| |
| |||||||
Log-Analyse und Auswertung: Bestehen reste nach trojaner infektion?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
18.01.2017, 22:33
| #16 |
 |  Bestehen reste nach trojaner infektion?Code:
ATTFilter C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2016-12-31 14:08 - 2016-09-15 17:56 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2016-12-31 14:08 - 2016-09-15 17:55 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2016-12-31 14:08 - 2016-09-15 17:54 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2016-12-31 14:08 - 2016-09-15 17:54 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2016-12-31 14:08 - 2016-09-15 17:53 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2016-12-31 14:08 - 2016-09-15 17:52 - 00816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2016-12-31 14:08 - 2016-09-15 17:50 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-12-31 14:08 - 2016-09-15 17:50 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2016-12-31 14:08 - 2016-09-15 17:48 - 01320448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-12-31 14:08 - 2016-09-15 17:46 - 00343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-12-31 14:08 - 2016-09-15 17:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2016-12-31 14:08 - 2016-09-15 17:44 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2016-12-31 14:08 - 2016-09-15 17:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2016-12-31 14:08 - 2016-09-15 17:42 - 00545792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2016-12-31 14:08 - 2016-09-15 17:42 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2016-12-31 14:08 - 2016-09-15 17:42 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2016-12-31 14:08 - 2016-09-15 17:42 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundMediaPolicy.dll
2016-12-31 14:08 - 2016-09-15 17:40 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2016-12-31 14:08 - 2016-09-15 17:40 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrGidsHandler.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2016-12-31 14:08 - 2016-09-15 17:38 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-12-31 14:08 - 2016-09-15 17:36 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2016-12-31 14:08 - 2016-09-15 17:36 - 00448512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2016-12-31 14:08 - 2016-09-15 17:36 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2016-12-31 14:08 - 2016-09-15 17:36 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-12-31 14:08 - 2016-09-15 17:35 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2016-12-31 14:08 - 2016-09-15 17:35 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\easwrt.dll
2016-12-31 14:08 - 2016-09-15 17:35 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\rshx32.dll
2016-12-31 14:08 - 2016-09-15 17:34 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2016-12-31 14:08 - 2016-09-15 17:34 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2016-12-31 14:08 - 2016-09-15 17:33 - 00963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2016-12-31 14:08 - 2016-09-15 17:33 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2016-12-31 14:08 - 2016-09-15 17:32 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-12-31 14:08 - 2016-09-15 17:31 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2016-12-31 14:08 - 2016-09-15 17:29 - 01082368 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-12-31 14:08 - 2016-09-15 17:29 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2016-12-31 14:08 - 2016-09-15 17:27 - 02860032 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-12-31 14:08 - 2016-09-15 17:27 - 00796672 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2016-12-31 14:08 - 2016-09-15 17:27 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2016-12-31 14:08 - 2016-09-15 17:26 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2016-12-31 14:08 - 2016-09-15 17:26 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2016-12-31 14:08 - 2016-09-15 17:25 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2016-12-31 14:08 - 2016-09-15 17:24 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Devices.dll
2016-12-31 14:08 - 2016-09-15 17:23 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-12-31 14:08 - 2016-09-15 17:23 - 00611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2016-12-31 14:08 - 2016-09-15 17:23 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2016-12-31 14:08 - 2016-09-15 17:22 - 01709056 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2016-12-31 14:08 - 2016-09-15 17:19 - 03202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-12-31 14:08 - 2016-09-15 17:17 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\FontProvider.dll
2016-12-31 14:08 - 2016-09-15 17:16 - 01817088 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2016-12-31 14:08 - 2016-09-15 17:16 - 00531456 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2016-12-31 14:08 - 2016-09-15 17:16 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2016-12-31 14:08 - 2016-09-07 06:54 - 00133472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-12-31 14:08 - 2016-09-07 06:44 - 02049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-12-31 14:08 - 2016-09-07 06:34 - 00857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-12-31 14:08 - 2016-09-07 06:33 - 00681304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2016-12-31 14:08 - 2016-09-07 06:29 - 00595488 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-12-31 14:08 - 2016-09-07 06:27 - 01362504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-12-31 14:08 - 2016-09-07 06:24 - 00057400 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-12-31 14:08 - 2016-09-07 06:13 - 00640976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-12-31 14:08 - 2016-09-07 06:13 - 00529928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-12-31 14:08 - 2016-09-07 06:03 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccessRes.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTypeHelperUtil.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\UserDataLanguageUtil.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\ExtrasXmlParser.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneutilRes.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneServiceRes.dll
2016-12-31 14:08 - 2016-09-07 06:02 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-12-31 14:08 - 2016-09-07 06:01 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll
2016-12-31 14:08 - 2016-09-07 06:01 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\AddressParser.dll
2016-12-31 14:08 - 2016-09-07 06:01 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll
2016-12-31 14:08 - 2016-09-07 06:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-12-31 14:08 - 2016-09-07 05:59 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2016-12-31 14:08 - 2016-09-07 05:59 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll
2016-12-31 14:08 - 2016-09-07 05:59 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\UserDataPlatformHelperUtil.dll
2016-12-31 14:08 - 2016-09-07 05:59 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\ContactActivation.dll
2016-12-31 14:08 - 2016-09-07 05:58 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2016-12-31 14:08 - 2016-09-07 05:58 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-12-31 14:08 - 2016-09-07 05:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-12-31 14:08 - 2016-09-07 05:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-12-31 14:08 - 2016-09-07 05:56 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2016-12-31 14:08 - 2016-09-07 05:56 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2016-12-31 14:08 - 2016-09-07 05:56 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2016-12-31 14:08 - 2016-09-07 05:55 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2016-12-31 14:08 - 2016-09-07 05:54 - 00805888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-12-31 14:08 - 2016-09-07 05:54 - 00315904 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
2016-12-31 14:08 - 2016-09-07 05:53 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2016-12-31 14:08 - 2016-09-07 05:49 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-12-31 14:08 - 2016-09-07 05:46 - 00846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2016-12-31 14:08 - 2016-09-07 05:46 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-12-31 14:08 - 2016-09-07 05:41 - 01891328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-12-31 14:08 - 2016-09-07 05:40 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2016-12-31 14:08 - 2016-09-07 05:39 - 05384192 _____ (Microsoft) C:\Windows\system32\dbgeng.dll
2016-12-31 14:08 - 2016-09-07 05:38 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2016-12-31 14:08 - 2016-09-07 05:35 - 00650240 _____ (Microsoft) C:\Windows\system32\DbgModel.dll
2016-12-31 14:08 - 2016-09-07 05:31 - 01293312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2016-12-31 14:08 - 2016-08-20 07:06 - 00108384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-12-31 14:08 - 2016-08-20 06:22 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-12-31 14:08 - 2016-08-20 06:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL
2016-12-31 14:08 - 2016-08-20 06:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2016-12-31 14:08 - 2016-08-20 06:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\c_GSM7.DLL
2016-12-31 14:08 - 2016-08-20 06:20 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2016-12-31 14:08 - 2016-08-20 06:20 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xinputhid.sys
2016-12-31 14:08 - 2016-08-20 06:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL
2016-12-31 14:08 - 2016-08-20 06:19 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2016-12-31 14:08 - 2016-08-20 06:18 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-12-31 14:08 - 2016-08-20 06:18 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2016-12-31 14:08 - 2016-08-20 06:15 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2016-12-31 14:08 - 2016-08-20 06:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_G18030.DLL
2016-12-31 14:08 - 2016-08-20 06:14 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2016-12-31 14:08 - 2016-08-20 06:14 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_IS2022.DLL
2016-12-31 14:08 - 2016-08-20 06:14 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\c_GSM7.DLL
2016-12-31 14:08 - 2016-08-20 06:08 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll
2016-12-31 14:08 - 2016-08-20 06:06 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-12-31 14:08 - 2016-08-20 06:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi_passthru.dll
2016-12-31 14:08 - 2016-08-20 06:04 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\delegatorprovider.dll
2016-12-31 14:08 - 2016-08-20 06:00 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\DscCoreConfProv.dll
2016-12-31 14:08 - 2016-08-19 02:33 - 00162850 _____ C:\Windows\system32\C_932.NLS
2016-12-31 14:08 - 2016-08-06 05:31 - 00041824 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2016-12-31 14:08 - 2016-08-06 05:29 - 00199008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2016-12-31 14:08 - 2016-08-06 05:26 - 01176664 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-12-31 14:08 - 2016-08-06 05:23 - 00168800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-12-31 14:08 - 2016-08-06 05:18 - 00396168 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2016-12-31 14:08 - 2016-08-06 05:16 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-12-31 14:08 - 2016-08-06 05:15 - 00408600 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2016-12-31 14:08 - 2016-08-06 05:13 - 00044472 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-12-31 14:08 - 2016-08-06 05:08 - 00313560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2016-12-31 14:08 - 2016-08-06 05:03 - 00036168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-12-31 14:08 - 2016-08-06 04:50 - 02755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-12-31 14:08 - 2016-08-06 04:48 - 02755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-12-31 14:08 - 2016-08-06 04:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-12-31 14:08 - 2016-08-06 04:48 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2016-12-31 14:08 - 2016-08-06 04:48 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2016-12-31 14:08 - 2016-08-06 04:48 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2016-12-31 14:08 - 2016-08-06 04:47 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll
2016-12-31 14:08 - 2016-08-06 04:46 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModelOOBE.exe
2016-12-31 14:08 - 2016-08-06 04:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2016-12-31 14:08 - 2016-08-06 04:45 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\container.dll
2016-12-31 14:08 - 2016-08-06 04:45 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll
2016-12-31 14:08 - 2016-08-06 04:45 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2016-12-31 14:08 - 2016-08-06 04:45 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2016-12-31 14:08 - 2016-08-06 04:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2016-12-31 14:08 - 2016-08-06 04:44 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceassociation.dll
2016-12-31 14:08 - 2016-08-06 04:43 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2016-12-31 14:08 - 2016-08-06 04:41 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2016-12-31 14:08 - 2016-08-06 04:41 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2016-12-31 14:08 - 2016-08-06 04:41 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2016-12-31 14:08 - 2016-08-06 04:40 - 00234496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2016-12-31 14:08 - 2016-08-06 04:39 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\wifiprofilessettinghandler.dll
2016-12-31 14:08 - 2016-08-06 04:39 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll
2016-12-31 14:08 - 2016-08-06 04:34 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2016-12-31 14:08 - 2016-08-06 04:29 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2016-12-31 14:08 - 2016-08-06 04:29 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-12-31 14:08 - 2016-08-06 04:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-12-31 14:08 - 2016-08-06 04:23 - 00520192 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2016-12-31 14:08 - 2016-08-06 04:21 - 00102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinelsa.dll
2016-12-31 14:08 - 2016-08-06 04:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2016-12-31 14:08 - 2016-08-05 09:29 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-12-31 14:08 - 2016-08-05 09:29 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.UXRes.dll
2016-12-31 14:08 - 2016-08-05 09:29 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
2016-12-31 14:08 - 2016-08-02 09:21 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2016-12-31 14:08 - 2016-08-02 09:13 - 01081856 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-12-31 14:08 - 2016-08-02 05:37 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2016-12-31 14:08 - 2016-07-22 02:25 - 00389000 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2016-12-29 14:11 - 2016-12-29 14:10 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-12-29 14:00 - 2017-01-14 18:41 - 00000000 ____D C:\Users\Henselmann\AppData\Roaming\Skype
2016-12-29 14:00 - 2016-12-29 14:00 - 00003300 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-29 13:59 - 2017-01-02 20:10 - 00000000 ___SD C:\Users\Henselmann\AppData\LocalLow\Microsoft
2016-12-23 11:04 - 2017-01-11 17:36 - 00003884 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-23 11:04 - 2017-01-06 02:10 - 01855544 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 01454136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-12-23 11:04 - 2016-12-31 18:14 - 00000000 ____D C:\Users\Henselmann\AppData\Local\NVIDIA Corporation
2016-12-23 11:04 - 2016-12-31 15:26 - 00000000 ____D C:\Users\Henselmann\AppData\Local\NVIDIA
2016-12-23 11:04 - 2016-12-23 11:04 - 00000000 ____D C:\Users\Henselmann\AppData\Local\CEF
2016-12-23 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-12-23 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-12-23 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-12-23 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-12-23 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-12-23 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-12-23 11:03 - 2017-01-18 17:49 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-23 11:03 - 2017-01-11 17:36 - 00003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-23 11:03 - 2017-01-11 17:36 - 00003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-23 11:03 - 2017-01-11 17:36 - 00003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-23 11:03 - 2017-01-11 17:36 - 00003696 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-23 11:03 - 2017-01-11 17:36 - 00003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-12-23 11:03 - 2017-01-11 17:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-12-23 11:03 - 2017-01-11 17:36 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-12-23 11:03 - 2017-01-06 00:42 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-12-23 11:03 - 2016-12-31 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-12-23 11:03 - 2016-12-11 19:47 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 00548408 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-12-23 11:03 - 2016-12-09 09:52 - 07639617 _____ C:\Windows\system32\nvcoproc.bin
2016-12-23 11:03 - 2016-12-01 21:02 - 00215608 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-12-23 11:03 - 2016-12-01 21:02 - 00203320 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-12-23 11:02 - 2017-01-06 02:10 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-12-23 11:02 - 2016-12-12 04:03 - 03934504 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-12-23 11:02 - 2016-12-12 04:03 - 03474392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-12-23 11:02 - 2016-12-12 04:03 - 00042286 _____ C:\Windows\system32\nvinfo.pb
2016-12-23 11:02 - 2016-12-02 21:41 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-12-23 11:02 - 2016-12-02 21:41 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-12-23 11:02 - 2016-12-02 21:41 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-12-23 11:02 - 2016-12-01 21:02 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437619.dll
2016-12-23 11:02 - 2016-12-01 21:02 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437619.dll
2016-12-23 11:02 - 2016-12-01 21:02 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-12-23 11:02 - 2016-12-01 21:02 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-12-23 11:00 - 2017-01-11 17:36 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-12-23 11:00 - 2016-12-23 11:00 - 00000000 ____D C:\NVIDIA
2016-12-23 10:59 - 2016-12-23 10:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-12-23 10:55 - 2016-12-23 10:55 - 01351936 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-23 10:55 - 2016-12-23 10:55 - 00030766 _____ C:\csb.log
2016-12-23 10:55 - 2016-12-23 10:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-12-23 10:55 - 2016-12-23 10:55 - 00000000 ____D C:\Users\Henselmann\AppData\Roaming\Intel Corporation
2016-12-23 10:55 - 2016-12-23 10:55 - 00000000 ____D C:\Users\Henselmann\AppData\Local\Comms
2016-12-23 10:55 - 2016-12-23 10:55 - 00000000 ____D C:\Program Files (x86)\ASM104xUSB3
2016-12-23 10:54 - 2016-12-23 10:55 - 00000189 _____ C:\Install.log
2016-12-23 10:54 - 2016-12-23 10:54 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-12-23 10:54 - 2015-10-10 00:27 - 00935168 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2016-12-23 10:54 - 2015-10-10 00:27 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-12-23 10:53 - 2016-12-23 10:53 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-12-23 10:53 - 2016-12-23 10:53 - 00000000 ____D C:\Program Files\Realtek
2016-12-23 10:53 - 2016-01-27 03:04 - 03195648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-12-23 10:53 - 2016-01-27 03:04 - 02894976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-12-23 10:53 - 2016-01-27 03:03 - 72203792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-12-23 10:53 - 2016-01-27 03:03 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 04779776 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-12-23 10:53 - 2016-01-27 03:03 - 03769493 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-12-23 10:53 - 2016-01-27 03:03 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 03080784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 02036992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 01356504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00192992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-12-23 10:53 - 2016-01-27 03:03 - 00023704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-12-23 10:52 - 2017-01-18 17:52 - 02113766 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-23 10:52 - 2016-01-27 03:03 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00708320 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-12-23 10:52 - 2016-01-27 03:03 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-23 10:51 - 2017-01-07 18:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-23 10:51 - 2017-01-04 12:52 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-23 10:51 - 2016-12-23 10:55 - 00000000 ____D C:\Program Files\Intel
2016-12-23 10:51 - 2016-12-23 10:54 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-12-23 10:51 - 2016-12-23 10:54 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-12-23 10:51 - 2016-12-23 10:51 - 00000000 ____D C:\Users\Henselmann\Intel
2016-12-23 10:51 - 2016-12-23 10:51 - 00000000 ____D C:\ProgramData\Intel
2016-12-23 10:51 - 2016-12-23 10:51 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-23 10:51 - 2016-01-27 03:03 - 00118600 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-23 10:51 - 2016-01-06 09:23 - 02826832 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-12-23 10:50 - 2016-12-23 10:54 - 00026192 ____N (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-12-23 10:50 - 2016-12-23 10:54 - 00000010 _____ C:\Windows\GSetup.ini
2016-12-23 10:50 - 2009-08-27 08:04 - 00207400 ____R () C:\Windows\GSetup.exe
2016-12-23 10:49 - 2016-12-29 14:00 - 00002402 _____ C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-23 10:49 - 2016-12-29 14:00 - 00000000 ___RD C:\Users\Henselmann\OneDrive
2016-12-23 10:49 - 2016-12-23 10:49 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-12-23 10:49 - 2016-07-16 12:41 - 02716672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2016-12-23 10:48 - 2017-01-18 19:54 - 00000000 ___RD C:\Users\Henselmann\Desktop
2016-12-23 10:48 - 2017-01-18 19:54 - 00000000 ____D C:\Users\Henselmann\AppData\Local\Temp
2016-12-23 10:48 - 2017-01-18 19:48 - 00000000 ___RD C:\Users\Henselmann\Downloads
2016-12-23 10:48 - 2017-01-18 19:31 - 00000000 ___RD C:\Users\Henselmann\Videos
2016-12-23 10:48 - 2017-01-18 17:46 - 06553600 ____H C:\Users\Henselmann\NTUSER.DAT
2016-12-23 10:48 - 2017-01-18 17:46 - 00524288 ___SH C:\Users\Henselmann\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000002.regtrans-ms
2016-12-23 10:48 - 2017-01-18 17:46 - 00065536 ___SH C:\Users\Henselmann\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TM.blf
2016-12-23 10:48 - 2017-01-18 17:46 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-23 10:48 - 2017-01-18 17:46 - 00000000 ____D C:\Users\Henselmann\AppData\Local
2016-12-23 10:48 - 2017-01-18 17:46 - 00000000 ____D C:\Users\Henselmann
2016-12-23 10:48 - 2017-01-18 09:45 - 00000000 ____D C:\Users\Henselmann\AppData\LocalLow
2016-12-23 10:48 - 2017-01-16 01:32 - 00000000 ___RD C:\Users\Henselmann\Pictures
2016-12-23 10:48 - 2017-01-15 20:51 - 00000000 ___RD C:\Users\Henselmann\Music
2016-12-23 10:48 - 2017-01-15 02:33 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-23 10:48 - 2017-01-15 02:32 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-23 10:48 - 2017-01-15 02:13 - 00000000 ___RD C:\Users\Henselmann\Documents
2016-12-23 10:48 - 2017-01-15 01:02 - 00000000 ____D C:\Users\Henselmann\AppData\Roaming
2016-12-23 10:48 - 2017-01-15 00:54 - 00000000 ____D C:\Users\Henselmann\AppData\Local\Microsoft
2016-12-23 10:48 - 2017-01-14 18:56 - 00000000 ___SD C:\Users\Henselmann\AppData\Roaming\Microsoft
2016-12-23 10:48 - 2017-01-10 19:33 - 00000402 ___SH C:\Users\Henselmann\Documents\desktop.ini
2016-12-23 10:48 - 2017-01-10 19:33 - 00000282 ___SH C:\Users\Henselmann\Downloads\desktop.ini
2016-12-23 10:48 - 2017-01-10 19:33 - 00000282 ___SH C:\Users\Henselmann\Desktop\desktop.ini
2016-12-23 10:48 - 2017-01-10 19:33 - 00000174 ___SH C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-23 10:48 - 2017-01-10 19:33 - 00000174 ___SH C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 ___RD C:\Users\Henselmann\Searches
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 ___RD C:\Users\Henselmann\Saved Games
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 ___RD C:\Users\Henselmann\Links
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 ___RD C:\Users\Henselmann\Favorites
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 ___RD C:\Users\Henselmann\Contacts
2016-12-23 10:48 - 2017-01-10 19:33 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-23 10:48 - 2017-01-08 00:51 - 00000000 ____D C:\Users\Henselmann\AppData\Local\Packages
2016-12-23 10:48 - 2017-01-07 23:52 - 00524288 ___SH C:\Users\Henselmann\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms
2016-12-23 10:48 - 2016-12-23 10:54 - 00000000 ____D C:\Users\Henselmann\AppData\Local\ConnectedDevicesPlatform
2016-12-23 10:48 - 2016-12-23 10:48 - 01310720 ___SH C:\Users\Henselmann\ntuser.dat.LOG1
2016-12-23 10:48 - 2016-12-23 10:48 - 01048576 ___SH C:\Users\Henselmann\ntuser.dat.LOG2
2016-12-23 10:48 - 2016-12-23 10:48 - 00003340 ____H C:\Users\defaultuser0\AppData\Local\IconCache.db
2016-12-23 10:48 - 2016-12-23 10:48 - 00000020 ___SH C:\Users\Henselmann\ntuser.ini
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Vorlagen
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Startmenü
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\SendTo
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Recent
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Netzwerkumgebung
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Lokale Einstellungen
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Eigene Dateien
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Druckumgebung
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Documents\Eigene Videos
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Documents\Eigene Musik
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Documents\Eigene Bilder
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Cookies
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\AppData\Local\Verlauf
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\AppData\Local\Temporary Internet Files
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\AppData\Local\Anwendungsdaten
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 _SHDL C:\Users\Henselmann\Anwendungsdaten
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 ___HD C:\Users\Henselmann\AppData
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 ____D C:\Users\Henselmann\AppData\Roaming\Adobe
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 ____D C:\Users\Henselmann\AppData\Local\VirtualStore
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 ____D C:\Users\Henselmann\AppData\Local\TileDataLayer
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 ____D C:\Users\Henselmann\AppData\Local\Publishers
2016-12-23 10:48 - 2016-12-23 10:48 - 00000000 ____D C:\ProgramData\USOShared
2016-12-23 10:48 - 2016-07-16 12:48 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-12-23 10:48 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-12-23 10:48 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-12-23 10:48 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-23 10:47 - 2017-01-18 19:35 - 00000275 _____ C:\Windows\WindowsUpdate.log
2016-12-23 10:47 - 2017-01-18 17:46 - 05242880 ____H C:\Users\defaultuser0\NTUSER.DAT
2016-12-23 10:47 - 2017-01-18 17:46 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Temp
2016-12-23 10:47 - 2017-01-14 18:58 - 00000000 ____D C:\Users\defaultuser0
2016-12-23 10:47 - 2016-12-29 14:08 - 00000000 ____D C:\Windows\SoftwareDistribution
2016-12-23 10:47 - 2016-12-23 10:48 - 00000000 ____D C:\Users\defaultuser0\AppData\Local
2016-12-23 10:47 - 2016-12-23 10:47 - 00524288 ___SH C:\Users\defaultuser0\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000002.regtrans-ms
2016-12-23 10:47 - 2016-12-23 10:47 - 00524288 ___SH C:\Users\defaultuser0\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms
2016-12-23 10:47 - 2016-12-23 10:47 - 00119808 ___SH C:\Users\defaultuser0\ntuser.dat.LOG1
2016-12-23 10:47 - 2016-12-23 10:47 - 00065536 ___SH C:\Users\defaultuser0\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TM.blf
2016-12-23 10:47 - 2016-12-23 10:47 - 00049152 ___SH C:\Users\defaultuser0\ntuser.dat.LOG2
2016-12-23 10:47 - 2016-12-23 10:47 - 00000020 ___SH C:\Users\defaultuser0\ntuser.ini
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Vorlagen
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Startmenü
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\SendTo
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Recent
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Netzwerkumgebung
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Lokale Einstellungen
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Eigene Dateien
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Druckumgebung
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Videos
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Musik
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Bilder
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Cookies
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Verlauf
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Temporary Internet Files
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Anwendungsdaten
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\defaultuser0\Anwendungsdaten
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\SendTo
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Recent
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Cookies
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Temporary Internet Files
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Temporary Internet Files
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Programme
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\ProgramData\Desktop
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 __SHD C:\Recovery
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ___SD C:\Users\defaultuser0\AppData\Roaming\Microsoft
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ___RD C:\Users\defaultuser0\Documents
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ___HD C:\Users\defaultuser0\AppData
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ____D C:\Users\defaultuser0\AppData\LocalLow
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\VirtualStore
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\TileDataLayer
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Microsoft
2016-12-23 10:47 - 2016-12-23 10:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\ConnectedDevicesPlatform
2016-12-23 10:47 - 2016-07-16 12:48 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Videos
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Pictures
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Music
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Links
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Favorites
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Downloads
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\Desktop
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\Saved Games
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming
2016-12-23 10:46 - 2017-01-18 19:54 - 00000000 ____D C:\Windows\Prefetch
2016-12-23 10:46 - 2017-01-18 19:35 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-12-23 10:46 - 2017-01-18 17:48 - 00067584 ____S C:\Windows\bootstat.dat
2016-12-23 10:46 - 2017-01-18 17:46 - 4026531840 ___SH C:\pagefile.sys
2016-12-23 10:46 - 2017-01-18 17:46 - 3416023040 ___SH C:\hiberfil.sys
2016-12-23 10:46 - 2017-01-18 17:46 - 16777216 ___SH C:\swapfile.sys
2016-12-23 10:46 - 2017-01-18 17:46 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-23 10:46 - 2017-01-15 02:58 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{f8d8b5e2-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms
2016-12-23 10:46 - 2017-01-15 02:58 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{f8d8b5e2-4ba6-11e6-80cd-0026b955b121}.TM.blf
2016-12-23 10:46 - 2017-01-14 19:41 - 00006756 _____ C:\Windows\setupact.log
2016-12-23 10:46 - 2017-01-11 17:00 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{f8d8b5e2-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000002.regtrans-ms
2016-12-23 10:46 - 2017-01-10 19:32 - 00226680 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-23 10:46 - 2016-12-23 10:46 - 00524288 ___SH C:\Windows\system32\config\ELAM{1cc41df8-4b1b-11e6-80cc-e41d2d1026d0}.TMContainer00000000000000000002.regtrans-ms
2016-12-23 10:46 - 2016-12-23 10:46 - 00524288 ___SH C:\Windows\system32\config\ELAM{1cc41df8-4b1b-11e6-80cc-e41d2d1026d0}.TMContainer00000000000000000001.regtrans-ms
2016-12-23 10:46 - 2016-12-23 10:46 - 00524288 ___SH C:\Users\Default\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000002.regtrans-ms
2016-12-23 10:46 - 2016-12-23 10:46 - 00524288 ___SH C:\Users\Default\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms
2016-12-23 10:46 - 2016-12-23 10:46 - 00065536 ___SH C:\Windows\system32\config\ELAM{1cc41df8-4b1b-11e6-80cc-e41d2d1026d0}.TM.blf
2016-12-23 10:46 - 2016-12-23 10:46 - 00065536 ___SH C:\Users\Default\NTUSER.DAT{f8d8b5f1-4ba6-11e6-80cd-0026b955b121}.TM.blf
2016-12-23 10:46 - 2016-12-23 10:46 - 00047425 _____ C:\Windows\SysWOW64\license.rtf
2016-12-23 10:46 - 2016-12-23 10:46 - 00047425 _____ C:\Windows\system32\license.rtf
2016-12-23 10:46 - 2016-12-23 10:46 - 00001344 _____ C:\Windows\lsasetup.log
2016-12-23 10:46 - 2016-12-23 10:46 - 00000000 ___SD C:\Windows\system32\Microsoft
2016-12-23 10:46 - 2016-12-23 10:46 - 00000000 ___HD C:\Program Files\Uninstall Information
2016-12-23 10:46 - 2016-12-23 10:46 - 00000000 ____D C:\Windows\ServiceProfiles
2016-12-23 10:46 - 2016-12-23 10:46 - 00000000 _____ C:\Windows\setuperr.log
2016-12-23 10:45 - 2017-01-17 20:58 - 00000000 __SHD C:\System Volume Information
2016-12-23 10:45 - 2017-01-10 19:32 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{f8d8b5e8-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms
2016-12-23 10:45 - 2017-01-10 19:32 - 00065536 ___SH C:\Windows\system32\config\DRIVERS{f8d8b5e8-4ba6-11e6-80cd-0026b955b121}.TM.blf
2016-12-23 10:45 - 2016-12-23 10:46 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{f8d8b5e8-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000002.regtrans-ms
2016-12-23 10:45 - 2016-12-23 10:46 - 00000000 ____D C:\Windows\Panther
2016-12-20 11:24 - 2016-12-20 11:24 - 00035784 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-01-18 17:52 - 2016-07-16 23:51 - 00842658 _____ C:\Windows\system32\perfh007.dat
2017-01-18 17:52 - 2016-07-16 23:51 - 00188378 _____ C:\Windows\system32\perfc007.dat
2017-01-18 17:46 - 2016-07-16 07:04 - 00262144 _____ C:\Windows\system32\config\BBI
2017-01-18 17:40 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-18 17:40 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-01-17 19:24 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\NDF
2017-01-15 02:55 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-01-14 19:41 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-01-11 19:30 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-11 19:30 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-10 19:32 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-01-10 19:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2017-01-10 19:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\oobe
2017-01-10 19:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2017-01-10 19:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Provisioning
2017-01-10 19:21 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-09 18:26 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\LiveKernelReports
2017-01-04 02:45 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Resources
2017-01-03 19:00 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-01-01 19:08 - 2016-07-16 07:04 - 00032768 _____ C:\Windows\system32\config\ELAM
2017-01-01 02:14 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\MUI
2017-01-01 02:14 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\MUI
2016-12-31 14:16 - 2016-07-16 23:50 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2016-12-31 14:16 - 2016-07-16 12:47 - 00015425 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\F12
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\dsc
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\wbem
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-CS
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\setup
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\migration
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\en-US
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\zh-TW
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\zh-HK
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\zh-CN
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\uk-UA
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\tr-TR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\th-TH
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sv-SE
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sl-SI
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\sk-SK
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\setup
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ru-RU
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ro-RO
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\pt-PT
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\pt-BR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\pl-PL
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\nl-NL
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\nb-NO
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\migwiz
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\migration
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\lv-LV
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\lt-LT
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ko-KR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ja-jp
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\it-IT
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\hu-HU
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\hr-HR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\he-IL
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\fr-FR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\fr-CA
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\fi-FI
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\et-EE
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\es-MX
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\es-ES
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\en-US
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\en-GB
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\el-GR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\da-DK
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\cs-CZ
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\config\TxR
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Boot
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\bg-BG
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\ar-SA
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\appraiser
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\bcastdvr
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppPatch
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Media Player
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Mail
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Media Player
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Mail
2016-12-31 14:16 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-31 14:16 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-12-31 14:16 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\Sysprep
2016-12-31 14:16 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\system32\Dism
2016-12-31 14:16 - 2016-07-16 07:04 - 00000000 ____D C:\Windows\servicing
2016-12-31 14:02 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-12-31 14:02 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\appcompat
2016-12-29 14:07 - 2016-07-16 12:47 - 00000000 __SHD C:\$Recycle.Bin
2016-12-29 14:07 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\CodeIntegrity
2016-12-23 11:03 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Public\Pictures
2016-12-23 11:03 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Help
2016-12-23 10:51 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\drivers
2016-12-23 10:51 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\restore
2016-12-23 10:49 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\spool
2016-12-23 10:49 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-12-23 10:48 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-12-23 10:48 - 2016-07-16 07:04 - 00000000 ___RD C:\Users
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Default\Documents
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\debug
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-23 10:47 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows NT
2016-12-23 10:47 - 2016-07-16 07:04 - 00000000 __RHD C:\Users\Default
2016-12-23 10:46 - 2016-07-16 12:49 - 00001947 _____ C:\Windows\DtcInstall.log
2016-12-23 10:46 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\PrintDialog
2016-12-23 10:46 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\MiracastView
2016-12-23 10:46 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\System32\Tasks\Microsoft
2016-12-23 10:46 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\Recovery
2016-12-23 10:45 - 2016-07-16 12:47 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-01-08 04:12 - 2017-01-14 20:47 - 0007597 _____ () C:\Users\Henselmann\AppData\Local\Resmon.ResmonCfg
2016-12-23 10:54 - 2016-12-23 10:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2017-01-01 14:03 - 2017-01-01 14:03 - 0000016 _____ () C:\ProgramData\mntemp
2016-12-31 18:14 - 2017-01-11 17:36 - 0007609 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-31 18:14 - 2017-01-10 19:32 - 0010108 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Einige Dateien in TEMP:
====================
C:\Users\Henselmann\AppData\Local\Temp\0Kraken0502DevProps.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-01-15 01:52
==================== Ende von FRST.txt ============================
|
|
18.01.2017, 22:39
| #17 |
| | Bestehen reste nach trojaner infektion?Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-01-2017
durchgeführt von Henselmann (18-01-2017 19:54:58)
Gestartet von C:\Users\Henselmann\Desktop
Windows 10 Home Version 1607 (X64) (2016-12-23 09:47:40)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2565043127-2691430490-4239563169-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2565043127-2691430490-4239563169-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2565043127-2691430490-4239563169-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gast (S-1-5-21-2565043127-2691430490-4239563169-501 - Limited - Disabled)
Henselmann (S-1-5-21-2565043127-2691430490-4239563169-1001 - Administrator - Enabled) => C:\Users\Henselmann
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
ACCUSOR Advanced Gaming Keyboard Driver (HKLM-x32\...\{93078AA8-F6A1-4C16-B527-64F08801EAAD}) (Version: 1.0 - SPEEDLINK)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
AirMech (HKLM\...\Steam App 206500) (Version: - Carbon Games)
Akamai NetSession Interface (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\Akamai) (Version: - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\Akamai) (Version: - Akamai Technologies, Inc)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Archeblade (HKLM\...\Steam App 207230) (Version: - CodeBrush Games)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
AURA(GRAPHICS CARD) (HKLM-x32\...\{8318B34B-E1F1-47CD-88C7-718F16C3C782}) (Version: 0.0.2.1 - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{e4e126a8-f29e-4b56-947d-fe8bbdce8b1b}) (Version: 1.2.77.32054 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.77.32054 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Borderlands 2 (HKLM\...\Steam App 49520) (Version: - Gearbox Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Discord (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Discord (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Discord (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Elsword 1.0 (HKLM-x32\...\Elsword_de_is1) (Version: 1.0 - Gameforge4d)
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version: - Turtle Rock Studios)
Ghost in the Shell: Stand Alone Complex - First Assault Online (HKLM\...\Steam App 369200) (Version: - Neople)
GOD EATER 2 Rage Burst (HKLM\...\Steam App 438490) (Version: - BANDAI NAMCO Studio)
GOD EATER RESURRECTION (HKLM\...\Steam App 460870) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Innkeeper (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\Innkeeper) (Version: 0.3.4 - Curse Inc.)
Innkeeper (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\Innkeeper) (Version: 0.3.4 - Curse Inc.)
Innkeeper (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\Innkeeper) (Version: 0.3.4 - Curse Inc.)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Melody's Escape (HKLM\...\Steam App 270210) (Version: - Icetesy SPRL)
METAL GEAR RISING: REVENGEANCE (HKLM\...\Steam App 235460) (Version: - PlatinumGames)
METAL GEAR SOLID V: GROUND ZEROES (HKLM\...\Steam App 311340) (Version: - Kojima Productions)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM\...\Steam App 287700) (Version: - Konami Digital Entertainment)
Microsoft OneDrive (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.2.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.2.49 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.2.49 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.2.1 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.2 - NVIDIA Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{EEA30AEB-8BA7-465B-85D4-098BB99733E7}) (Version: 4.13.9783 - Apache Software Foundation)
osu! (HKLM-x32\...\{6b2acd56-1df1-4565-ac4c-1d74d735e6a8}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Path of Exile (HKLM\...\Steam App 238960) (Version: - Grinding Gear Games)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
S4 League (HKLM-x32\...\S4 League) (Version: - )
Shadowverse (HKLM\...\Steam App 453480) (Version: - Cygames, Inc.)
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.2.49 - NVIDIA Corporation) Hidden
Skullgirls (HKLM\...\Steam App 245170) (Version: - Lab Zero Games)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
SMITE (HKLM\...\Steam App 386360) (Version: - Hi-Rez Studios)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.5 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Storm of Spears (HKLM\...\Steam App 463350) (Version: - Warfare Studios)
TeamSpeak 3 Client (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version: - )
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {2946EB12-204C-42F9-8F9A-99B1F8A9DB0E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {29601261-DDE2-4B85-81C9-D405474A2C15} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-11] (Adobe Systems Incorporated)
Task: {8006BE86-544F-43F0-890E-E9C74B492B0D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {89B62C76-1148-46B0-A84F-47DEAA00A5C4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-06] (NVIDIA Corporation)
Task: {91AB939C-3E9E-4EAE-AD33-B1AB91FF8848} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-15] (Piriform Ltd)
Task: {9C7363DA-99D7-4CF8-A7CF-4135E166AF37} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {9F685957-B1A6-411E-A735-01AC01F2A609} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-06] (NVIDIA Corporation)
Task: {A948B7A3-B7E3-44CE-B3D7-4534F5797BA2} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-06] (NVIDIA Corporation)
Task: {B1FF650B-6F75-428B-ABF5-F3D9CF8D2486} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-06] (NVIDIA Corporation)
Task: {B4F5F7DF-D5D0-4373-BA7C-B0EACEE6ECEB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-06] (NVIDIA Corporation)
Task: {CC904F93-8C84-47FD-8FE6-CAF54D46B2F3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-06] (NVIDIA Corporation)
Task: {DE862DFF-97EF-4942-A44E-555C04C39D5A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {E711467A-D558-4EC7-B69B-6B542CBCF40D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {FD6CD81C-3205-43D7-A31D-D2A12406D28E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-06] (NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-12-31 14:09 - 2016-12-09 11:29 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-25 00:20 - 2016-09-25 00:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-12-31 14:26 - 2016-12-14 12:55 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2016-12-23 11:03 - 2016-12-11 19:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-31 14:09 - 2016-12-09 11:29 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-10-31 20:45 - 2016-10-31 20:45 - 00592384 _____ () C:\Users\Henselmann\AppData\Local\MEGAsync\ShellExtX64.dll
2016-12-29 14:00 - 2016-12-29 14:00 - 01678560 _____ () C:\Users\Henselmann\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2016-12-31 14:08 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-10 19:17 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-10 19:17 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-10 19:17 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-10 19:17 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-10 19:17 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-10 19:17 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-10 19:17 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-31 14:39 - 2016-12-31 14:40 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-31 14:39 - 2016-12-31 14:40 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-31 14:39 - 2016-12-31 14:40 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-31 14:39 - 2016-12-31 14:40 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2016-12-31 14:23 - 2013-10-29 13:43 - 00248832 _____ () C:\Program Files (x86)\Drakonia Configurator\hid.exe
2016-12-31 14:23 - 2012-12-11 11:14 - 00240640 _____ () C:\Program Files (x86)\Drakonia Configurator\trayicon.exe
2016-08-19 09:12 - 2016-08-19 09:12 - 00298448 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2017-01-18 18:14 - 2015-02-12 22:17 - 10512896 ____N () C:\Users\Henselmann\Desktop\HuniePop (Windows 64bit)\HuniePop.exe
2016-12-23 11:04 - 2017-01-06 02:10 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-23 11:04 - 2017-01-06 02:10 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-01-18 17:47 - 2017-01-18 17:47 - 00619840 _____ () C:\Users\Henselmann\AppData\Local\Temp\0Kraken0502DevProps.dll
2016-12-31 17:35 - 2016-05-20 17:04 - 00065536 _____ () C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\Exeio.dll
2016-12-31 17:35 - 2016-06-03 10:53 - 01744896 _____ () C:\Program Files (x86)\ASUS\AURA(GRAPHICS CARD)\Vender.dll
2016-12-29 14:00 - 2016-12-29 14:00 - 01244376 _____ () C:\Users\Henselmann\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
2016-12-31 14:29 - 2016-12-08 16:13 - 00656160 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-12-31 14:29 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-12-31 14:29 - 2016-12-20 03:25 - 02322720 _____ () C:\Program Files (x86)\Steam\video.dll
2016-12-31 14:29 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-12-31 14:29 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-12-31 14:29 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-12-31 14:29 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-12-31 14:29 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-12-31 14:29 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-12-31 14:29 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-12-31 14:29 - 2016-12-20 03:25 - 00838944 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-12-31 14:29 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-01-13 15:27 - 2017-01-04 14:28 - 01958912 _____ () C:\Users\Henselmann\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
2017-01-13 15:27 - 2017-01-13 15:27 - 01082880 _____ () \\?\C:\Users\Henselmann\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
2017-01-13 15:27 - 2017-01-13 15:27 - 03750400 _____ () \\?\C:\Users\Henselmann\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
2017-01-13 15:27 - 2017-01-13 15:27 - 00914432 _____ () \\?\C:\Users\Henselmann\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
2017-01-13 15:27 - 2017-01-13 15:27 - 01127424 _____ () \\?\C:\Users\Henselmann\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
2017-01-13 15:27 - 2017-01-04 14:28 - 02278912 _____ () C:\Users\Henselmann\AppData\Local\Discord\app-0.0.297\libglesv2.dll
2017-01-13 15:27 - 2017-01-04 14:28 - 00096768 _____ () C:\Users\Henselmann\AppData\Local\Discord\app-0.0.297\libegl.dll
2016-12-31 14:29 - 2016-12-05 17:21 - 67304736 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2016-12-31 14:29 - 2016-12-20 03:25 - 00388384 _____ () C:\Program Files (x86)\Steam\steam.dll
2016-12-31 14:29 - 2015-09-25 00:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2017-01-18 17:47 - 2017-01-18 17:47 - 00148992 _____ () \\?\C:\Users\Henselmann\AppData\Local\Temp\77EF.tmp.node
2017-01-13 15:27 - 2017-01-13 15:27 - 02658304 _____ () \\?\C:\Users\Henselmann\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
2017-01-13 15:28 - 2017-01-13 15:28 - 02130432 _____ () \\?\C:\Users\Henselmann\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node
2016-04-13 09:38 - 2016-04-13 09:38 - 00482304 _____ () C:\Users\Henselmann\AppData\Local\MEGAsync\libsodium.dll
2016-12-31 14:23 - 2013-01-15 17:06 - 00061952 _____ () C:\Program Files (x86)\Drakonia Configurator\HidDevice.dll
2016-12-31 14:23 - 2011-11-22 14:18 - 00249856 _____ () C:\Program Files (x86)\Drakonia Configurator\language.dll
2016-12-31 18:20 - 2016-12-10 16:24 - 01587592 _____ () C:\Users\Henselmann\AppData\Local\Innkeeper\app-0.3.4\Electron\bin\InnkeeperUI-win32-ia32\libglesv2.dll
2016-12-31 18:20 - 2016-12-10 16:24 - 00018312 _____ () C:\Users\Henselmann\AppData\Local\Innkeeper\app-0.3.4\Electron\bin\InnkeeperUI-win32-ia32\libegl.dll
2016-12-31 14:24 - 2016-10-12 11:59 - 00036864 _____ () C:\Program Files (x86)\SPEEDLINK\ACCUSOR Advanced Gaming Keyboard\Lang\Lang_EN.dll
2016-12-31 14:24 - 2016-09-30 17:49 - 00061440 _____ () C:\Program Files (x86)\SPEEDLINK\ACCUSOR Advanced Gaming Keyboard\hiddriver.dll
2016-12-01 09:59 - 2016-12-01 09:59 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2017-01-06 14:54 - 2016-10-08 08:13 - 50656768 _____ () C:\Users\Henselmann\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2017-01-06 14:54 - 2016-10-08 08:13 - 01874944 _____ () C:\Users\Henselmann\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2017-01-06 14:54 - 2016-10-08 08:13 - 00075264 _____ () C:\Users\Henselmann\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2016-12-23 11:04 - 2017-01-06 01:09 - 00527416 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-12-23 11:04 - 2017-01-06 01:09 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-12-23 11:04 - 2017-01-06 01:09 - 02807232 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-12-23 11:04 - 2017-01-06 01:09 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-12-23 11:04 - 2017-01-06 01:09 - 00449080 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-12-23 11:04 - 2017-01-06 01:09 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-12-23 11:04 - 2017-01-06 01:09 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-31 18:14 - 2017-01-06 01:09 - 00954816 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
2016-10-31 20:43 - 2016-10-31 20:43 - 00564736 _____ () C:\Users\Henselmann\AppData\Local\MEGAsync\ShellExtX32.dll
2017-01-18 18:14 - 2013-10-03 11:59 - 02099712 ____N () C:\Users\Henselmann\Desktop\HuniePop (Windows 64bit)\HuniePop_Data\Mono\mono.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
Da befinden sich 7924 mehr Seiten.
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\...\123simsen.com -> www.123simsen.com
Da befinden sich 7924 mehr Seiten.
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\...\123simsen.com -> www.123simsen.com
Da befinden sich 7924 mehr Seiten.
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\...\123simsen.com -> www.123simsen.com
Da befinden sich 7924 mehr Seiten.
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\...\123simsen.com -> www.123simsen.com
Da befinden sich 7924 mehr Seiten.
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\...\123simsen.com -> www.123simsen.com
Da befinden sich 7924 mehr Seiten.
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2016-07-16 12:47 - 2016-07-16 12:45 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323545\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181448914\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323562\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181448995\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323578\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2565043127-2691430490-4239563169-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449257\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2565043127-2691430490-4239563169-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181323637\Control Panel\Desktop\\Wallpaper -> C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-2565043127-2691430490-4239563169-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01182017181449446\Control Panel\Desktop\\Wallpaper -> C:\Users\Henselmann\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{0E47B457-4B1D-4F16-BDC5-912AB44760B7}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{7D081491-E712-482D-81EA-ACAF9C0D1C84}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{311812F6-FFA3-4B11-B582-A88CBF08B84E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{28957022-8102-4FC4-B93D-DABB32A318DC}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3068688B-FFF3-43F2-ABB2-7308A5DF785D}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C085FAE0-02BC-4064-9230-E38642D24846}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F720E04A-1999-42F9-93A4-CC7BADD43C66}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{735F8F34-814C-400E-B045-F25D9291FA30}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{84933992-693A-4FD3-8B7A-CCAE63645C77}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{4CCFF972-1BC8-40F1-B076-56BDDE60A32F}C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe] => C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe
FirewallRules: [UDP Query User{38DB372C-5868-4762-A226-58383CA3AB99}C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe] => C:\program files (x86)\battle.net\battle.net.8180\battle.net.exe
FirewallRules: [TCP Query User{E11A29F9-4CAE-4262-80EE-F09C654B12CF}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{7137A934-0488-483E-B554-0650C59A9E4E}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{2237B37D-A6F3-448C-9CB3-71768559F301}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{4611E285-EFA0-45E2-A04D-973ED7400488}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{FABECFE2-ED1C-4AD5-8A5A-C0AA5C8FC0D3}] => C:\Program Files (x86)\Steam\steamapps\common\Metal Gear Solid Ground Zeroes\MgsGroundZeroes.exe
FirewallRules: [{90AECE4F-6400-4E13-8A24-82E399D27D18}] => C:\Program Files (x86)\Steam\steamapps\common\Metal Gear Solid Ground Zeroes\MgsGroundZeroes.exe
FirewallRules: [{08997F7E-BE69-41A8-A3BE-D4702B8D8C33}] => C:\Program Files (x86)\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{3217F0C9-694B-44B3-9F66-19B9511EDD60}] => C:\Program Files (x86)\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{A7BEA246-B5A7-4C9A-9316-4CFE6072F920}] => C:\Program Files (x86)\Steam\steamapps\common\GOD EATER 2 Rage Burst\GE2RB.exe
FirewallRules: [{4AB6EB5F-9CBE-474D-A844-91B6EE0AD80D}] => C:\Program Files (x86)\Steam\steamapps\common\GOD EATER 2 Rage Burst\GE2RB.exe
FirewallRules: [{08454A83-18A3-4233-8756-61090E5A1257}] => C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe
FirewallRules: [{A277378D-5E7C-4428-AA23-E510F8DC2427}] => C:\Program Files (x86)\Steam\steamapps\common\Skullgirls\SkullGirls.exe
FirewallRules: [{E80B4C5C-D8E6-4A59-A712-9203F7673409}] => C:\Program Files (x86)\Steam\steamapps\common\MelodysEscape\MelodysEscape.exe
FirewallRules: [{CBFD1F7C-BBFB-4405-B483-5C4765D42E23}] => C:\Program Files (x86)\Steam\steamapps\common\MelodysEscape\MelodysEscape.exe
FirewallRules: [{3A869815-1212-45D4-9D2D-9AA2F9ABBE5A}] => C:\Program Files (x86)\Steam\steamapps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{AADCC912-B087-45A3-B087-3CD064326216}] => C:\Program Files (x86)\Steam\steamapps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{2B4825F4-408D-4AB6-8B23-33909203FCF4}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7EB63EB5-1CF5-4881-ACA7-5E2D1D066171}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A8CD48B4-21D7-4697-A058-4F79BBF963FB}] => C:\Program Files (x86)\Steam\steamapps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{5C14C959-3ED1-4A30-9A59-42C4DD1B717C}] => C:\Program Files (x86)\Steam\steamapps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [TCP Query User{3630E24F-E6F8-4CB1-9A59-88AB59965CC0}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{74F39530-9606-4973-B494-966E98F7282E}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{EC8031FF-0FBA-4356-A349-3721AB753BEC}] => C:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [{E4409F3B-2A26-4C8F-86C8-38F1EE625014}] => C:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [TCP Query User{561E25DD-1E58-47A4-810B-2A17B5016086}C:\users\henselmann\appdata\local\akamai\netsession_win.exe] => C:\users\henselmann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{7DB71C7A-EC90-40FF-BF06-E801F77F2F02}C:\users\henselmann\appdata\local\akamai\netsession_win.exe] => C:\users\henselmann\appdata\local\akamai\netsession_win.exe
FirewallRules: [{A9BACE0D-6103-400C-98EE-6AA7A1CF5611}] => C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{530CF341-1046-404E-A902-6F308DE0B8C1}] => C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{721D84BD-1079-4FC3-82D2-2608DC83589B}] => C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{27875A94-7829-476F-BC81-CB37A09E0B3E}] => C:\Nexon\Vindictus EU\en-EU\NMService.exe
FirewallRules: [{4F628093-382A-49E0-9E93-A91B0FD7973B}] => C:\Nexon\Vindictus EU\en-EU\NMService.exe
FirewallRules: [{85A4399C-87F0-4834-9594-76143F328980}] => D:\SteamLibrary\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{8BF46A5A-B075-45EA-95BC-8BB637423A2D}] => D:\SteamLibrary\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [TCP Query User{28D9C26A-55B2-46F2-AE19-AEDDFFE4BE06}C:\users\henselmann\appdata\local\akamai\netsession_win.exe] => C:\users\henselmann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{4CFE441A-8908-4057-8242-56CE80B6D9F7}C:\users\henselmann\appdata\local\akamai\netsession_win.exe] => C:\users\henselmann\appdata\local\akamai\netsession_win.exe
FirewallRules: [{C121A03C-2844-43E8-A7A5-2D24C43C644A}] => D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [{4C843A58-92EE-4C2E-8317-EEE255475D23}] => D:\SteamLibrary\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [{A547D236-CAE0-4BA4-8EE7-DD572F75D6EE}] => C:\Users\Henselmann\Downloads\bin\BlackDesert32.exe
FirewallRules: [{EBAC73D0-7BBD-4950-8F9B-C740E180B60D}] => C:\Users\Henselmann\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{10C7C3EC-1AA0-4C17-9D63-CEB53AB85662}] => C:\Users\Henselmann\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{62940371-2902-4D86-A26F-2B29FE71B751}] => C:\Users\Henselmann\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{8D00E89F-64C2-4842-AA26-D95A0B16DA18}] => %ProgramFiles%\Zune\Zune.exe
FirewallRules: [{1407B8BF-F9B2-4609-8368-A576522B4FA9}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{2B776481-A9E4-4BF1-984E-7CF03F83857A}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{62ABD600-A976-4823-8B7F-E65784B7F4C8}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{93A99CF4-4353-4A9A-A415-4975C776E7E5}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{9BE63206-4F48-43E6-9B41-C87703E1DDC4}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{48484955-A33F-4C22-997A-E5103467B372}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{2373A42C-CE1F-4854-B9F0-10C5BA9FB2C7}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{5A335A4D-D463-44B0-9D14-9301378EE5FC}] => %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{095367D4-1A5B-4D82-A785-CCA6EE7AAF82}] => D:\Gameforge\DEU_deu\Elsword\data\x2.exe
FirewallRules: [{7666EA8C-6FBD-497B-A4C1-C2641BF02B7B}] => D:\Gameforge\DEU_deu\Elsword\data\x2.exe
FirewallRules: [{10404BD8-04A3-4D38-A8CE-D9290A94537D}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{A25E264A-7F0F-4DCE-B35E-68841122531E}] => C:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{6CD6C2FD-BEBC-479C-B4C6-5F3E968E5345}] => D:\SteamLibrary\steamapps\common\GOD EATER RESURRECTION\GER.exe
FirewallRules: [{E59D8D82-98C0-4AAC-A2FE-F2FC808DAF1E}] => D:\SteamLibrary\steamapps\common\GOD EATER RESURRECTION\GER.exe
FirewallRules: [TCP Query User{915F5371-B0FD-48D5-B08C-48676C27C85E}D:\gameforge\deu_deu\tera\tera-launcher.exe] => D:\gameforge\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{E4192CCA-2536-4E84-8387-02BBD6B34B4F}D:\gameforge\deu_deu\tera\tera-launcher.exe] => D:\gameforge\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{5673D191-6E89-47E5-A523-B01E56A12EFE}D:\black desert\bin64\blackdesert64.exe] => D:\black desert\bin64\blackdesert64.exe
FirewallRules: [UDP Query User{A12F0534-44D8-4A4E-B97F-BD680E9B1848}D:\black desert\bin64\blackdesert64.exe] => D:\black desert\bin64\blackdesert64.exe
FirewallRules: [TCP Query User{488FF65C-D5B5-4C52-B31F-8F478CC791A3}D:\steamlibrary\steamapps\common\planetside 2\planetside2_x64.exe] => D:\steamlibrary\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [UDP Query User{4C7B9974-3AC5-4C9F-98F0-07C44EFC37F3}D:\steamlibrary\steamapps\common\planetside 2\planetside2_x64.exe] => D:\steamlibrary\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{3F456006-F657-48E0-975E-61F64B5E8865}] => D:\SteamLibrary\steamapps\common\Shadowverse\Shadowverse.exe
FirewallRules: [{226993B5-1267-4771-8EF4-C6B3E646D993}] => D:\SteamLibrary\steamapps\common\Shadowverse\Shadowverse.exe
FirewallRules: [{5CCB0AE5-8B3B-4D03-BB53-6CD6395006F5}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{0FC46330-C5DC-4686-9B8D-ABD276748B6C}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{65FBF860-A52D-4AE3-94D5-28AB63C101D1}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{26A3C780-1A16-4FEF-8363-1102E5E0A0D1}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1487859B-3896-4A73-A4D4-56A58BB2E151}] => D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D3F4C190-771B-4275-85FB-6B13E1A3CD31}] => D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{6969D4B7-4B62-46F8-9119-5653F7156FDE}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{5539CECA-DF1E-4A1E-834D-763043484F5B}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{391F473C-6125-42D8-AB30-60CFB4A99F8A}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{3629EE8D-AE32-42F0-AB92-B75F5FEB1143}] => D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{EA750E24-914F-4194-9F5F-2478FA74E74F}] => D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{04E083C1-5609-4B55-AA74-52F1E77991E4}] => D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{3CD26ACF-12EA-4431-908F-B4B7B9B58BCE}D:\steamlibrary\steamapps\common\smite\binaries\win32\smite.exe] => D:\steamlibrary\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{69BA4474-0A01-4D5C-8F25-9BB0083C0FB1}D:\steamlibrary\steamapps\common\smite\binaries\win32\smite.exe] => D:\steamlibrary\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [{BDAA294F-A5D8-4C9E-A3F2-025136721058}] => D:\SteamLibrary\steamapps\common\AirMech\AirMech.exe
FirewallRules: [{4459E74B-3F02-4411-8AEA-6DAD77F49008}] => D:\SteamLibrary\steamapps\common\AirMech\AirMech.exe
FirewallRules: [{397C14B3-3C45-4BCF-A2B3-C11C8A494EA7}] => D:\SWTOR\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{825EFA01-6B1C-40F0-ABDF-8842711C5E56}] => D:\SWTOR\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{3E21308B-59E3-4114-BCCD-C86EBB10D6F3}] => D:\SWTOR\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{BE34C4EB-ED71-4E2E-ACA7-EF41C57388EB}] => D:\SWTOR\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{D7747FEC-2B93-4428-8261-E7A7846DA098}] => D:\SteamLibrary\steamapps\common\Storm of Spears\Storm of Spears.exe
FirewallRules: [{9CC219F5-1817-4CAE-858C-AE4E95B2044F}] => D:\SteamLibrary\steamapps\common\Storm of Spears\Storm of Spears.exe
FirewallRules: [TCP Query User{DCB81F3C-3596-4BF6-92B1-C270B073DAD9}C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe] => C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe
FirewallRules: [UDP Query User{8C5218B9-42C8-4C44-A374-C7668602744A}C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe] => C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe
FirewallRules: [{FF71E6F7-5EF2-4F98-A6C4-76F6D2B84C4F}] => C:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\nxsteam.exe
FirewallRules: [{AE1E05B6-134B-4222-88E3-AFAE78761E63}] => C:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\nxsteam.exe
FirewallRules: [{162F50A2-BC1A-4557-B7FD-F6CB367C6B7F}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E3A28816-EC62-494E-90FF-858E7ADC3AF5}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E031CA45-554A-4094-8BC9-DB6AB2F7FB62}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{91EADB84-6E92-473E-99C3-244A08422808}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F8CC9070-DCB4-4AAE-A8DF-877B1749960E}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{59F9F9BE-0C78-47E7-BE88-313E7D73D6FC}] => D:\iTunes\iTunes.exe
FirewallRules: [{54FAC5CA-967B-461F-AD89-288D86EE8C1F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EE207509-480E-45D8-B28B-16FF71D3609D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E87A1080-040C-438C-B219-59016CED824A}] => D:\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{25867A8F-B473-406A-8C60-B47FAB8F5B20}] => D:\SteamLibrary\steamapps\common\Path of Exile\PathOfExileSteam.exe
==================== Wiederherstellungspunkte =========================
17-01-2017 20:58:35 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/18/2017 07:51:58 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 07:49:13 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Henselmann\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:15:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:15:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:10:57 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:10:46 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:10:09 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\henselmann\desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:10:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Henselmann\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:10:04 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Henselmann\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Error: (01/18/2017 06:10:04 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Henselmann\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_42191651c6827bb3.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.447_none_89c64d28dafea4b9.manifest.
Systemfehler:
=============
Error: (01/18/2017 06:14:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/18/2017 06:14:22 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\HENSEL~1\AppData\Local\Temp\ehdrv.sys
Error: (01/18/2017 06:14:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/18/2017 06:14:21 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\HENSEL~1\AppData\Local\Temp\ehdrv.sys
Error: (01/18/2017 06:14:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/18/2017 06:14:21 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\HENSEL~1\AppData\Local\Temp\ehdrv.sys
Error: (01/18/2017 06:11:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/18/2017 06:11:37 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\HENSEL~1\AppData\Local\Temp\ehdrv.sys
Error: (01/18/2017 06:11:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/18/2017 06:11:36 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\HENSEL~1\AppData\Local\Temp\ehdrv.sys
CodeIntegrity:
===================================
Date: 2017-01-15 02:20:09.788
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-01-15 01:27:39.432
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-01-15 01:27:33.626
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-01-14 19:40:03.477
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-01-02 17:21:56.445
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2017-01-01 23:08:43.715
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2016-12-31 14:20:02.290
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
Date: 2016-12-31 14:20:02.128
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 57%
Installierter physikalischer RAM: 8144.44 MB
Verfügbarer physikalischer RAM: 3460.08 MB
Summe virtueller Speicher: 11984.44 MB
Verfügbarer virtueller Speicher: 5529.9 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.92 GB) (Free:41.19 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1645.57 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
 wie sieht es denn so bisher aus? und wie kann mann überhaupt aus dem gesammten textgewusel schlau werden  ? LG Glaringsoul |
|
19.01.2017, 20:01
| #18 |
| /// Malwareteam   | Bestehen reste nach trojaner infektion?  Hast du noch irgendwelche Probleme mit deinem Rechner?
__________________ |
|
20.01.2017, 11:32
| #19 |
| | Bestehen reste nach trojaner infektion? Nein an sich nicht mich hat halt nur die Host Blockade von Avira verunsichert ... und die ads sind auch weg Vielen Dank ... Ich nehme an, da keine weiteren Instruktionen kommen sind wir fertig ? ps: was würdest du (ich verwende jetzt einfach mal du ) empfehlen für Sicherheitssoftware? ich verwende aktuell MBAM und Avira kann mann das so laufen lassen oder gibt es bessere? LG Glaringsoul |
|
21.01.2017, 17:51
| #20 |
| /// Malwareteam | Bestehen reste nach trojaner infektion? Super! Unten stehen die Infos dazu  Die Logs von deinem Rechner sehen jetzt für mich sauber aus: Herzlichen Glückwunsch - du bist Clean  Zum Schluss müssen wir noch etwas aufräumen und ich gebe dir ein paar Hinweise mit auf den Weg: Wichtig: Entfernen der verwendeten Tools Die Reihenfolge ist hier entscheidend.
 Malwarebytes Anti-Malware (gratis Version) und  ESET kannst du als Ergänzung zu deiner bestehenden Antivirus-Lösung auf dem Computer belassen und deinen Computer damit regelmäßig scannen. Persönliche Empfehlungen Das wichtigste zu erst:
Schutz vor unerwünschter Software Adware ist zu einer Art permanenten Bedrohung geworden, weil immer mehr Programme versuchen, einem beim Installieren noch was anderes unterzujubeln - und wie schnell hat man da ein Häkchen übersehen? Darum: pass auf, wenn du dir Software aus dem Internet herunterlädst! Viele Portale im Internet wie Chip, Softonic und Sourceforge versuchen häufig, dir Adware oder sonstige Downloader mit unerwünschten Programmen unterzujubeln. Downloade nach Möglichkeit immer direkt von der Herstellerseite oder alternativ von einem sauberen Download-Portal, wie von FilePony.de. Lese dir dazu auch folgenden Artikel durch: CHIP-Installer - was ist das? - Anleitungen Selbst wenn du ein Programm von einer seriösen Quelle heruntergeladen hast, ist das keine Garantie, dass dein Programm nicht doch versucht, unerwünschte Änderungen an deinem Computer vorzunehmen. So versuchen immer mehr Programme, durch modifizierte Installationsroutinen unerwünschte Programme mit auf deinen PC zu schleusen. Das klappt leider auch häufig, weil viele Anwender nicht lesen, was auf dem Bildschirm steht und stattdessen schnell durchklicken. Deshalb: Wenn du ein Programm installierst, wähle immer die benutzerdefinierte Installation und schaue, was du da gerade eigentlich alles mit einem Klick auf "Ok" oder "Weiter" abnickst - entferne entsprechend die Haken bei Dingen, die du nicht möchtest. Wer lesen kann, ist klar im Vorteil! Tipps, um dein System sicherer zu machen Halte immer deine Plug-ins und Software, insbesondere deinen Browser aktuell. Deinstalliere wenn möglich Java und den Adobe Flashplayer von deinem Computer. Neuerdings benötigt man sie fast nie mehr und stellen darum nur mehr eine unnötige Sicherheitslücke auf deinem Computer dar. Wenn du sie doch unbedingt benötigst, halte sie aber unbedingt aktuell. Passwörter Ändere regelmäßig deine Passwörter! Zudem musst du sichere Passwörter benutzen, das bedeutet: mindestens 8 Zeichen, Groß- und Kleinbuchstaben und Sonderzeichen. Ganz wichtig: benutze pro Account ein anderes Passwort! Tipp: Benutze einen Spruch, den du dir leicht merken kannst, als Hilfe für ein Passwort! Zum Beispiel: Der Himmel ist blau und wenn es regnet?-grau ==> DHibuwer?-grau Unterstütze uns und empfiehl uns weiter Du kennst Freunde und Bekannte, die Probleme mit ihrem Computer haben? Schick sie doch zu uns auf das Trojaner Board, wir helfen gerne Wenn du uns mit einer Spende unterstützen möchtest, freuen wir uns sehr und dies kannst du hier tun: http://www.trojaner-board.de/79994-s...ndenkonto.html Herzlichen Dank dafür  Wir machen diese Tätigkeit hier freiwillig, darum freue ich mich besonders über ein kurzes Danke, wenn du mit mir zufrieden warest oder sonst über Verbesserungsvorschläge - das kannst du gerne hier machen Besuche und like unsere Facebook-Seite!   Danke für deine Mitarbeit und alles Gute! Bitte gib mir Bescheid, wenn du das alles gelesen hast und du keine weiteren Fragen mehr hast.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
21.01.2017, 18:30
| #21 |
| | Bestehen reste nach trojaner infektion? Danke für alles! inzwischen ist sie weg aber was ist eig die Host blockade von Avira ? (im internet steht nur virus/trojaner) (und was hat es mit registry blockade auf sich) aber ansonsten danke für die schnelle und kompetente hilfe ... LG Glaringsoul |
|
21.01.2017, 18:31
| #22 |
| /// Malwareteam | Bestehen reste nach trojaner infektion? bekommst du diese Meldung noch immer ?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
21.01.2017, 23:24
| #23 |
| | Bestehen reste nach trojaner infektion? nein nich mehr... habe mich nur gefragt was es damit auf sich hatte ... |
|
22.01.2017, 05:00
| #24 |
| /// Malwareteam | Bestehen reste nach trojaner infektion? naja, irgendein unerwünschtes Programm wollte wohl eine Änderung in der Hosts-Datei vornehmen, das wurde halt verhindert. Dadurch können Websites umgeleitet werden etc. Das ist ja jetzt wohl aber behoben
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
| Themen zu Bestehen reste nach trojaner infektion? |
| aktuelle, andere, anderen, avira, bereits, beseitigen, blockiert, dateien, entferne, entfernen, erwischt, festplatte, geschlossen, gestern, infektion, neustarten, nicht mehr, nichts, platte, quelle, scan, scanne, scannen, troja, trojaner |
Defender zu benutzen. Solltest du noch Windows 7 verwenden, verwende als kostenlose Lösung die 
Microsoft Security Essentials. 
Linear-Darstellung
