23:00 - 2015-06-14 22:46 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-26 22:34 - 2015-06-17 17:42 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-05-26 21:07 - 2016-04-16 17:08 - 00000000 ____D C:\Users\Marlin\Downloads\Telegram Desktop
2016-05-26 19:31 - 2015-06-21 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2016-05-26 16:31 - 2015-03-11 21:11 - 00000000 ____D C:\Users\Marlin\AppData\Local\CrashDumps
2016-05-25 16:55 - 2015-08-28 15:51 - 00000000 ____D C:\Windows\et-EE
2016-05-25 16:55 - 2015-08-28 15:47 - 00000000 ____D C:\Windows\lt-LT
2016-05-25 16:55 - 2015-08-28 15:07 - 00000000 ____D C:\Windows\lv-LV
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\lv-LV
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\lt-LT
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\et-EE
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\lv-LV
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\lt-LT
2016-05-25 16:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\et-EE
2016-05-25 16:21 - 2015-11-18 23:43 - 00943536 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-05-25 16:21 - 2015-06-11 20:32 - 00049240 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
2016-05-25 16:20 - 2015-07-04 03:18 - 00237480 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-05-25 14:47 - 2016-01-22 14:43 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-05-25 14:09 - 2015-01-13 18:31 - 00000000 ____D C:\AdwCleaner
2016-05-25 13:48 - 2016-01-02 21:02 - 00000000 ___RD C:\Users\Marlin\MediaFire
2016-05-25 00:27 - 2015-03-22 19:59 - 00000000 ____D C:\ProgramData\TEMP
2016-05-24 23:56 - 2014-11-08 23:43 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-05-24 23:10 - 2014-10-15 14:34 - 00000000 ____D C:\Users\Marlin\AppData\Local\gtk-2.0
2016-05-24 23:10 - 2014-10-15 14:30 - 00000000 ____D C:\Users\Marlin\.gimp-2.8
2016-05-24 22:20 - 2016-03-29 21:44 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Tweeten
2016-05-24 22:10 - 2016-04-26 00:53 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2016-05-24 22:10 - 2016-03-26 00:13 - 00000671 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-24 22:10 - 2015-07-06 15:48 - 00000723 _____ C:\Users\Marlin\Desktop\Amorous.lnk
2016-05-24 22:10 - 2015-05-11 22:55 - 00000000 __SHD C:\Users\Marlin\Desktop\Tools
2016-05-24 22:10 - 2014-10-23 22:49 - 00001281 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-24 22:10 - 2014-10-08 20:33 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks
2016-05-24 22:10 - 2014-09-14 16:56 - 00001026 _____ C:\Users\Marlin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-24 19:56 - 2014-10-02 14:16 - 00177000 _____ C:\IFRToolLog.txt
2016-05-21 21:49 - 2015-08-28 03:26 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-19 18:18 - 2016-02-11 16:29 - 00000633 _____ C:\Users\Marlin\Desktop\Phone.txt
2016-05-19 16:33 - 2016-04-16 23:52 - 00000000 ____D C:\Users\Marlin\Documents\Euro Truck Simulator 2
2016-05-19 01:37 - 2015-12-04 19:42 - 00000958 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-05-18 19:29 - 2016-01-04 15:59 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-05-18 19:29 - 2014-09-14 14:49 - 00000000 ____D C:\ProgramData\Skype
2016-05-14 00:39 - 2014-12-02 17:16 - 00000501 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-05-13 19:55 - 2015-11-15 19:09 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\Audacity
2016-05-13 15:10 - 2015-12-30 18:55 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-13 15:10 - 2015-12-30 18:55 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-13 15:10 - 2015-12-30 18:55 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-05-13 13:25 - 2015-07-19 14:08 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-05-12 23:01 - 2015-06-14 22:46 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-12 20:57 - 2015-08-28 03:26 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-05-12 20:30 - 2014-12-31 12:44 - 00000000 ____D C:\Users\Marlin\Documents\ETS2MP
2016-05-11 21:37 - 2016-04-18 17:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP
2016-05-11 15:46 - 2016-01-26 14:52 - 00000000 ____D C:\ProgramData\TwonkyServer
2016-05-11 14:51 - 2009-07-14 06:45 - 00355016 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-10 23:20 - 2010-11-21 09:00 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-10 23:12 - 2015-11-25 23:26 - 00000600 _____ C:\Users\Marlin\AppData\Roaming\PUTTY.RND
2016-05-10 23:10 - 2014-09-14 11:47 - 00000000 ____D C:\Windows\system32\MRT
2016-05-10 23:01 - 2014-09-14 11:47 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-10 22:12 - 2016-01-02 21:00 - 00000000 ____D C:\Program Files (x86)\MediaFire Desktop
2016-05-09 23:36 - 2015-02-20 20:27 - 00000000 ____D C:\ProgramData\Origin
2016-05-06 16:29 - 2015-12-22 19:55 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-05-06 14:49 - 2015-06-12 21:23 - 00000000 ____D C:\ProgramData\Razer
2016-05-05 18:29 - 2015-01-16 15:38 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-05-05 18:20 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-05-05 15:49 - 2016-03-08 03:10 - 00000000 ____D C:\Users\Marlin\Documents\Electronic Arts
2016-05-03 15:06 - 2014-09-23 16:06 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-05-03 15:06 - 2014-09-23 16:06 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-05-02 22:10 - 2015-10-15 18:08 - 00000000 ____D C:\Users\Marlin\AppData\Local\Battle.net
2016-05-02 21:11 - 2016-04-02 22:17 - 00000000 ____D C:\Program Files (x86)\RealWorld Cursor Editor
2016-05-02 21:10 - 2016-04-30 15:39 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-05-02 21:10 - 2016-01-01 23:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client
2016-05-02 21:10 - 2015-09-08 15:14 - 00000000 ____D C:\Program Files\Realtek
2016-05-02 21:10 - 2015-06-13 18:52 - 00000000 ____D C:\ProgramData\Apple
2016-05-02 21:10 - 2015-06-13 18:52 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-05-02 21:10 - 2015-01-20 19:20 - 00000000 ____D C:\Users\Marlin\AppData\Roaming\puush
2016-05-02 21:10 - 2014-09-14 17:14 - 00000000 ____D C:\Windows\system32\SRSLabs
2016-05-02 21:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security
2016-05-02 21:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-05-02 21:03 - 2014-09-14 17:14 - 00000000 ___HD C:\Program Files (x86)\Temp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-01-12 14:09 - 2016-01-12 14:09 - 0000011 _____ () C:\Users\Marlin\AppData\Roaming\.tv7
2016-04-16 14:24 - 2016-04-16 14:24 - 0005120 _____ () C:\Users\Marlin\AppData\Roaming\GiftBag.db
2014-09-24 19:48 - 2014-09-24 19:48 - 0000012 _____ () C:\Users\Marlin\AppData\Roaming\id.txt
2014-10-12 16:21 - 2014-10-12 16:21 - 0000098 _____ () C:\Users\Marlin\AppData\Roaming\LauncherSettings_live.cfg
2014-11-12 18:53 - 2014-11-13 15:37 - 0001216 _____ () C:\Users\Marlin\AppData\Roaming\Marlin.txt
2015-11-25 23:26 - 2016-05-10 23:12 - 0000600 _____ () C:\Users\Marlin\AppData\Roaming\PUTTY.RND
2015-08-29 11:50 - 2015-08-29 11:50 - 0001268 _____ () C:\Users\Marlin\AppData\Roaming\Roaming - Shortcut.lnk
2015-08-29 11:50 - 2015-08-29 11:51 - 0044032 ___SH () C:\Users\Marlin\AppData\Roaming\Thumbs.db
2016-01-02 21:48 - 2016-01-04 21:13 - 20806800 _____ () C:\Users\Marlin\AppData\Roaming\xulrunner.zip
2016-05-25 01:10 - 2016-05-25 01:10 - 0000000 ____H () C:\Users\Marlin\AppData\Local\BITFA99.tmp
2014-09-24 19:53 - 2015-10-22 02:25 - 0011776 _____ () C:\Users\Marlin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-13 19:58 - 2016-05-28 23:40 - 0000600 _____ () C:\Users\Marlin\AppData\Local\PUTTY.RND
2016-05-24 23:10 - 2016-05-24 23:10 - 0023802 _____ () C:\Users\Marlin\AppData\Local\recently-used.xbel
2015-06-12 15:18 - 2015-10-11 22:41 - 0007599 _____ () C:\Users\Marlin\AppData\Local\Resmon.ResmonCfg
2016-05-25 01:09 - 2016-05-25 01:10 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{056C4BAF-A0FF-4DDD-ABE9-6611CE374B05}
2015-10-08 08:08 - 2015-10-08 08:08 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{17367099-8997-4CFF-BF2C-F000DF000440}
2016-05-24 22:29 - 2016-05-24 22:29 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{1A1B3749-31EB-494F-AA76-3DFC76586726}
2016-01-10 00:24 - 2016-01-10 00:24 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{5BD514BE-42FC-46EB-A519-E8C388502CAC}
2015-12-08 15:23 - 2015-12-08 15:23 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{5D944AE5-599D-45D9-9A19-38C0440454A8}
2015-12-16 14:27 - 2015-12-16 14:27 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{73AA8701-6E85-4A4D-BF2B-5D5DA87280D5}
2016-05-21 16:28 - 2016-05-21 16:28 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{AB9E70B5-71FF-4C0D-9E0C-EEBA9714DFC4}
2015-08-13 11:15 - 2015-08-13 11:15 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{B8E48531-81EC-4123-9E5A-E18A4912D3F8}
2015-12-16 14:27 - 2015-12-16 14:27 - 0000000 _____ () C:\Users\Marlin\AppData\Local\{BD45C9D4-BE8E-457B-B07F-11E05B39E8ED}
2016-05-25 01:07 - 2016-05-25 01:07 - 0000011 _____ () C:\ProgramData\.tv7

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Marlin\multibit-hd-windows-x64-0.3.0.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-05-28 23:18

==================== Ende von FRST.txt ============================

Ich habe grade gesehen, dass ich ein "Restore Point" von 3 Tage vor der Installation habe. Würde es helfen wenn ich auf den Zurücksetzen würde? Und werden dann nur Programma gelöscht oder auch (als Beispiel) Text Dateien?
Geändert von Kieran (31.05.2016 um 17:50 Uhr)

Antwort
Seite 2 von 5 1 2 34 Letzte »

Themen zu Browser öffnen auf Klick hin adware Seiten
adware, ausser, browser, dauert, einfach, entfernt, fehler, freund, gescannt, gestern, installer, klick, klicke, malwarebytes, neue, neuen, neuer tab, programm, schei, schädlinge, seite, seiten, versteckt, windows, windows 7, öffnen, öffnet


« Routineuntersuchung nach Schädlingen | Windows 7: Spam mails werden -erneut- von meiner t-online Adresse an meine Kontakte versandt »


Ähnliche Themen: Browser öffnen auf Klick hin adware Seiten


  1. Seiten öffnen sich im Browser selbstständig
    Log-Analyse und Auswertung - 23.01.2015 (15)
  2. windows 8 - Seiten im Browser öffnen sich selbständig
    Plagegeister aller Art und deren Bekämpfung - 30.09.2014 (4)
  3. Windows 7: Alle Browser öffnen komische Seiten(online-casinos)
    Log-Analyse und Auswertung - 28.06.2014 (9)
  4. Browser öffnen einige Seiten nicht mehr!
    Alles rund um Windows - 26.04.2014 (33)
  5. Adware? ständig öffnen sich (Werbe)fenster akamaihd.net und Seiten werden nicht korrekt angezeigt PLUSHD6
    Plagegeister aller Art und deren Bekämpfung - 04.12.2013 (9)
  6. Browser Seiten öffnen sich nicht mehr ( einige jedenfalls)
    Mülltonne - 22.10.2013 (1)
  7. Browser öffnen nur about:blank Seiten statt Link
    Log-Analyse und Auswertung - 15.04.2013 (1)
  8. Browser öffnen bei Klick auf Google Suchergebnis Werbung
    Plagegeister aller Art und deren Bekämpfung - 19.03.2013 (13)
  9. Ihavenet.com Browser Hijacker- bei Googlesuche öffnen sich andere Seiten (Weiterleitung über Ihavenet.com)
    Log-Analyse und Auswertung - 21.11.2012 (13)
  10. Browser von heute auf morgen extrem langsam und einige Seiten öffnen sich gar nicht !
    Plagegeister aller Art und deren Bekämpfung - 24.10.2012 (3)
  11. Explorer stürzt ständig ab / Jegliche Browser öffnen ungewollt Seiten
    Plagegeister aller Art und deren Bekämpfung - 10.11.2010 (8)
  12. Lautstärke auf Null, IE öffnet Seiten, Klick-Geräusche=> ClickCycler?
    Plagegeister aller Art und deren Bekämpfung - 20.07.2010 (3)
  13. google umleitung? (klick bringt mich zu dubiösen Seiten alle Browser)
    Plagegeister aller Art und deren Bekämpfung - 20.07.2010 (1)
  14. Browser - Google Links funktionieren nicht, andere Seiten öffnen sich
    Log-Analyse und Auswertung - 04.03.2010 (27)
  15. Browser Hijack - Explorer und Firefox öffnen bei Google-Links falsche Seiten
    Log-Analyse und Auswertung - 27.03.2009 (4)
  16. Internet hat Verbindung aber Browser öffnen keine Seiten
    Plagegeister aller Art und deren Bekämpfung - 17.11.2008 (0)
  17. Browser öffnen kaum noch seiten
    Log-Analyse und Auswertung - 23.09.2008 (0)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Browser öffnen auf Klick hin adware Seiten - Passiert das auch beim normalen Browsern oder nur bei dem Programm was du da verwendest? - Browser öffnen auf Klick hin adware Seiten...
Archiv
Du betrachtest: Browser öffnen auf Klick hin adware Seiten auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55