| |
| |||||||
Log-Analyse und Auswertung: Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
02.02.2017, 21:47
| #31 |
 |  Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden!Code:
ATTFilter C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-19 (23-29-53).xml --a---- 2582 bytes [21:47 19/06/2016] [21:47 19/06/2016] 17A01980B799F277D285C6C005E98B5F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (00-29-53).xml --a---- 2582 bytes [22:47 19/06/2016] [22:47 19/06/2016] 686FA34A5765255BFB5AD5276571C4E3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (10-02-08).xml --a---- 2582 bytes [08:28 20/06/2016] [08:28 20/06/2016] C8F55F8D1007473BB2BCF9C37ACF292B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (10-29-53).xml --a---- 2582 bytes [08:51 20/06/2016] [08:51 20/06/2016] 95FCDA60E863A353F57BD0C7A1F957B7 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (11-29-53).xml --a---- 2582 bytes [09:51 20/06/2016] [09:51 20/06/2016] CC7AE4AC3E9C66B985F1E3A9D8DF1818 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (12-29-53).xml --a---- 2582 bytes [10:51 20/06/2016] [10:51 20/06/2016] 5601F3505F93BE342C631D4966500723 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (13-29-53).xml --a---- 2582 bytes [11:51 20/06/2016] [11:51 20/06/2016] 866AB29DDEE23D48BA2FD3CDBC03E43E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (14-29-53).xml --a---- 2582 bytes [12:51 20/06/2016] [12:51 20/06/2016] 2C82E9DE452147AF3EFBDBCEEDB16B75 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (15-29-53).xml --a---- 2582 bytes [13:55 20/06/2016] [13:55 20/06/2016] AD2AA54DCFA55999D18208BC451EEDCA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (16-29-53).xml --a---- 2582 bytes [14:51 20/06/2016] [14:51 20/06/2016] 0311111E60C81534E2B85B3E7DCB2F75 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (17-29-57).xml --a---- 2582 bytes [15:55 20/06/2016] [15:55 20/06/2016] A1D06DFC23FCFA62BC775174AB04D42D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (18-29-53).xml --a---- 2582 bytes [16:51 20/06/2016] [16:51 20/06/2016] 502C9E3731CA0A3B908F5F9AB481D24B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (19-29-53).xml --a---- 2582 bytes [17:51 20/06/2016] [17:51 20/06/2016] 0504C7410EC2DC1938997EA60D7B9F48 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (20-29-53).xml --a---- 2582 bytes [18:51 20/06/2016] [18:51 20/06/2016] E8FE5C236ED0EF27452035437128795B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (21-29-53).xml --a---- 2582 bytes [19:51 20/06/2016] [19:51 20/06/2016] CC52D6790E83D67358FDA84625BC6E2F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (22-29-53).xml --a---- 2582 bytes [20:51 20/06/2016] [20:51 20/06/2016] 67C87672B27B2B3BF19E97FDB909F62E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-20 (23-29-53).xml --a---- 2582 bytes [21:51 20/06/2016] [21:51 20/06/2016] E5CDE3396907AC31606031527289495F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (00-29-53).xml --a---- 2582 bytes [22:51 20/06/2016] [22:51 20/06/2016] C3BE5825166CB9058C9F5A1D216B2349 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (11-52-06).xml --a---- 2582 bytes [10:18 21/06/2016] [10:18 21/06/2016] E3C36D0B1CE5F244051664E2BAE2FF4E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (12-29-53).xml --a---- 2582 bytes [10:51 21/06/2016] [10:51 21/06/2016] 1AC8E5BD9726BB29A3737DAC9237F602 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (13-36-29).xml --a---- 2582 bytes [11:59 21/06/2016] [11:59 21/06/2016] 7AFBC5AC0C628813EDD1DB694F4B9032 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (16-33-10).xml --a---- 2582 bytes [14:55 21/06/2016] [14:55 21/06/2016] 615895ACF405253B74484851FD527C8F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (17-29-53).xml --a---- 2582 bytes [15:51 21/06/2016] [15:51 21/06/2016] A90D673F41848E36CFEE3CFA1E14CB2C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (18-29-53).xml --a---- 2582 bytes [16:51 21/06/2016] [16:51 21/06/2016] F4DBECBA634B9E71698A56451E98FFCB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (19-54-39).xml --a---- 2582 bytes [18:16 21/06/2016] [18:16 21/06/2016] CAB6590FE097AD100AA73BD9F14D9DF2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (20-29-53).xml --a---- 2582 bytes [18:51 21/06/2016] [18:51 21/06/2016] 7FB8458B34055E21A5D457FD55132D7B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (21-54-11).xml --a---- 2582 bytes [20:15 21/06/2016] [20:15 21/06/2016] BBCBEE4299A0F75D173B0E9F73DE607C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (22-29-53).xml --a---- 2582 bytes [20:51 21/06/2016] [20:51 21/06/2016] CDD791AB1BEBBCD9DE053398946C357F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-21 (23-29-53).xml --a---- 2582 bytes [21:51 21/06/2016] [21:51 21/06/2016] C7BD1701CEEFDC6182554C5B0420B1FE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (09-17-37).xml --a---- 2582 bytes [07:44 22/06/2016] [07:44 22/06/2016] 0736621C04475491CB63931AAE5929D5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (10-29-53).xml --a---- 2582 bytes [08:51 22/06/2016] [08:51 22/06/2016] 6C7FF83CAF9C23E2755CB07191759853 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (11-29-53).xml --a---- 2582 bytes [09:51 22/06/2016] [09:51 22/06/2016] 444807C4FF07F39ED256D4B25127E9D5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (12-29-53).xml --a---- 2582 bytes [10:51 22/06/2016] [10:51 22/06/2016] D3D9A44C4DF8FEDD71957C037C812D8B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (13-29-53).xml --a---- 2582 bytes [11:51 22/06/2016] [11:51 22/06/2016] 2067A64502C20F4BB795B8B0348FE9F1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (14-29-53).xml --a---- 2582 bytes [12:51 22/06/2016] [12:51 22/06/2016] 71C144E01DF7BC75DCCDEEAC34F431E0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (15-29-53).xml --a---- 2582 bytes [13:51 22/06/2016] [13:51 22/06/2016] F853D7E43E29ED59EEB4EBC86BDB47D9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (16-29-53).xml --a---- 2582 bytes [14:52 22/06/2016] [14:52 22/06/2016] CFBCE0DC793AB246B45CC0436632A7DB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (17-29-53).xml --a---- 2582 bytes [15:51 22/06/2016] [15:51 22/06/2016] F1456071F411FBECA8A3C680CAF5F9D9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (18-29-53).xml --a---- 2582 bytes [16:51 22/06/2016] [16:51 22/06/2016] 76B606679F806A3183304AF1EEC00573 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (19-35-27).xml --a---- 2582 bytes [17:57 22/06/2016] [17:57 22/06/2016] 5E7D3920A27D114F5FBE4C814F4F8836 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (20-29-53).xml --a---- 2582 bytes [18:51 22/06/2016] [18:51 22/06/2016] 008588D6474B4FD489646F216C1D1085 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (21-29-53).xml --a---- 2582 bytes [19:51 22/06/2016] [19:51 22/06/2016] C6FF87C21485C99319487D2C5FAACA7A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (22-29-53).xml --a---- 2582 bytes [20:51 22/06/2016] [20:51 22/06/2016] E3033D90651EBF00284E59596D0A1C9F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-22 (23-29-53).xml --a---- 2582 bytes [21:51 22/06/2016] [21:51 22/06/2016] FD45475D881017F6F856476D58C83A09 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (12-29-53).xml --a---- 2582 bytes [10:56 23/06/2016] [10:56 23/06/2016] 5C7BA02ADEBC38F12F07F64C89F2CD31 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (13-29-53).xml --a---- 2582 bytes [11:52 23/06/2016] [11:52 23/06/2016] C6519205908100FC7C9B11F5CF35313F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (14-29-53).xml --a---- 2582 bytes [12:51 23/06/2016] [12:51 23/06/2016] 820243477A62E79C574B97C9E4AB13EF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (15-29-53).xml --a---- 2582 bytes [13:53 23/06/2016] [13:53 23/06/2016] 1FE7CA032C0FC6DECB6F41B3772E6362 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (16-29-53).xml --a---- 2582 bytes [14:52 23/06/2016] [14:52 23/06/2016] 1895E7E837A54A0F93C2517E4FF23AF2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (17-29-58).xml --a---- 2582 bytes [15:57 23/06/2016] [15:57 23/06/2016] C071F6AB48E1F2FFFA501377452DD3FA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (18-29-53).xml --a---- 2582 bytes [16:51 23/06/2016] [16:51 23/06/2016] 7CB3228A0B6055D61F994A127920992E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (19-29-53).xml --a---- 2582 bytes [18:27 23/06/2016] [18:27 23/06/2016] 086DBFEAC4BEC89F2A9E089273EEEE9D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (20-29-53).xml --a---- 2582 bytes [18:51 23/06/2016] [18:51 23/06/2016] B26F2CC8F6EB04CF1439ABE534D2E172 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (21-29-53).xml --a---- 2582 bytes [19:51 23/06/2016] [19:51 23/06/2016] 3A849EEF194A145DA2275B6B926492FF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (22-29-53).xml --a---- 2582 bytes [20:51 23/06/2016] [20:51 23/06/2016] 70B3B0875961FC5EA1546D9A1ABBCB30 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-23 (23-29-53).xml --a---- 2582 bytes [21:51 23/06/2016] [21:51 23/06/2016] 2D6C0D5017AE8CA00472E8788FF16A20 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (10-37-03).xml --a---- 2582 bytes [09:04 24/06/2016] [09:04 24/06/2016] D77A8B8E6A8D459A8E836B1164595659 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (11-29-53).xml --a---- 2582 bytes [09:52 24/06/2016] [09:52 24/06/2016] 61966EA227D0E8EA1A4D1F25C1AE072F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (12-29-53).xml --a---- 2582 bytes [10:52 24/06/2016] [10:52 24/06/2016] CED3DE0E043AC01C36B116BE0FBF1CC0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (13-29-53).xml --a---- 2582 bytes [11:52 24/06/2016] [11:52 24/06/2016] 1B65EF360636F37E360765DCD05EAEB9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (14-29-53).xml --a---- 2582 bytes [12:52 24/06/2016] [12:52 24/06/2016] 19D2264CA1FF7608182F64A95AF6CEBD C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (15-29-53).xml --a---- 2582 bytes [13:51 24/06/2016] [13:51 24/06/2016] D294682F8EA595DCB112DF642E4D5EAE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (16-29-53).xml --a---- 2582 bytes [14:51 24/06/2016] [14:51 24/06/2016] 65B34D60F23137718B255C2428400308 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (20-28-46).xml --a---- 2582 bytes [18:51 24/06/2016] [18:51 24/06/2016] 6E62C47090717001B8574C3E1B0DF8DC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (21-29-53).xml --a---- 2582 bytes [19:51 24/06/2016] [19:51 24/06/2016] 48F2AC738A062AF4C6EDE9CC0AE7C059 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (22-29-53).xml --a---- 2582 bytes [20:51 24/06/2016] [20:51 24/06/2016] 4F6E1AF653FEFD55CC03502BEB73A0E4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-24 (23-29-53).xml --a---- 2582 bytes [21:51 24/06/2016] [21:51 24/06/2016] E11D34D16C0C976ED2018C35196D25C9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (00-29-53).xml --a---- 2582 bytes [22:52 24/06/2016] [22:52 24/06/2016] 0FFB3EBB53FA4C8F3D7E5D7158C7A56A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (01-29-53).xml --a---- 2582 bytes [23:48 24/06/2016] [23:48 24/06/2016] 47726B1E8BE0DB3561E049E0F3418FA4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (10-56-55).xml --a---- 2582 bytes [09:29 25/06/2016] [09:29 25/06/2016] 448C5AC5096DCA6F892C6BA8BD317ACC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (11-29-53).xml --a---- 2582 bytes [09:46 25/06/2016] [09:46 25/06/2016] AA93DBE82F200313AE1F1E7385502EF7 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (12-29-53).xml --a---- 2582 bytes [10:52 25/06/2016] [10:52 25/06/2016] EE07A680AAC81F4AC5DA48648E44590F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (13-29-53).xml --a---- 2582 bytes [11:53 25/06/2016] [11:53 25/06/2016] 48F0C1A5E48457D78551C0D3E97FD049 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (14-29-53).xml --a---- 2582 bytes [12:52 25/06/2016] [12:52 25/06/2016] 653A795D3E93A9EF2A2EB594D7E99D95 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (15-29-53).xml --a---- 2582 bytes [13:53 25/06/2016] [13:53 25/06/2016] F0F3BC378C9F23121814CAFFB4141E53 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (16-29-53).xml --a---- 2582 bytes [14:52 25/06/2016] [14:52 25/06/2016] C467008D2E90EA7A56903A76243BD6C6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (17-29-53).xml --a---- 2582 bytes [15:52 25/06/2016] [15:52 25/06/2016] 3D16AE17741FEB33E7779005E7E6B372 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (18-29-53).xml --a---- 2582 bytes [16:51 25/06/2016] [16:51 25/06/2016] 1E36B72111450E48FB8C0CC37C27DC1F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (22-28-18).xml --a---- 2582 bytes [20:51 25/06/2016] [20:51 25/06/2016] 469DD7588074777A0F353C1C5AC0D25D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-25 (23-29-53).xml --a---- 2582 bytes [21:52 25/06/2016] [21:52 25/06/2016] B8E3FAC6F493BDD4FDC28015217B79DD C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (10-56-58).xml --a---- 2582 bytes [09:23 26/06/2016] [09:23 26/06/2016] 30DD54B0E0DF26F2A2FD6259CA6DA565 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (11-29-53).xml --a---- 2582 bytes [09:52 26/06/2016] [09:52 26/06/2016] DC8DDA00D5997D9DB54C92BDBE01220F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (12-29-53).xml --a---- 2582 bytes [10:52 26/06/2016] [10:52 26/06/2016] 345A7A986CCE1B98449A5C4F113FF347 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (13-29-53).xml --a---- 2582 bytes [11:52 26/06/2016] [11:52 26/06/2016] 6A834B141A2E34AFDC7A4983A6151194 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (14-29-53).xml --a---- 2582 bytes [12:52 26/06/2016] [12:52 26/06/2016] 3B7DB0AE9C94E7213B9AB54E5619D660 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (15-29-53).xml --a---- 2582 bytes [13:52 26/06/2016] [13:52 26/06/2016] A5B755B4531BD90885785AFAE4C160E3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (16-29-53).xml --a---- 2582 bytes [14:52 26/06/2016] [14:52 26/06/2016] 26B4146C1312DCD613949D2005A38E0B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (17-29-53).xml --a---- 2582 bytes [15:52 26/06/2016] [15:52 26/06/2016] A0F247022D7B48209599A03987AFC9EB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (18-42-49).xml --a---- 2582 bytes [17:05 26/06/2016] [17:05 26/06/2016] BE30CF9192F63C1ADACF01B415D36085 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (19-29-53).xml --a---- 2582 bytes [17:52 26/06/2016] [17:52 26/06/2016] E2A753AE8C67E22ED8BABB7199D247CE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (20-29-53).xml --a---- 2582 bytes [18:52 26/06/2016] [18:52 26/06/2016] BA4C990B30C859B464960A9CD2037194 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (21-29-53).xml --a---- 2582 bytes [19:56 26/06/2016] [19:56 26/06/2016] 000815CDE33282319F0A4B8734150CCA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (22-29-53).xml --a---- 2582 bytes [20:54 26/06/2016] [20:54 26/06/2016] E5DDA3AB5CCB80C6917D817C54CB2788 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-26 (23-29-53).xml --a---- 2582 bytes [21:52 26/06/2016] [21:52 26/06/2016] E3E6C92DF6641AB224F2C17B2F16BFAC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (00-29-53).xml --a---- 2582 bytes [22:52 26/06/2016] [22:52 26/06/2016] E0D2262DD307A6B0EE0B641A588EF4C3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (01-29-53).xml --a---- 2582 bytes [23:51 26/06/2016] [23:51 26/06/2016] 668E9A05AE082FBF2D6B3ED9215E8DC3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (11-12-12).xml --a---- 2582 bytes [09:45 27/06/2016] [09:45 27/06/2016] A40469AC50637185E36285FD486D2A9A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (12-29-53).xml --a---- 2582 bytes [10:52 27/06/2016] [10:52 27/06/2016] 638F084DE5BC9B1A50931FBA2DB2C2CB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (13-29-53).xml --a---- 2582 bytes [11:52 27/06/2016] [11:52 27/06/2016] FCE2F12FCB239B94D675B60A9C5E7E89 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (14-29-53).xml --a---- 2582 bytes [12:52 27/06/2016] [12:52 27/06/2016] 89668EF39E8A995A54324E5DB1127F6B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (15-29-53).xml --a---- 2582 bytes [13:52 27/06/2016] [13:52 27/06/2016] 9D05E94AD36FC9B5F9E001107791423D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (16-29-53).xml --a---- 2582 bytes [14:52 27/06/2016] [14:52 27/06/2016] E1AB92249D5DB99150D5078EFBB570E9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (17-29-53).xml --a---- 2582 bytes [15:52 27/06/2016] [15:52 27/06/2016] 1540BF97DA53C5C5CA84D78D717307B3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (18-29-53).xml --a---- 2582 bytes [16:52 27/06/2016] [16:52 27/06/2016] 3C6417E09DA7C867716C35257C0F646F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (19-29-53).xml --a---- 2582 bytes [17:52 27/06/2016] [17:52 27/06/2016] 0CDEEDDBA5D3733F0507E007E38F9087 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (20-29-53).xml --a---- 2582 bytes [18:52 27/06/2016] [18:52 27/06/2016] 609555C0487F30D1DAB13C720EBC1325 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (21-29-53).xml --a---- 2582 bytes [19:52 27/06/2016] [19:52 27/06/2016] 73E78CE5B4D3234C6307746E9618E44E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (22-29-53).xml --a---- 2582 bytes [20:52 27/06/2016] [20:52 27/06/2016] D029D85A14E9333C60278FB9265558F2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-27 (23-29-53).xml --a---- 2582 bytes [21:53 27/06/2016] [21:53 27/06/2016] F14213D52C3E9C0D20AC0AC759F7FE30 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (00-29-53).xml --a---- 2582 bytes [22:52 27/06/2016] [22:52 27/06/2016] 7CAC3703AED0D33E8D6FEC7B0F747EDB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (11-17-38).xml --a---- 2582 bytes [09:45 28/06/2016] [09:45 28/06/2016] 722816BA2EDC1A68D88C0FF52FD92263 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (12-29-53).xml --a---- 2582 bytes [10:52 28/06/2016] [10:52 28/06/2016] 3BBE01A6CB6077D77B40DE9E4EBF8B06 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (13-29-53).xml --a---- 2582 bytes [11:52 28/06/2016] [11:52 28/06/2016] A46327B0BA4E616B65F1058D56629AF0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (14-29-53).xml --a---- 2582 bytes [12:54 28/06/2016] [12:54 28/06/2016] 24E8ED0FD66A46DBA6FD5749FE15EAEF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (15-29-53).xml --a---- 2582 bytes [13:52 28/06/2016] [13:52 28/06/2016] FC78670DE89B34043B9A5D74DA41AE11 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (16-29-53).xml --a---- 2582 bytes [14:52 28/06/2016] [14:52 28/06/2016] 18E7C8361060C94193E8DDF714E58F84 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (17-29-53).xml --a---- 2582 bytes [15:52 28/06/2016] [15:52 28/06/2016] E718E6C40B116C49FAA257A4A1139B27 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (18-29-53).xml --a---- 2582 bytes [16:52 28/06/2016] [16:52 28/06/2016] 871C709A784252DE050AD14812523D5E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (19-29-53).xml --a---- 2582 bytes [18:14 28/06/2016] [18:14 28/06/2016] 5DBE6EEB638B09072F501F75609B59E4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (20-29-53).xml --a---- 2582 bytes [18:54 28/06/2016] [18:54 28/06/2016] 5E77698A602B59DF0B3AB13C16B4D6D3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (21-29-53).xml --a---- 2582 bytes [19:52 28/06/2016] [19:52 28/06/2016] 5B3EEC69D350ED6D505B30BE94B21A6A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (22-29-53).xml --a---- 2582 bytes [20:52 28/06/2016] [20:52 28/06/2016] B9B6115FDBDC877A74B55C37AEB4BAF1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-28 (23-29-53).xml --a---- 2582 bytes [21:52 28/06/2016] [21:52 28/06/2016] D94F6592A0F6E4D74320948931AE0CA8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (10-10-36).xml --a---- 2582 bytes [08:37 29/06/2016] [08:37 29/06/2016] D6BECE9AD08FD854F748584F881E6A41 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (11-29-53).xml --a---- 2582 bytes [09:52 29/06/2016] [09:52 29/06/2016] 91CDF85A7A22176C223FDD466492CC30 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (12-29-53).xml --a---- 2582 bytes [10:52 29/06/2016] [10:52 29/06/2016] 1BA3EA594E7C51D52E5A22F4B24671C7 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (13-29-53).xml --a---- 2582 bytes [11:52 29/06/2016] [11:52 29/06/2016] 42F00FF98330780CFF4C883786B2AD30 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (14-29-53).xml --a---- 2582 bytes [12:52 29/06/2016] [12:52 29/06/2016] 024123DD0967EE37B670C0DF65AB51E6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (15-29-53).xml --a---- 2582 bytes [13:56 29/06/2016] [13:56 29/06/2016] AE3B04EC315ECE8CCB84B631D5D598E9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (16-29-53).xml --a---- 2582 bytes [14:52 29/06/2016] [14:52 29/06/2016] F2E80C8A2794F92F309322E4FE3EFBB3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (17-29-53).xml --a---- 2582 bytes [15:52 29/06/2016] [15:52 29/06/2016] 1555AA74231F703BBACF663EF4972B98 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (18-29-53).xml --a---- 2582 bytes [16:52 29/06/2016] [16:52 29/06/2016] B5A4039B883BC22FC86D5BC6AE31612B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (21-40-23).xml --a---- 2582 bytes [20:03 29/06/2016] [20:03 29/06/2016] ACB3BC7ED964BCB88185AA1C9EC50B91 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (22-29-53).xml --a---- 2582 bytes [20:52 29/06/2016] [20:52 29/06/2016] 6A41E1A5DEE721FAF8BABFA4B5E1DA6B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-29 (23-29-53).xml --a---- 2582 bytes [21:52 29/06/2016] [21:52 29/06/2016] 3AEEB8FFA70FA03A0035EE89CD4AA9DA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (00-29-53).xml --a---- 2582 bytes [22:52 29/06/2016] [22:52 29/06/2016] 461A47B8050A825B208CF21FCAE923DD C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (10-29-53).xml --a---- 2582 bytes [08:57 30/06/2016] [08:57 30/06/2016] 23B563750CC297D0AB3625DF674186A8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (11-29-53).xml --a---- 2582 bytes [09:52 30/06/2016] [09:52 30/06/2016] 8F707EAD7D87E1169FCD01B28B1F172E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (12-29-53).xml --a---- 2582 bytes [10:52 30/06/2016] [10:52 30/06/2016] C61C5E5A6C652C2DFDBD4ADA9403ECB6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (13-29-53).xml --a---- 2582 bytes [11:53 30/06/2016] [11:53 30/06/2016] 26EEE28939357C4A3B197D9C311282BA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (14-29-53).xml --a---- 2582 bytes [12:52 30/06/2016] [12:52 30/06/2016] D33577C67B23659CA3AECAA18EB4B4BB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (15-29-53).xml --a---- 2582 bytes [13:52 30/06/2016] [13:52 30/06/2016] AB54FCE613386F96A57E001A68A482C8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (16-31-39).xml --a---- 2582 bytes [14:54 30/06/2016] [14:54 30/06/2016] 1CF22824B6B6818F288CCB0CDB5BD385 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (17-29-53).xml --a---- 2582 bytes [15:52 30/06/2016] [15:52 30/06/2016] 542719B545A52E6FA0DE37A9BCA7FF46 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (18-29-53).xml --a---- 2582 bytes [16:52 30/06/2016] [16:52 30/06/2016] DF76A588389BD73E58FEE40F76812EB8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (19-29-53).xml --a---- 2582 bytes [17:52 30/06/2016] [17:52 30/06/2016] 6ADDD082B7AB7708B8E6C729F56BC5BF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (20-29-53).xml --a---- 2582 bytes [18:52 30/06/2016] [18:52 30/06/2016] BE3AAE9F0D6895359E9A5A13FF97B96C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (21-29-53).xml --a---- 2582 bytes [19:52 30/06/2016] [19:52 30/06/2016] 2996D79F045004FFA57F691A4EDDD5D0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (22-29-53).xml --a---- 2582 bytes [20:52 30/06/2016] [20:52 30/06/2016] 8D589DD90C0FD2C9681BB6DA4265CB4F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-06-30 (23-29-53).xml --a---- 2582 bytes [21:53 30/06/2016] [21:53 30/06/2016] 9DEE2A4F37E85A7365920E08F7D3AE23 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (12-45-39).xml --a---- 2582 bytes [11:13 01/07/2016] [11:13 01/07/2016] B2D419FBE47ED2F042A9207D9A28CAEB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (13-29-53).xml --a---- 2582 bytes [11:52 01/07/2016] [11:52 01/07/2016] 3670382983AB5CA4FC19EDE33B8D6EB6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (14-29-53).xml --a---- 2582 bytes [12:52 01/07/2016] [12:52 01/07/2016] D27FE759249D4B61372A09CC41FC38C1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (15-29-53).xml --a---- 2582 bytes [13:52 01/07/2016] [13:52 01/07/2016] 638D59688F828207D152D7288AD95C16 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (17-27-43).xml --a---- 2582 bytes [15:51 01/07/2016] [15:51 01/07/2016] AD26AB60BED97ED4BB2835F7759EDCA4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (20-25-43).xml --a---- 2582 bytes [18:49 01/07/2016] [18:49 01/07/2016] CB5676B1E07B9E41668ADD3BE852347B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (21-29-53).xml --a---- 2582 bytes [19:53 01/07/2016] [19:53 01/07/2016] 708B5D9C9B19C0498340FC3508E6CA65 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (22-29-53).xml --a---- 2582 bytes [20:52 01/07/2016] [20:52 01/07/2016] 0856053853F22EF762B5CB3E8B25153C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-01 (23-29-53).xml --a---- 2582 bytes [21:52 01/07/2016] [21:52 01/07/2016] 7C81657A14D187E22B9CD5F34E9828BC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (10-02-52).xml --a---- 2582 bytes [08:30 02/07/2016] [08:30 02/07/2016] 5EB0F83EC02507522AEC3BF73B9AEFBC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (11-29-53).xml --a---- 2582 bytes [09:52 02/07/2016] [09:52 02/07/2016] E84D65317290CE36B1D52DAB5201074F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (12-29-53).xml --a---- 2582 bytes [10:52 02/07/2016] [10:52 02/07/2016] 0C5C1D9BC09A2C8F5B52E4081647515B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (13-29-53).xml --a---- 2582 bytes [11:58 02/07/2016] [11:58 02/07/2016] DD0DEB3C913756589ED3AA2868CD17BE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (16-53-58).xml --a---- 2582 bytes [15:16 02/07/2016] [15:16 02/07/2016] 0AA2AE8D17C542EC42F074769B5544D4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (19-44-14).xml --a---- 2582 bytes [18:02 02/07/2016] [18:02 02/07/2016] BF96609F43A6E39F19892F33B85D4029 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (20-29-53).xml --a---- 2582 bytes [18:52 02/07/2016] [18:52 02/07/2016] 8C00AB231C7AECC35D863EF788C58333 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (21-29-53).xml --a---- 2582 bytes [19:52 02/07/2016] [19:52 02/07/2016] A12C1F5AB36F0FFB222608B6017AA82E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (22-29-53).xml --a---- 2582 bytes [20:52 02/07/2016] [20:52 02/07/2016] 0399923B21E618C61D40BBD2F8FB6760 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-02 (23-29-53).xml --a---- 2582 bytes [21:52 02/07/2016] [21:52 02/07/2016] 7A0595690F458D599BEF779593740F7A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (11-29-53).xml --a---- 2582 bytes [09:58 03/07/2016] [09:58 03/07/2016] 54700CABC3986A8EF1877957D89570BA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (12-29-53).xml --a---- 2582 bytes [10:52 03/07/2016] [10:52 03/07/2016] 71529D33ED1282444B0C255452F5B883 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (13-29-53).xml --a---- 2582 bytes [11:52 03/07/2016] [11:52 03/07/2016] A1FE9688875A8C89997A2A9397E8E1E4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (16-44-16).xml --a---- 2582 bytes [15:06 03/07/2016] [15:06 03/07/2016] D18FE4C6362FA3453FA25FC9400F419A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (17-29-53).xml --a---- 2582 bytes [15:52 03/07/2016] [15:52 03/07/2016] 23D11AB4510C5CE9BCE5C626502C015E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (18-29-53).xml --a---- 2582 bytes [16:56 03/07/2016] [16:56 03/07/2016] 5905A01C754B250490A433695FD03BD6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (19-29-53).xml --a---- 2582 bytes [17:52 03/07/2016] [17:52 03/07/2016] DF7E0DAE38232E362A5C7BD4C6C90EC8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (20-29-53).xml --a---- 2582 bytes [18:52 03/07/2016] [18:52 03/07/2016] 2DCE8835D0FE406184F5A88DBF89EE65 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (21-29-53).xml --a---- 2582 bytes [19:52 03/07/2016] [19:52 03/07/2016] 0D961D4DC95D00D8E817B94EECB52AC1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (22-29-53).xml --a---- 2582 bytes [20:52 03/07/2016] [20:52 03/07/2016] F134E494C91829BF13F26A45DE692A6D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-03 (23-29-53).xml --a---- 2582 bytes [21:52 03/07/2016] [21:52 03/07/2016] 7612C21D9484AF1066E6F6A0C722DA48 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (11-29-53).xml --a---- 2582 bytes [09:57 04/07/2016] [09:57 04/07/2016] 0A367B2450354CEA2BC83D1AD37FF929 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (12-29-53).xml --a---- 2582 bytes [10:52 04/07/2016] [10:52 04/07/2016] 75D5B0CAC91D95B0F1DBCFAAFDB5A238 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (13-29-53).xml --a---- 2582 bytes [11:52 04/07/2016] [11:52 04/07/2016] 4470F1BAB26537D3BB2775B4AF53BC76 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (14-35-48).xml --a---- 2582 bytes [12:58 04/07/2016] [12:58 04/07/2016] 63866C2941F4D2D2909AAC049F7D7988 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (15-29-53).xml --a---- 2582 bytes [13:52 04/07/2016] [13:52 04/07/2016] BE9DBB9B9AA1E0FDD7914FEE4B434A60 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (16-29-53).xml --a---- 2582 bytes [14:52 04/07/2016] [14:52 04/07/2016] B5AAEF726084841DA59C264A783965C4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (18-41-22).xml --a---- 2582 bytes [17:04 04/07/2016] [17:04 04/07/2016] 7575835E00B9D25446EE852340ADE0F3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (19-38-03).xml --a---- 2582 bytes [18:00 04/07/2016] [18:00 04/07/2016] 932839DB3365715D4AF65FC50680B956 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (20-29-53).xml --a---- 2582 bytes [18:49 04/07/2016] [18:49 04/07/2016] BA79F96B8CF84249996CEE4DE5ECD32B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (21-29-53).xml --a---- 2582 bytes [19:52 04/07/2016] [19:52 04/07/2016] DD0F54BE9BD467D4326C168D35BF4DDC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (22-29-53).xml --a---- 2582 bytes [20:52 04/07/2016] [20:52 04/07/2016] 7D8A4C3B6871883F64B7FB24202B2B4D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-04 (23-29-53).xml --a---- 2582 bytes [21:52 04/07/2016] [21:52 04/07/2016] B417F7C25B6A1382CFD4E59D4B420165 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (09-39-39).xml --a---- 2582 bytes [08:06 05/07/2016] [08:06 05/07/2016] E375235DE41DC7B177F54911FC512E44 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (10-29-53).xml --a---- 2582 bytes [08:52 05/07/2016] [08:52 05/07/2016] 88CAF1238F7952A95C4383A68D9CF21C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (11-29-53).xml --a---- 2582 bytes [09:52 05/07/2016] [09:52 05/07/2016] BBD2FAC60FCD0A9503FCC59DF697BBE9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (12-29-53).xml --a---- 2582 bytes [10:52 05/07/2016] [10:52 05/07/2016] 6F5DAE0BF1332BD09A5786275243B667 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (13-29-53).xml --a---- 2582 bytes [11:52 05/07/2016] [11:52 05/07/2016] 3D8E1B53A28316EDC96D78563BC38C25 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (14-29-53).xml --a---- 2582 bytes [12:51 05/07/2016] [12:51 05/07/2016] D6713A03C743BF891873875126F5A0B3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (15-29-53).xml --a---- 2582 bytes [13:53 05/07/2016] [13:53 05/07/2016] 44EE10FCC1EBE598718FB4C78EC9837B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (16-29-53).xml --a---- 2582 bytes [14:52 05/07/2016] [14:52 05/07/2016] 3B19BA69F413DB4945F7641FF83EED62 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (18-29-53).xml --a---- 2582 bytes [16:57 05/07/2016] [16:57 05/07/2016] 9B9F1766D6FC756E5AD09B31961C2FF2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (19-29-53).xml --a---- 2582 bytes [17:54 05/07/2016] [17:54 05/07/2016] DB6CE16E2520AD8022216A50B07862DE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (20-35-07).xml --a---- 2582 bytes [18:58 05/07/2016] [18:58 05/07/2016] 0343EC2569AEF6513D97A3616785CDBB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (21-29-53).xml --a---- 2582 bytes [19:52 05/07/2016] [19:52 05/07/2016] E989374174C3DB8F3718BCB466516888 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (22-29-53).xml --a---- 2582 bytes [20:52 05/07/2016] [20:52 05/07/2016] 660A225A3D3CE672B984EEFBA719726C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-05 (23-29-53).xml --a---- 2582 bytes [21:52 05/07/2016] [21:52 05/07/2016] 1D75D7DE58182795BCFD85C814C2BDAC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (00-29-53).xml --a---- 2582 bytes [22:52 05/07/2016] [22:52 05/07/2016] 2A1BD6E27827771A2D4A8109063F6673 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (01-29-53).xml --a---- 2582 bytes [23:52 05/07/2016] [23:52 05/07/2016] C4FCA99E9A2D76CCA241328A2B10FF6B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (10-29-53).xml --a---- 2582 bytes [08:59 06/07/2016] [08:59 06/07/2016] B6E095CE69F212C8F56B37ECBFCAC718 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (11-29-53).xml --a---- 2582 bytes [09:52 06/07/2016] [09:52 06/07/2016] D594C4AD4D4611198269464857AEBECE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (12-29-53).xml --a---- 2582 bytes [10:52 06/07/2016] [10:52 06/07/2016] EEED240F2A6422CE8EA15FDE5CA4FF3B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (13-29-53).xml --a---- 2582 bytes [11:52 06/07/2016] [11:52 06/07/2016] 28C8ED0855E9CECD7C8438C01CD65C7E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (14-29-53).xml --a---- 2582 bytes [12:52 06/07/2016] [12:52 06/07/2016] FD58D0C80A20C58AEEC59F4045FFCD7B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (15-29-53).xml --a---- 2582 bytes [13:53 06/07/2016] [13:53 06/07/2016] 077C1EEEA1E9A54CD85EB91549B270FD C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (16-29-53).xml --a---- 2582 bytes [14:54 06/07/2016] [14:54 06/07/2016] E0308EDD7355E0FBCCA7767292B35A86 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (17-29-53).xml --a---- 2582 bytes [15:51 06/07/2016] [15:51 06/07/2016] BE1691E77C0C2DF4DC1DE31567997085 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (18-29-53).xml --a---- 2582 bytes [16:52 06/07/2016] [16:52 06/07/2016] A4F79E1015D24A2C2335D473D070925E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (19-31-35).xml --a---- 2582 bytes [17:53 06/07/2016] [17:53 06/07/2016] A510EC46E9D0F14BF7AD18AD8A747BA1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (20-29-53).xml --a---- 2582 bytes [18:56 06/07/2016] [18:56 06/07/2016] 8F37C121ADF0511AEE1FC4E5D3BB6993 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (21-29-53).xml --a---- 2582 bytes [19:52 06/07/2016] [19:52 06/07/2016] F69F972620BC9D7FF8184FA11B4C721A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (22-29-53).xml --a---- 2582 bytes [20:52 06/07/2016] [20:52 06/07/2016] 80903B3105EE4300279B00DE1C428252 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-06 (23-29-53).xml --a---- 2582 bytes [21:52 06/07/2016] [21:52 06/07/2016] 6B49226472F36072168624D1B457738E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (00-29-53).xml --a---- 2582 bytes [22:52 06/07/2016] [22:52 06/07/2016] F64F837DEFCD8DA4FE29C98CF864D02C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (11-55-41).xml --a---- 2582 bytes [10:23 07/07/2016] [10:23 07/07/2016] 2A17F91DE634D965E2EA6BA495C5F98A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (12-29-53).xml --a---- 2582 bytes [10:52 07/07/2016] [10:52 07/07/2016] 848ED911CC4A4E2D3775C944ECFC11E8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (13-29-53).xml --a---- 2582 bytes [11:50 07/07/2016] [11:50 07/07/2016] 7FC2269511463A3545F8C8E027920520 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (14-44-08).xml --a---- 2582 bytes [13:07 07/07/2016] [13:07 07/07/2016] A0B0A30BCF5A12A0A1C7D7D44DA8F5CB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (16-29-53).xml --a---- 2580 bytes [14:44 07/07/2016] [14:44 07/07/2016] 195AF3C066B603286C657734C665A89D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (20-28-13).xml --a---- 2580 bytes [18:43 07/07/2016] [18:43 07/07/2016] 4D2D4B2CC295ABBC484C14F686E49AA6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (21-29-53).xml --a---- 2580 bytes [19:44 07/07/2016] [19:44 07/07/2016] 748FDD20291E966B70AC5CBFB8537BDF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (22-29-53).xml --a---- 2580 bytes [20:45 07/07/2016] [20:45 07/07/2016] E712DA0819C66676C24274F310EA9E9C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-07 (23-29-53).xml --a---- 2582 bytes [21:46 07/07/2016] [21:46 07/07/2016] 4899BE7A9963B77ADE1229AC75B2E588 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (12-05-56).xml --a---- 2582 bytes [10:27 08/07/2016] [10:27 08/07/2016] A7898F9686C74C17F372DA761DA271C1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (12-29-53).xml --a---- 2582 bytes [10:48 08/07/2016] [10:48 08/07/2016] A6C0EB4B252AE4D067F6E0400CF6360B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (13-29-53).xml --a---- 2582 bytes [11:48 08/07/2016] [11:48 08/07/2016] CA3E63F0801F4F8A994C7CF67032FFCD C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (14-29-53).xml --a---- 2582 bytes [12:49 08/07/2016] [12:49 08/07/2016] 693073120AB3B3E1465E7DA29015B983 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (15-29-53).xml --a---- 2582 bytes [13:50 08/07/2016] [13:50 08/07/2016] 87767E2C712DFBFC423FEEF38321E05F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (16-29-53).xml --a---- 2582 bytes [14:50 08/07/2016] [14:50 08/07/2016] F5E9AE208E9186EDEEC5CB3F2EA81946 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (17-29-53).xml --a---- 2582 bytes [15:51 08/07/2016] [15:51 08/07/2016] 38723B2A3BE01EB0FB3DE781213C5945 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (18-29-53).xml --a---- 2582 bytes [16:54 08/07/2016] [16:54 08/07/2016] A6D77046584CE5733CBEE5D3A5C1F1BF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (22-56-46).xml --a---- 2582 bytes [21:17 08/07/2016] [21:17 08/07/2016] 304BC37C921C0369A055A8525D306881 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-08 (23-29-53).xml --a---- 2582 bytes [21:47 08/07/2016] [21:47 08/07/2016] 65AC83AC0864813E6F8E88898C406D94 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-09 (00-29-53).xml --a---- 2582 bytes [22:47 08/07/2016] [22:47 08/07/2016] 075FD74F599FB19800E37DE8A8D70BA9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-09 (11-15-45).xml --a---- 2582 bytes [09:35 09/07/2016] [09:35 09/07/2016] 108D51F2A8D24428B3752545FE057EAF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-09 (12-29-53).xml --a---- 2582 bytes [11:35 09/07/2016] [11:35 09/07/2016] BB248D07751AC5D7A783528D8A2E0678 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-09 (14-29-53).xml --a---- 2582 bytes [12:47 09/07/2016] [12:47 09/07/2016] 65DB7696757455B8B2ACCC6343F1A308 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (00-52-05).xml --a---- 2582 bytes [23:10 09/07/2016] [23:10 09/07/2016] 600EBB77F94463784521252FEE2FD126 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (01-29-53).xml --a---- 2582 bytes [23:47 09/07/2016] [23:47 09/07/2016] 799462C13D0B7DBD0663604AF1E60A20 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (11-32-11).xml --a---- 2582 bytes [09:54 10/07/2016] [09:54 10/07/2016] 924752F5C4734A4B7A40DF9BD3B1A52D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (12-29-53).xml --a---- 2582 bytes [10:47 10/07/2016] [10:47 10/07/2016] D4B5599FEBE1A8A4D93F204600A81588 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (13-29-53).xml --a---- 2582 bytes [11:47 10/07/2016] [11:47 10/07/2016] 54B7803C704E1984C18F3AC3BC414C12 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (14-30-27).xml --a---- 2582 bytes [12:47 10/07/2016] [12:47 10/07/2016] 078AEE0FD7C36648035D4854D277165B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (15-29-53).xml --a---- 2582 bytes [13:47 10/07/2016] [13:47 10/07/2016] D9932B12D22BAE5B07723E0689A2BF5E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (16-29-53).xml --a---- 2582 bytes [14:48 10/07/2016] [14:48 10/07/2016] F8EEB540D341A5E2F5FDB8597CFD2BEF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (17-29-53).xml --a---- 2582 bytes [15:47 10/07/2016] [15:47 10/07/2016] D45B651E300B7F52C3D8894095D35AA0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (18-29-53).xml --a---- 2582 bytes [16:46 10/07/2016] [16:46 10/07/2016] A5BD0D9C3DAD4F251B90373FE756D299 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (19-29-53).xml --a---- 2582 bytes [17:47 10/07/2016] [17:47 10/07/2016] F206483E0D04CF83E9E5D283E8092940 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (20-29-53).xml --a---- 2582 bytes [18:48 10/07/2016] [18:48 10/07/2016] 811C592AFCB8D28236D764400424FD60 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (21-29-53).xml --a---- 2582 bytes [19:47 10/07/2016] [19:47 10/07/2016] 27E2FBE6CE11FDBEB91A118B778E40A7 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (22-29-53).xml --a---- 2582 bytes [20:47 10/07/2016] [20:47 10/07/2016] F990B9E5A69A264FF72684C96B715E04 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-10 (23-29-53).xml --a---- 2582 bytes [21:46 10/07/2016] [21:46 10/07/2016] B7DEB2FB8B272EB7B118A9A31C4FBB25 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (11-29-53).xml --a---- 2582 bytes [09:50 11/07/2016] [09:50 11/07/2016] E3A6F6E0851707D2CAB26B337C37F01C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (12-29-53).xml --a---- 2582 bytes [10:47 11/07/2016] [10:47 11/07/2016] 367FA60B8D22ACE14B38C98F538716A5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (13-29-53).xml --a---- 2582 bytes [11:48 11/07/2016] [11:48 11/07/2016] DD56385EFEBAE2CD86CC93ACA770A40A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (14-29-53).xml --a---- 2582 bytes [12:47 11/07/2016] [12:47 11/07/2016] 32B14F41360877ED8F54E7EE85E82296 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (15-29-53).xml --a---- 2582 bytes [13:48 11/07/2016] [13:48 11/07/2016] 7D13C6B3AAFBCAD26CE62BDA23712F1E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (16-29-53).xml --a---- 2582 bytes [14:47 11/07/2016] [14:47 11/07/2016] F88D946A172602111A6A8D7205A14696 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (17-29-53).xml --a---- 2582 bytes [15:48 11/07/2016] [15:48 11/07/2016] 77876CDDB34360B2255FE2DC3B55A38A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (18-29-53).xml --a---- 2582 bytes [16:48 11/07/2016] [16:48 11/07/2016] C0096AEF6828C64358F77A195BBA6600 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (19-29-53).xml --a---- 2582 bytes [17:48 11/07/2016] [17:48 11/07/2016] F169A4E2B4291288989AD1A3A449ABB4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (20-29-53).xml --a---- 2582 bytes [18:48 11/07/2016] [18:48 11/07/2016] B8AFB10C756BBF34B10355E3D3E4D062 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (21-29-53).xml --a---- 2582 bytes [19:49 11/07/2016] [19:49 11/07/2016] C89FDF377A7A575C7B8AB0979F1C9576 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (22-29-53).xml --a---- 2582 bytes [20:49 11/07/2016] [20:49 11/07/2016] 2BCC2A729398FCC31FD47D891FFC43F3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-11 (23-29-53).xml --a---- 2582 bytes [21:48 11/07/2016] [21:48 11/07/2016] 5D90D8BE9166F5B2D035E3B3109675C8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (00-29-53).xml --a---- 2582 bytes [22:48 11/07/2016] [22:48 11/07/2016] 4D81896D34C5ACB9E994F8E1BDF55F78 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (01-29-53).xml --a---- 2582 bytes [23:47 11/07/2016] [23:47 11/07/2016] 91E1F593106AEFFCAF4C87A8DC1ADD67 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (12-34-49).xml --a---- 2582 bytes [10:58 12/07/2016] [10:58 12/07/2016] DF75A7914E146F21D53886B2861DF5D5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (13-29-53).xml --a---- 2582 bytes [11:49 12/07/2016] [11:49 12/07/2016] 7B5CD72D3A09BBDCB840C58B8734508D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (14-29-53).xml --a---- 2582 bytes [12:48 12/07/2016] [12:48 12/07/2016] CA1A75AE224AFE3C47BF38008620AA0D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (15-29-53).xml --a---- 2582 bytes [13:48 12/07/2016] [13:48 12/07/2016] 68B63C2806290CF259714E828721F881 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (16-29-53).xml --a---- 2582 bytes [14:48 12/07/2016] [14:48 12/07/2016] 7F68F7EB4B636EA67E6AC92966C1A457 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (17-29-53).xml --a---- 2582 bytes [15:48 12/07/2016] [15:48 12/07/2016] 9A56BBDD7EC80DBEEB9F943F8FCA4B73 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (18-29-53).xml --a---- 2582 bytes [16:48 12/07/2016] [16:48 12/07/2016] 0CF09F40071F929D421FD55E185CC187 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (19-29-53).xml --a---- 2582 bytes [17:48 12/07/2016] [17:48 12/07/2016] 82AFB296A5C2F3EB9D741C47FB55DC33 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (20-29-53).xml --a---- 2582 bytes [18:49 12/07/2016] [18:49 12/07/2016] 88C7ED574669DD79BA3749FF15095561 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (21-29-53).xml --a---- 2582 bytes [19:48 12/07/2016] [19:48 12/07/2016] 21E0A2A3D99838B841C567F5CFCD3C2D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (22-29-53).xml --a---- 2582 bytes [20:48 12/07/2016] [20:48 12/07/2016] B809ACA74387637AB333EAC6359E8EA2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-12 (23-29-53).xml --a---- 2582 bytes [21:48 12/07/2016] [21:48 12/07/2016] C03FDEDBABEE103E61AD6410CB770A4A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (00-29-53).xml --a---- 2582 bytes [22:48 12/07/2016] [22:48 12/07/2016] 5FE78BC1CA225CAB19A5C0567792EE1C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (01-29-53).xml --a---- 2582 bytes [23:49 12/07/2016] [23:49 12/07/2016] F8A5DBD6F9A87364EF91F38B8993E8C3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (02-29-53).xml --a---- 2582 bytes [00:48 13/07/2016] [00:48 13/07/2016] 6EE702CE1142C94EC0C9B75B67F006CB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (11-29-53).xml --a---- 2582 bytes [09:51 13/07/2016] [09:51 13/07/2016] 6429E6CB9E1E1F0757F4525A583AD763 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (12-29-53).xml --a---- 2582 bytes [10:49 13/07/2016] [10:49 13/07/2016] A4FBC4602574D51FF499609D7A0A0C66 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (13-29-53).xml --a---- 2582 bytes [11:49 13/07/2016] [11:49 13/07/2016] 7DAC65BB761C89CF9ED2528F53AA3F2A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (14-29-53).xml --a---- 2582 bytes [12:48 13/07/2016] [12:48 13/07/2016] 63E03E9B6666EEB839CAF0F6D84BC86C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (15-29-53).xml --a---- 2582 bytes [13:51 13/07/2016] [13:51 13/07/2016] 65D0DCA85109AE9AC75521818B25DCC0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (16-29-53).xml --a---- 2582 bytes [14:48 13/07/2016] [14:48 13/07/2016] 2A6A85EFEB1BB305B1BC1F2B6CE2F041 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (17-29-53).xml --a---- 2582 bytes [15:49 13/07/2016] [15:49 13/07/2016] 9D6B8D3ACA0DF83F2BB5124DBD37332C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (18-29-53).xml --a---- 2582 bytes [16:48 13/07/2016] [16:48 13/07/2016] 25D5E50474472C9E65FF66BA232DF221 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (19-29-53).xml --a---- 2582 bytes [17:48 13/07/2016] [17:48 13/07/2016] 745DD126F87172440425151699D6821B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (20-29-53).xml --a---- 2582 bytes [18:48 13/07/2016] [18:48 13/07/2016] 43D092CF4995FAEB330B83BB7FE68BF1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (21-29-53).xml --a---- 2582 bytes [19:50 13/07/2016] [19:50 13/07/2016] 1951AB38A0C855D20F89725A4987E74D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (22-29-53).xml --a---- 2582 bytes [20:49 13/07/2016] [20:49 13/07/2016] 5FCF9A88CD5D640764E46B435EB29A31 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-13 (23-29-53).xml --a---- 2582 bytes [21:50 13/07/2016] [21:50 13/07/2016] 73CEAD51F26AA7BB2BBDCF221B0595E8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (00-29-53).xml --a---- 2582 bytes [22:48 13/07/2016] [22:48 13/07/2016] E81E8F0E01634BF79280C519AE5161F4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (12-28-13).xml --a---- 2582 bytes [10:51 14/07/2016] [10:51 14/07/2016] 08B398393BDA2AEDB6FC2EAE52309EB2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (13-29-53).xml --a---- 2582 bytes [11:49 14/07/2016] [11:49 14/07/2016] 2C74D56B49569D3867D080D72ACB930A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (14-29-53).xml --a---- 2582 bytes [12:49 14/07/2016] [12:49 14/07/2016] 0A12C5AC0A9FB496D5FC7C7822DE3144 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (15-29-53).xml --a---- 2582 bytes [13:49 14/07/2016] [13:49 14/07/2016] 34AC4721B493786D6F65F93F0115302E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (16-37-59).xml --a---- 2582 bytes [14:57 14/07/2016] [14:57 14/07/2016] C97AAC9BD511D4BCD4FCEB8E30921D99 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (17-29-53).xml --a---- 2582 bytes [15:49 14/07/2016] [15:49 14/07/2016] 41F21764B6AED1860EC136429C7E72F6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (18-29-53).xml --a---- 2582 bytes [16:49 14/07/2016] [16:49 14/07/2016] 0E76DC7B944DF7463FA1AEB2E2154A5F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (19-29-53).xml --a---- 2582 bytes [17:49 14/07/2016] [17:49 14/07/2016] EC938A5003F219935C581874B0365915 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (20-29-53).xml --a---- 2582 bytes [18:49 14/07/2016] [18:49 14/07/2016] 3550F509FFF695C8AC40D80F1888199C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (21-29-53).xml --a---- 2582 bytes [19:49 14/07/2016] [19:49 14/07/2016] A6FEF281D41C036ECD536AE145BB0920 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (22-29-53).xml --a---- 2582 bytes [20:49 14/07/2016] [20:49 14/07/2016] CBB67959F0593ADD087A59C49E568282 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-14 (23-29-53).xml --a---- 2582 bytes [21:50 14/07/2016] [21:50 14/07/2016] F88FD4E434E67E98A491B0283D440E20 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (00-29-53).xml --a---- 2582 bytes [22:50 14/07/2016] [22:50 14/07/2016] 0B419FECE4B7F46BA4F149A9FCD66C97 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (01-29-53).xml --a---- 2582 bytes [23:50 14/07/2016] [23:50 14/07/2016] CCE69F5C2623AF820F5F383E6AC31E60 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (13-29-53).xml --a---- 2580 bytes [11:46 15/07/2016] [11:46 15/07/2016] 9A0BAA964BD0B7B8586637CBA366BABA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (14-29-53).xml --a---- 2580 bytes [12:45 15/07/2016] [12:45 15/07/2016] AB966D0F958509393D2A22C60FC30F72 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (15-29-53).xml --a---- 2580 bytes [13:46 15/07/2016] [13:46 15/07/2016] C7165914795F553766CACA423D100B79 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (16-29-53).xml --a---- 2566 bytes [14:47 15/07/2016] [14:47 15/07/2016] C8BB4EE8CCE534B672F9511041435761 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (17-29-53).xml --a---- 2582 bytes [15:50 15/07/2016] [15:50 15/07/2016] 7B1380F9A82DB1478B84EA1FD8B1C1C2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (19-11-27).xml --a---- 2566 bytes [17:30 15/07/2016] [17:30 15/07/2016] 6EB32A0CDE754B177C56E45E010C4DB5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (20-29-53).xml --a---- 2566 bytes [18:49 15/07/2016] [18:49 15/07/2016] B1A65C765A46D8B548B077E062CC1267 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (21-29-53).xml --a---- 2582 bytes [19:51 15/07/2016] [19:51 15/07/2016] 8AA302178780A20D5EFD5902623DC30F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (22-29-53).xml --a---- 2582 bytes [20:51 15/07/2016] [20:51 15/07/2016] 0D19B21D1FC80AA2DCAEE91878E5660D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-15 (23-29-53).xml --a---- 2566 bytes [21:52 15/07/2016] [21:52 15/07/2016] 71032C322276BBA5AC9BAA1A02B3A3E0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-16 (13-29-53).xml --a---- 2582 bytes [11:46 16/07/2016] [11:46 16/07/2016] 4F76CD6BDC4A210243449B3C0AB7340E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-16 (14-23-14).xml --a---- 2564 bytes [12:50 16/07/2016] [12:50 16/07/2016] 85881D347651BE48D0854CD055F6E937 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-16 (23-13-09).xml --a---- 2580 bytes [21:40 16/07/2016] [21:40 16/07/2016] ADC8663922FB68AA7F7323B21D56BB0A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-17 (11-41-45).xml --a---- 2580 bytes [09:46 17/07/2016] [09:46 17/07/2016] 5741DA5EDA82C8BE30C1FCFA4571E668 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-18 (07-03-21).xml --a---- 2580 bytes [05:34 18/07/2016] [05:34 18/07/2016] FCB3627D5E5654C2A3036EE2703AB531 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-18 (22-56-29).xml --a---- 2580 bytes [21:26 18/07/2016] [21:26 18/07/2016] 61E3B939944BF1316E6C2A358FE65631 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-19 (23-07-31).xml --a---- 2580 bytes [21:37 19/07/2016] [21:37 19/07/2016] 3559C5BE76618CEA0A073955DA71CCEF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-19 (23-58-24).xml --a---- 2580 bytes [22:01 19/07/2016] [22:01 19/07/2016] B619B4ADF5657C3EA411D991177CCF8D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-20 (22-59-53).xml --a---- 2580 bytes [21:28 20/07/2016] [21:28 20/07/2016] 58105CBDA8D196F083BAC2AEB1E8D925 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-23 (23-12-37).xml --a---- 2580 bytes [21:40 23/07/2016] [21:40 23/07/2016] F405DFF0634194EC19DB3F0DF78ADE56 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-24 (23-22-04).xml --a---- 2580 bytes [21:50 24/07/2016] [21:50 24/07/2016] AF5FAFAD80BBAE8A465550E7E35CA93A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-25 (23-20-52).xml --a---- 2580 bytes [21:49 25/07/2016] [21:49 25/07/2016] 669708AD964ACD2A1610224C39CD4493 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-26 (23-01-25).xml --a---- 2580 bytes [21:30 26/07/2016] [21:30 26/07/2016] 350D2FA6FA3C49BB010C621B63001518 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-27 (23-09-52).xml --a---- 2580 bytes [21:41 27/07/2016] [21:41 27/07/2016] A1FD0C5940077244A7FA3EA2712D92C8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-28 (23-05-23).xml --a---- 2580 bytes [21:35 28/07/2016] [21:35 28/07/2016] 603FCC4BA58ECECE9EE4304D22046672 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-29 (23-13-42).xml --a---- 2580 bytes [21:43 29/07/2016] [21:43 29/07/2016] 3D24481A368A5EB153D9C6CE21F39283 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-30 (23-05-25).xml --a---- 2994 bytes [21:34 30/07/2016] [21:34 30/07/2016] 202AEDB98531852CFBADAFBFA85906C6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-30 (23-38-38).xml --a---- 2580 bytes [22:06 30/07/2016] [22:06 30/07/2016] BD38AE6F1DB6AE0A6E5C728C516EF945 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-31 (01-08-57).xml --a---- 2580 bytes [23:36 30/07/2016] [23:36 30/07/2016] 9DFF19C8C83BC7C22559ECE8F4BA8F3D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-31 (11-23-03).xml --a---- 2580 bytes [09:29 31/07/2016] [09:29 31/07/2016] 33A76247A20809D22AEDD318950CFAA4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-31 (13-09-33).xml --a---- 2580 bytes [11:41 31/07/2016] [11:41 31/07/2016] 769C09013D734F448EE050F46A0EDC6F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-07-31 (22-10-11).xml --a---- 2580 bytes [20:40 31/07/2016] [20:40 31/07/2016] F75F236B6120F1FC97F26BABA5EB3788 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-01 (12-44-56).xml --a---- 2580 bytes [11:17 01/08/2016] [11:17 01/08/2016] 8B02C61FE440ACBCC43859A631C0BC19 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-01 (16-07-04).xml --a---- 2580 bytes [14:38 01/08/2016] [14:38 01/08/2016] 2BD3C429810547F293D37C014F94F3EB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-01 (19-21-15).xml --a---- 2580 bytes [17:54 01/08/2016] [17:54 01/08/2016] 5B70BD190020BE70758C745AAD4BF398 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-01 (22-08-44).xml --a---- 2580 bytes [20:44 01/08/2016] [20:44 01/08/2016] 36008230CFD2841E0667CE4DE9EC0E81 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-02 (10-35-13).xml --a---- 2580 bytes [09:12 02/08/2016] [09:12 02/08/2016] C7DC5F23C595DB5485747114DC2A356A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-02 (13-11-08).xml --a---- 2580 bytes [11:49 02/08/2016] [11:49 02/08/2016] 6A97414E96C1FCCD0CA59CE64B975E41 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-02 (15-55-33).xml --a---- 2580 bytes [14:30 02/08/2016] [14:30 02/08/2016] DA3E8910F026141FF8CAFE7AE16868DE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-02 (18-54-19).xml --a---- 2580 bytes [17:38 02/08/2016] [17:38 02/08/2016] 43EA43899B747C1F372254CC8D608B7D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-02 (21-55-32).xml --a---- 2580 bytes [20:29 02/08/2016] [20:29 02/08/2016] 5355BD24FF41F5EE4E9B706E28DB9536 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-03 (10-05-21).xml --a---- 2580 bytes [08:40 03/08/2016] [08:40 03/08/2016] 464676652F65D102C13DF42D8AC800F9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-03 (13-03-10).xml --a---- 2580 bytes [11:41 03/08/2016] [11:41 03/08/2016] 2AF08393998526BCDCDF4D0E11148BB2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-03 (16-18-35).xml --a---- 2580 bytes [14:57 03/08/2016] [14:57 03/08/2016] 78E9F6C8BBED134FC7D4224797428F93 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-03 (18-58-54).xml --a---- 2580 bytes [17:38 03/08/2016] [17:38 03/08/2016] CC00FD3304A30DA3789189F4B2A7D0E0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-03 (21-59-26).xml --a---- 2580 bytes [20:35 03/08/2016] [20:35 03/08/2016] 9805EF2D5C7479106D2CD4E6AFE0635A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-04 (11-24-09).xml --a---- 2580 bytes [09:56 04/08/2016] [09:56 04/08/2016] BD95120BB9D275C1C7E24E24D36B3B87 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-04 (12-53-14).xml --a---- 2580 bytes [11:21 04/08/2016] [11:21 04/08/2016] 0A85DD5F7ED904B81A4BF214EF44C626 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-04 (15-54-23).xml --a---- 2580 bytes [14:23 04/08/2016] [14:23 04/08/2016] DDCC9B4D01D277B5F09E5F4AA5AA14BB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-04 (19-01-22).xml --a---- 2580 bytes [17:32 04/08/2016] [17:32 04/08/2016] B71621FA6C7565B26E5A9AF80873792E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-04 (22-20-22).xml --a---- 2580 bytes [20:50 04/08/2016] [20:50 04/08/2016] 3DD85D9B5221C7E92BFA4525C490243F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-05 (13-16-21).xml --a---- 2580 bytes [11:47 05/08/2016] [11:47 05/08/2016] 92913E728C04951CD985F88BA6535420 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-05 (16-16-13).xml --a---- 2580 bytes [14:50 05/08/2016] [14:50 05/08/2016] 8BD9E4A8A070CF19C85A4CD8D7587FE5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-05 (19-08-01).xml --a---- 2580 bytes [17:40 05/08/2016] [17:40 05/08/2016] DDAD2F6321AE241C757B1826307CB448 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-05 (21-55-54).xml --a---- 2580 bytes [20:31 05/08/2016] [20:31 05/08/2016] 79DFD4031D1479AF9CE46FF29DC6BBF3 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-06 (13-04-33).xml --a---- 2580 bytes [11:40 06/08/2016] [11:40 06/08/2016] 6F429B68BDD69108686E7F1C48325892 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-06 (16-18-31).xml --a---- 2580 bytes [14:55 06/08/2016] [14:55 06/08/2016] FA0CE007AA048E64F9C38437144A149F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-06 (19-21-44).xml --a---- 2580 bytes [17:55 06/08/2016] [17:55 06/08/2016] 2FB586F306DB570FA8EB2B2AA72F5344 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-06 (21-53-10).xml --a---- 2580 bytes [20:29 06/08/2016] [20:29 06/08/2016] 06C2E715B0AF37BAAFD1F9D51C73C1BB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-07 (13-00-32).xml --a---- 2580 bytes [11:36 07/08/2016] [11:36 07/08/2016] D779DE7636696A0A77D2979947772022 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-07 (15-56-02).xml --a---- 2580 bytes [14:32 07/08/2016] [14:32 07/08/2016] F6DC88AB6181D332CC8F91379F40EA7E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-07 (18-52-18).xml --a---- 2580 bytes [17:28 07/08/2016] [17:28 07/08/2016] F32540A2BEE8B9A0AF3125F38B347E69 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-07 (22-21-35).xml --a---- 2580 bytes [20:57 07/08/2016] [20:57 07/08/2016] 027CBC0845E4AEEA9590069673A2F46F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-08 (12-55-11).xml --a---- 2580 bytes [11:25 08/08/2016] [11:25 08/08/2016] 28CB98B42E8C5F83F171392FC411FA40 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-08 (16-03-57).xml --a---- 2580 bytes [14:32 08/08/2016] [14:32 08/08/2016] 262859567CBB66432CECA2E7D1F9C6D2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-08 (19-12-29).xml --a---- 2580 bytes [17:42 08/08/2016] [17:42 08/08/2016] A7EDE13C370D42E0D49EF18B4B4F0A81 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-08 (22-06-14).xml --a---- 2580 bytes [20:37 08/08/2016] [20:37 08/08/2016] E8365FCC59451115AE09797D8981A087 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-09 (12-59-53).xml --a---- 2580 bytes [11:36 09/08/2016] [11:36 09/08/2016] 4C4238178F166F8495F44950CD9FF4F9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-09 (16-09-03).xml --a---- 2580 bytes [14:41 09/08/2016] [14:41 09/08/2016] 822C0F70CDCF1DE1B40E6A5E6549DB7D C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-09 (18-57-33).xml --a---- 2580 bytes [17:29 09/08/2016] [17:29 09/08/2016] 510DC2269CB65B65876A21852CBAA4E4 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-09 (22-17-52).xml --a---- 2580 bytes [20:51 09/08/2016] [20:51 09/08/2016] 6E9C31088FD81CDCBEAF1E693175A378 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-10 (10-14-27).xml --a---- 2580 bytes [08:43 10/08/2016] [08:43 10/08/2016] 524C4696819593D43178E639EC7EA2D1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-10 (13-20-42).xml --a---- 2580 bytes [11:49 10/08/2016] [11:49 10/08/2016] 79AEA44B8642B27D5A7F2392830DDB86 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-10 (16-09-06).xml --a---- 2580 bytes [14:38 10/08/2016] [14:38 10/08/2016] D48970198C90E1241E06FD93E51F2FC0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-10 (19-20-47).xml --a---- 2580 bytes [17:51 10/08/2016] [17:51 10/08/2016] 0FC25C95C0BA5970C297DCABBB6C3FF2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-11 (13-20-36).xml --a---- 2580 bytes [11:50 11/08/2016] [11:50 11/08/2016] A940FF2D0C83A796432A96976A2E5131 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-11 (16-06-06).xml --a---- 2580 bytes [14:34 11/08/2016] [14:34 11/08/2016] 60A755B6927D4E8149EE43971B98BA9C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-11 (19-19-15).xml --a---- 2580 bytes [17:48 11/08/2016] [17:48 11/08/2016] 5131C1BD321B4D0CED0E42A2399E723E C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-11 (22-18-38).xml --a---- 2580 bytes [20:49 11/08/2016] [20:49 11/08/2016] EE982DB8A38FD308024E849E1A0A5890 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-12 (10-31-24).xml --a---- 2580 bytes [09:04 12/08/2016] [09:04 12/08/2016] 6F6CF49086E17FAB004715A6BCB393D2 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-12 (12-59-02).xml --a---- 2580 bytes [11:29 12/08/2016] [11:29 12/08/2016] 60926C74AA9418006C1086AC951C48DB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-12 (18-44-53).xml --a---- 2580 bytes [17:18 12/08/2016] [17:18 12/08/2016] 7AB88F4D4A535017F4C8A71BE5780474 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-13 (13-15-57).xml --a---- 2580 bytes [11:45 13/08/2016] [11:45 13/08/2016] DEA16ECFC96D6EBD2FC3716538BB12F0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-13 (16-29-53).xml --a---- 2580 bytes [14:58 13/08/2016] [14:58 13/08/2016] 0ADAEAADDD2F4F1D2E73E88DED2E9695 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-13 (21-28-23).xml --a---- 2580 bytes [19:59 13/08/2016] [19:59 13/08/2016] B912820BB44E8A6F10F7281D0CC5BB10 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-13 (22-18-27).xml --a---- 2580 bytes [20:47 13/08/2016] [20:47 13/08/2016] 8E71162A78F46FCBF976D006877E1612 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-14 (13-11-34).xml --a---- 2580 bytes [11:40 14/08/2016] [11:40 14/08/2016] 1FEB4C417E9884D4D6AE342118C404A9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-14 (21-06-08).xml --a---- 2580 bytes [19:37 14/08/2016] [19:37 14/08/2016] D1C80760D99CBE9A7C6BC93DDA88EB77 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-14 (22-04-39).xml --a---- 2580 bytes [20:35 14/08/2016] [20:35 14/08/2016] 7E4C62D927E8668E279AB224F36AEFF0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-15 (11-34-53).xml --a---- 2580 bytes [10:08 15/08/2016] [10:08 15/08/2016] 634AD6EC5C5CE30DA0F750CF9EDBF11C C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-15 (12-59-00).xml --a---- 2580 bytes [11:30 15/08/2016] [11:30 15/08/2016] 6A2A9189C4C64D7AA140BD584A4425FB C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-15 (16-09-55).xml --a---- 2580 bytes [14:42 15/08/2016] [14:42 15/08/2016] 4AA3CBECAD961D22618BB98F81533758 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-15 (20-07-07).xml --a---- 2580 bytes [18:40 15/08/2016] [18:40 15/08/2016] 388E70E359C89637682C300FCFB61C9A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-15 (22-10-29).xml --a---- 2580 bytes [20:43 15/08/2016] [20:43 15/08/2016] 89B99FA28B06834F10441655D61A8FFA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-16 (13-57-50).xml --a---- 2580 bytes [12:30 16/08/2016] [12:30 16/08/2016] 855065245FC49090A6A32817FAE01FE5 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-17 (21-52-59).xml --a---- 2580 bytes [20:22 17/08/2016] [20:22 17/08/2016] 3412D95A3D22FF381C60E7ABDD4628CE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-18 (20-29-21).xml --a---- 2580 bytes [19:01 18/08/2016] [19:01 18/08/2016] 6BFD5566BB16BE80CD3F87E73E7161C8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-18 (22-11-35).xml --a---- 2580 bytes [20:42 18/08/2016] [20:42 18/08/2016] 246AC4FBF152D6AFBEFA5F12C5FA94E0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-19 (14-51-03).xml --a---- 2580 bytes [13:25 19/08/2016] [13:25 19/08/2016] BF3D97D780998FFBE63B35DBCE9AA73A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-19 (16-02-21).xml --a---- 2580 bytes [14:34 19/08/2016] [14:34 19/08/2016] 634A1EBE25985F38FC81E29B35F2CFD9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-19 (19-22-06).xml --a---- 2580 bytes [17:54 19/08/2016] [17:54 19/08/2016] 388AE74D509193B4A8B5304F0E35BDC8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-19 (22-13-39).xml --a---- 2580 bytes [20:46 19/08/2016] [20:46 19/08/2016] 1B827F2ADBBE3E57CF51C719B8AFACF9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-20 (23-06-02).xml --a---- 2582 bytes [21:47 20/08/2016] [21:47 20/08/2016] 867119083B9D3A647CAB3181FB8D26DE C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-21 (14-24-00).xml --a---- 2564 bytes [13:03 21/08/2016] [13:03 21/08/2016] 806B772220059F16BBBCAB036792F4AC C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-21 (21-53-45).xml --a---- 2580 bytes [20:23 21/08/2016] [20:23 21/08/2016] ADFECB236601A2CCAC67E200FF6F7ABA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-22 (19-39-11).xml --a---- 2580 bytes [18:12 22/08/2016] [18:12 22/08/2016] D2000A5FFA15C77C12EAC9D86463C0D7 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-23 (22-09-04).xml --a---- 2580 bytes [20:42 23/08/2016] [20:42 23/08/2016] 2B35F7BFB65F3F208ECE1C3F0012C293 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-24 (20-05-28).xml --a---- 2580 bytes [18:39 24/08/2016] [18:39 24/08/2016] 9DE126C4105911E98052A73DF32D9E4A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-24 (21-57-46).xml --a---- 2580 bytes [20:30 24/08/2016] [20:30 24/08/2016] 6B3284E44B823F33367BEF2D80790D22 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-25 (20-35-38).xml --a---- 2582 bytes [19:13 25/08/2016] [19:13 25/08/2016] 7929ABBCBA2196539B153E15B825E8CD C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-25 (22-13-20).xml --a---- 2582 bytes [20:46 25/08/2016] [20:46 25/08/2016] 05A2FE64C26E9EA04BFEA6403E33DF4A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-27 (22-06-24).xml --a---- 2582 bytes [20:36 27/08/2016] [20:36 27/08/2016] 1FEA849F0A4942C160392097A0555FE1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-28 (15-17-49).xml --a---- 2582 bytes [13:48 28/08/2016] [13:48 28/08/2016] 4E154730DB91E9C3EC66F733C36D4042 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-28 (16-14-10).xml --a---- 2582 bytes [14:43 28/08/2016] [14:43 28/08/2016] F0364EA6BF205E279D8F28DF383C6CA9 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-28 (20-30-59).xml --a---- 2582 bytes [19:01 28/08/2016] [19:01 28/08/2016] 08A94714786302F8864A914BAD92F560 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-29 (09-26-39).xml --a---- 2582 bytes [07:58 29/08/2016] [07:58 29/08/2016] 69D56F9F3F61700B17E19C3AA90783D0 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-29 (10-12-22).xml --a---- 2582 bytes [08:47 29/08/2016] [08:47 29/08/2016] F90CF703DD8290C246D73AEB62AA755B C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-29 (13-07-51).xml --a---- 2582 bytes [11:41 29/08/2016] [11:41 29/08/2016] 4DF4DBA1D156F00FFDD29584E4B1EC18 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-29 (16-01-49).xml --a---- 2582 bytes [14:35 29/08/2016] [14:35 29/08/2016] E451864A08FD62C9D048C2DAAD48F569 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-29 (18-55-47).xml --a---- 2582 bytes [17:29 29/08/2016] [17:29 29/08/2016] 493E62B17A4CED55A1C3ACC66FA01EE1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-29 (21-56-09).xml --a---- 2582 bytes [20:34 29/08/2016] [20:34 29/08/2016] A9ECE1CFD5577FDB69CC2F1026528CB8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-30 (10-13-47).xml --a---- 2582 bytes [08:53 30/08/2016] [08:53 30/08/2016] D20741CA6AC800BAC926787A8687E6B6 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-30 (12-53-06).xml --a---- 2582 bytes [11:29 30/08/2016] [11:29 30/08/2016] 49E0A1C5B533B944F5C5DADA2F7B2E6F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-30 (16-05-19).xml --a---- 2582 bytes [14:45 30/08/2016] [14:45 30/08/2016] 83946535A20153B9B6735861E6BB12AF C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-30 (20-09-30).xml --a---- 2582 bytes [18:44 30/08/2016] [18:44 30/08/2016] 644588F5709A613D74B78C54EDDA382A C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-30 (22-01-14).xml --a---- 2582 bytes [20:36 30/08/2016] [20:36 30/08/2016] D43ED574843CD12C4613A882A7897566 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-31 (09-28-35).xml --a---- 2582 bytes [08:08 31/08/2016] [08:08 31/08/2016] 62C883F2DE15C55959C022ADA274FFC1 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-31 (10-17-28).xml --a---- 2582 bytes [08:52 31/08/2016] [08:52 31/08/2016] EFEF15A9250DF5824AA7D6E13357E35F C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-31 (13-19-10).xml --a---- 2582 bytes [11:58 31/08/2016] [11:58 31/08/2016] C01C5BA9575FD2918E161E4528F095D8 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-31 (15-52-25).xml --a---- 2582 bytes [14:27 31/08/2016] [14:27 31/08/2016] 85EF5ACD193E13B42301D440B0A6BDDA C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-31 (19-00-27).xml --a---- 2582 bytes [17:35 31/08/2016] [17:35 31/08/2016] FEC5BDEEA3189A6EA4F149A0130FB718 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-08-31 (22-08-03).xml --a---- 2582 bytes [20:47 31/08/2016] [20:47 31/08/2016] 27C647E2A81A9372685C1C9153832641 C:\Users\All Users\Malwarebytes\ Malwarebytes Anti-Malware \Logs\mbam-log-2016-09-01 (11-07-48).xml --a---- 2582 bytes [09:49 01/09/2016] [09:49 01/09/2016] 12E05AC59E19FBF86B713DA414F44B95
__________________ Danke  und liebe GrüßeEveline |
|
02.02.2017, 21:52
| #32 |
| /// TB-Ausbilder   | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus,
__________________packe die Logdatei von SystemLook in ein .zip Archiv und füge dieses als Anhang bei. |
|
02.02.2017, 21:53
| #33 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Gute Idee
__________________ wären noch einige Daten. Habe dir auch die Fehlermeldung hochgeladen, die kommt, wenn ich den Ordner von Mailwarebytes als Administrator löschen möchte. Danke!
__________________ |
|
02.02.2017, 22:03
| #34 |
| /// TB-Ausbilder | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus, mit FRST sollte das klappen: Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start CloseProcesses: R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [93400 2014-11-21] (Malwarebytes Corporation) C:\Windows\system32\drivers\mbamchameleon.sys R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77416 2017-01-20] () C:\WINDOWS\system32\drivers\mbae64.sys Unlock: C:\Program Files (x86)\ Malwarebytes Anti-Malware C:\Program Files (x86)\ Malwarebytes Anti-Malware Unlock: C:\ProgramData\Malwarebytes C:\ProgramData\Malwarebytes C:\Users\Eveline\Downloads\mbam-clean-2.3.0.1001 (1).exe C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.*.dmp C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.*.dmp C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.*.dmp C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\*malwarebytes.* C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_mbam.exe_* EmptyTemp: end Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop: SystemLook (32 bit) | SystemLook (64 bit)
Schritt 3
Bitte poste mit deiner nächsten Antwort
|
|
02.02.2017, 22:42
| #35 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden!Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-01-2017
durchgeführt von Eveline (02-02-2017 22:36:52)
Gestartet von C:\Users\Eveline\Desktop\trojaner
Windows 10 Home Version 1607 (X64) (2016-10-01 08:53:32)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1916095497-2879046457-857436438-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1916095497-2879046457-857436438-503 - Limited - Disabled)
Eveline (S-1-5-21-1916095497-2879046457-857436438-1001 - Administrator - Enabled) => C:\Users\Eveline
Gast (S-1-5-21-1916095497-2879046457-857436438-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
A1 Servicecenter (HKLM-x32\...\A1 Servicecenter) (Version: 9.15.2.1548 - A1 Telekom Austria AG)
Amazon Kindle (HKU\S-1-5-21-1916095497-2879046457-857436438-1001\...\Amazon Kindle) (Version: 1.17.1.44183 - Amazon)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 11 v.11.0.4 (HKLM-x32\...\Ashampoo Burning Studio 11_is1) (Version: 11.0.4 - Ashampoo GmbH & Co. KG)
Ashampoo Core Tuner 2 v.2.0.1 (HKLM-x32\...\Ashampoo Core Tuner 2_is1) (Version: 2.01 - Ashampoo GmbH & Co. KG)
Ashampoo GetBack Photo v.1.0.1 (HKLM-x32\...\Ashampoo GetBack Photo_is1) (Version: 1.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo HDD Control 2 v.2.1.0 (HKLM-x32\...\Ashampoo HDD Control 2_is1) (Version: 2.1.0 - Ashampoo GmbH & Co. KG)
Ashampoo Music Studio 4 v.4.0.1 (HKLM-x32\...\Ashampoo Music Studio 4_is1) (Version: 4.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 10 v.10.1.3 (HKLM-x32\...\Ashampoo Photo Commander 10_is1) (Version: 10.1.3 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Optimizer 5 v.5.1.2 (HKLM-x32\...\Ashampoo Photo Optimizer 5_is1) (Version: 5.1.2 - Ashampoo GmbH & Co. KG)
Ashampoo Slideshow Studio HD 2 v.2.0.5 (HKLM-x32\...\Ashampoo Slideshow Studio HD 2_is1) (Version: 2.0.5 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 5 v.5.1.5 (HKLM-x32\...\Ashampoo Snap 5_is1) (Version: 5.1.5 - Ashampoo GmbH & Co. KG)
Ashampoo UnInstaller 4 v.4.30 (HKLM-x32\...\Ashampoo UnInstaller 4_is1) (Version: 4.3.0 - Ashampoo GmbH & Co. KG)
Ashampoo Video Styler v.1.0.1 (HKLM-x32\...\Ashampoo Video Styler_is1) (Version: 1.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 9 v.9.04.31 (HKLM-x32\...\Ashampoo WinOptimizer 9_is1) (Version: 9.04.31 - Ashampoo GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{845380e2-f0b5-4584-bc40-cc54345b3c06}) (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG) Hidden
Avira Software Updater (HKLM-x32\...\{115347FE-037B-4F4D-86F2-057FEF294C7A}) (Version: 1.2.4.459 - Avira Operations GmbH & Co. KG)
Balabolka (HKLM-x32\...\Balabolka) (Version: 2.02 - Ilya Morozov)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.4430.0 - CyberLink Corp.)
CyberLink PhotoDirector 5 (Version: 5.0.4430.0 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2230.0 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.2230.0 - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.2527 - CyberLink Corp.)
CyberLink PowerRecover (Version: 5.7.0.2527 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
FileZilla Client 3.23.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.23.0.2 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Google Web Designer (HKLM\...\{811767F4-C586-4673-A41F-E9D767497222}) (Version: 1.3.10.0 - Google Inc.)
HOFER Bestellsoftware (HKLM-x32\...\HOFER Bestellsoftware) (Version: 4.14.5. - ORWO Net)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
L&H TTS3000 Deutsch (HKLM-x32\...\LHTTSGED) (Version: - )
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x86) (HKLM-x32\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Text to Speech Voice (de-DE, Hedda) (HKLM-x32\...\{ACFCC7B5-C028-40AE-A5F5-9778B41F22A2}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Text to Speech Voice (en-US, ZiraPro) (HKLM-x32\...\{C7CDC27F-0952-4DF1-9E41-B75140933BC6}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Speech SDK 5.1 (HKLM-x32\...\{A403D88E-ED7D-48E3-91FD-B8C8A720EDA1}) (Version: 5.1.4324.0 - Microsoft)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
MIDI4all (HKLM-x32\...\{668B80AF-D98F-42FC-8EE1-36252B03C5C9}_is1) (Version: MIDI4all 1.5 - Webdesign-Forum.de)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 51.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 de)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
NewBlue Video Essentials for PowerDirector (HKLM\...\NewBlue Video Essentials for Cyberlink) (Version: 3.0 - NewBlue)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.70 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Nvu 1.0 (HKLM-x32\...\Nvu_is1) (Version: 1.0 - Thorsten Fritz)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.103 - Skype Technologies S.A.)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17362 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows-Treiberpaket - Hewlett-Packard Image (12/27/2006 8.0.0.0) (HKLM\...\F5E51FDA4F39B4D4F8A1DF9178FCF7947925E0F1) (Version: 12/27/2006 8.0.0.0 - Hewlett-Packard)
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {005D3830-4EAD-41FA-8AD6-D1BE568820A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {0966EA0B-D480-44EA-8BFD-5C7506664E41} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {13DCF557-BED6-4710-ADCA-273AE5C3DD7A} - \WPD\SqmUpload_S-1-5-21-1916095497-2879046457-857436438-1001 -> Keine Datei <==== ACHTUNG
Task: {267E60C8-45B2-435C-AB0D-04D8D1A340EC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4AF14C4A-6A7B-43D0-9C15-3DD76DFAEE47} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {4F72CB1F-C60B-4FE0-B293-F817C0D380EF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {531FA752-92DB-4525-94DC-A92DCF81DF22} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {618DF34B-D9F0-4AB5-82E0-C2C404F30F83} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {6AB7F404-A093-4712-8D65-A07D54932FEE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {75265369-84CC-4951-A5A4-1488C88A51C2} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {79F65323-B021-4DB5-9916-6EB3EF278170} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {7CD8E765-0DDB-4986-8488-4EF8CA0D503B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-11] (Microsoft Corporation)
Task: {83DEE734-566A-440A-90A5-61456CB8FFFF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {87E256B5-13BE-43BB-A3E6-9F4CB514AEAE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {89A7BD81-FA88-4699-B76E-B7136DBC2307} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {A51BCA2B-6F51-4352-B7F1-BF9A1D273232} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {ADD58F1B-D617-4A6F-9A38-87AD5DBCCC61} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {BE68316A-B5EB-4677-938F-B786276022A2} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {D5558EDC-49D5-417E-9B2B-9E60032EF5B6} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {D96C2CC2-8A91-42DB-B507-5588936DB21B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {E4F9E72D-253F-4E5C-8AA3-D9DE0B93D156} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {F68203EA-F065-442A-B717-2AD2A7319E75} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {FAEE64A7-C187-430A-B907-E539E4B80DBF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Eveline\Desktop\LIFESTORE.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com/lifestore
ShortcutWithArgument: C:\Users\Eveline\AppData\Local\Microsoft\Windows\FileHistory\Data\445\C\Users\Eveline\Desktop\LIFESTORE.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com/lifestore
ShortcutWithArgument: C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Signal Private Messenger.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=bikioccmkafdpakkkcpdbppfkghcmihk
ShortcutWithArgument: C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Solitaire.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=lkbhppfbabandkdmgjmifahoabeodiep
ShortcutWithArgument: C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sticky Notes.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=nbjdhgkkhefpifbifjiflpaajchdkhpg
ShortcutWithArgument: C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Writebox for Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gjiojfkjllkkkkcicbaiahobdgjfhkom
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEDIONhome.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 13:48 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-06-02 08:36 - 2011-08-22 13:44 - 01421216 _____ () C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
2014-06-02 08:36 - 2012-07-30 10:48 - 01518504 _____ () C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
2014-12-01 14:14 - 2016-05-24 08:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2014-06-02 09:03 - 2012-08-08 21:36 - 00390672 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-10-01 09:17 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-14 13:48 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-01 09:59 - 2016-10-01 09:59 - 00959168 _____ () C:\Users\Eveline\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2010-07-15 05:44 - 2010-07-15 05:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2016-10-01 10:08 - 2016-10-01 10:08 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 14:58 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 14:58 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 14:58 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 14:58 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 14:58 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 14:58 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-14 23:06 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-14 23:06 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-11-02 00:28 - 2016-06-15 02:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2017-01-23 13:56 - 2017-01-23 13:57 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-01-23 13:56 - 2017-01-23 13:57 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-01-23 13:56 - 2017-01-23 13:57 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 13:01 - 2016-12-14 13:01 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\roottools.dll
2015-04-14 11:38 - 2016-06-15 02:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-12-01 14:14 - 2016-09-20 09:47 - 00325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2017-01-14 13:02 - 2017-01-14 13:03 - 01041608 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\ADDINS\UmOutlookAddin.dll
2014-06-02 08:24 - 2013-09-04 00:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Eveline\Pictures\Hochzeit\008.png
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "A1Servicecenter"
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{1234A48B-FCF0-479F-A569-50988427789E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DBB51FBC-5054-4404-A028-C7F4C1F62DAD}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8125CED0-D974-414B-A542-43B52FDF3758}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{124F6CFD-0837-46BC-80BA-B07638865492}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3CE74AE4-4E89-4165-A68C-88A24C91CF47}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{39B67FEF-EE62-41D8-B8B4-B13B5CA821F4}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{66A95EF3-03BA-4ADB-B9FE-9A03A5D20648}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C9A47B77-74F7-4BF2-AFF4-D7506A604ADD}] => C:\Users\Eveline\AppData\Local\Temp\7zS4079\HPDiagnosticCoreUI.exe
FirewallRules: [{D01141D6-5311-4234-B5E2-EA4D9E968D5B}] => C:\Users\Eveline\AppData\Local\Temp\7zS4079\HPDiagnosticCoreUI.exe
FirewallRules: [{6E23F6B3-F56F-4251-8A00-CC66A612F72B}] => C:\Users\Eveline\AppData\Local\Temp\7zS3785\HPDiagnosticCoreUI.exe
FirewallRules: [{602EAB8B-EB55-4560-B9B1-CEF1C41CCEE3}] => C:\Users\Eveline\AppData\Local\Temp\7zS3785\HPDiagnosticCoreUI.exe
FirewallRules: [{0E7825E2-1DCE-4364-9DA9-0114545F73C0}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8629F77F-A9D0-494B-A8F9-393A59E37F5D}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4AAE2FD2-69EA-4240-9773-79234C932F64}] => C:\Users\Eveline\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{8C2AEFEF-1C9C-4044-8324-B534748393B9}] => C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{B3B451CA-2BF1-4AEF-B648-C6B92CB945CC}] => C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
FirewallRules: [{19103A1E-9841-46F1-894F-D73221AFF5DC}] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
FirewallRules: [{75E48BF1-321F-40BF-A50C-0A2C40AFC171}] => C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{085F86D4-624C-41FB-8508-7075DC5B3C8D}] => C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{D47B0A66-7329-46E5-B258-641647ECA77D}] => C:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{7444B070-8E08-48C8-A0B1-22DE9F908422}] => LPort=1900
FirewallRules: [{FFC0F777-525B-4416-8BC1-E5B95DBB29E8}] => LPort=2869
FirewallRules: [{E7FB244F-0022-40A0-B0B6-83F6DE5AC5C1}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{82C57A89-E0E9-436E-A004-3B41AB398FF3}] => C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{3153B440-1248-49D1-92C5-B47D986ECBAA}] => C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{102FCBDA-A186-422F-896B-C0E49C158FB6}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter.exe
FirewallRules: [{A3F57513-F309-4575-BAA7-B86FCA4F8E0B}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter.exe
FirewallRules: [{C7C78DA8-6EA0-46A1-8FF1-307A8FE0A33A}] => C:\Program Files (x86)\A1 Servicecenter\A1 Breitband\A1Breitband.exe
FirewallRules: [{D17DEE09-C922-4C3A-8AA0-4F043E83B311}] => C:\Program Files (x86)\A1 Servicecenter\A1 Breitband\A1Breitband.exe
FirewallRules: [{5917C5C8-6E24-4E43-AD27-D5045323780C}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Modemkonfigurator.exe
FirewallRules: [{75C3D2C7-7FD0-4E92-9CC6-341CD6666ADF}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Modemkonfigurator.exe
FirewallRules: [{B6043D61-F782-4595-97CC-E55E2C5021EF}] => C:\Program Files (x86)\A1 Servicecenter\A1 Bandbreiten-Optimierer\A1_Bandbreiten_Optimierer.exe
FirewallRules: [{0AEE8101-80D4-4CA9-9DA4-6B084895C21E}] => C:\Program Files (x86)\A1 Servicecenter\A1 Bandbreiten-Optimierer\A1_Bandbreiten_Optimierer.exe
FirewallRules: [{0728882A-90E3-46D2-B166-1488D7206E41}] => C:\Program Files (x86)\A1 Servicecenter\A1 Bandbreiten-Optimierer\A1_Bandbreiten_Optimierer.exe
FirewallRules: [{4E2A02F5-8E1A-480F-8630-8A5CB41D7237}] => C:\Program Files (x86)\A1 Servicecenter\A1 Bandbreiten-Optimierer\A1_Bandbreiten_Optimierer.exe
FirewallRules: [{FC820AD7-2CE5-4F11-AFB5-CE41531DF4A9}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter_Launcher.exe
FirewallRules: [{7E439644-150A-478A-BD22-930D7D940DE7}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter_Launcher.exe
FirewallRules: [{495B887D-E088-4662-BFEC-551E63C2F3AC}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter_Repair.exe
FirewallRules: [{A60B69E8-6383-4D1C-AD48-403AE5FC6FE9}] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter_Repair.exe
FirewallRules: [{A6C09DFE-6C17-407F-9C69-ECBB74C2B8E3}] => C:\Program Files (x86)\A1 Servicecenter\A1 Update\M2Updater.exe
FirewallRules: [{59175681-29DF-421E-B982-5D2B3E58A79F}] => C:\Program Files (x86)\A1 Servicecenter\A1 Update\M2Updater.exe
FirewallRules: [{29D8851A-28B3-471B-B184-8090B6975297}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7C9C744E-2B66-41BC-811B-D7DC3E9754CF}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AAC5755E-A0CB-4D05-8671-EC22AF3D38AA}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{B195432E-AA7A-419D-9BE7-1A1EC6F170D4}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{D1615A93-B951-4C4F-A7BC-66B2800328AC}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{62D2E56D-B41B-4245-8E60-61E510B2FE18}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{85EB8214-8A05-4403-9D20-D5D89A508F5C}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F7AF6883-FC05-4C21-BF92-848DA127DAA3}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
28-01-2017 14:30:25 JRT Pre-Junkware Removal
30-01-2017 15:55:20 JRT Pre-Junkware Removal
30-01-2017 18:35:53 JRT Pre-Junkware Removal
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (02/02/2017 10:16:41 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TRAUSDORFBÄR)
Description: Bei der Aktivierung der App „Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/02/2017 08:37:20 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (02/02/2017 06:21:12 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (02/02/2017 05:44:06 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files\Microsoft Office 15\root\office15\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files\Microsoft Office 15\root\office15\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (02/02/2017 03:21:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TRAUSDORFBÄR)
Description: Bei der Aktivierung der App „Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/01/2017 08:27:08 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TRAUSDORFBÄR)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (02/01/2017 07:23:57 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (02/01/2017 06:09:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: TRAUSDORFBÄR)
Description: Das Paket „Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe+App“ wurde beendet, da das Anhalten zu lange dauerte.
Error: (02/01/2017 11:25:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Avira.SoftwareUpdater.ServiceHost.exe, Version: 1.2.4.459, Zeitstempel: 0x584acbbb
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.14393.479, Zeitstempel: 0x58256d37
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000da832
ID des fehlerhaften Prozesses: 0x8d8
Startzeit der fehlerhaften Anwendung: 0x01d27bb3758149c0
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: 3b998264-36c7-4c51-8216-79376ac819b7
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/01/2017 11:25:37 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Avira.SoftwareUpdater.ServiceHost.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.IO.FileLoadException
bei Avira.OE.WinCore.Utility.LoggerFacade.GetLogger(System.String)
bei Avira.OE.WinCore.Utility.LoggerFacade.GetCurrentClassLogger()
bei Avira.OE.WinCore.Lazy`1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].get_Value()
bei Avira.OE.WinCore.HttpRequestor.GetResponse(System.Uri)
bei Avira.OE.WinCore.InternetConnectionMonitor.CheckCurrentConnectionState()
bei Avira.OE.WinCore.InternetConnectionMonitor.UpdateCurrentConnectionStatus(System.Object)
bei Avira.OE.WinCore.InternetConnectionMonitor.NetworkStatusListener_StatusChanged(System.Object, System.EventArgs)
bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke(System.EventHandler, System.Object, System.EventArgs)
bei Avira.OE.WinCore.NetworkStatusListener.NetworkChange_NetworkAddressChanged(System.Object, System.EventArgs)
bei System.Net.NetworkInformation.NetworkChange+AddressChangeListener.RunHandlerCallback(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Net.NetworkInformation.NetworkChange+AddressChangeListener.AddressChangedCallback(System.Object, Boolean)
bei System.Threading._ThreadPoolWaitOrTimerCallback.PerformWaitOrTimerCallback(System.Object, Boolean)
Systemfehler:
=============
Error: (02/02/2017 10:18:41 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (02/02/2017 10:15:26 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Streamer Network Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) ME Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management and Security Application Local Management Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (02/02/2017 10:11:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Cyberlink RichVideo64 Service(CRVS)" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 8144.44 MB
Verfügbarer physikalischer RAM: 4888.93 MB
Summe virtueller Speicher: 9424.44 MB
Verfügbarer virtueller Speicher: 5947.16 MB
==================== Laufwerke ================================
Drive c: (Boot) (Fixed) (Total:869.36 GB) (Free:796.83 GB) NTFS
Drive d: (Recover) (Fixed) (Total:59.99 GB) (Free:41.96 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-01-2017 durchgeführt von Eveline (02-02-2017 22:11:36) Run:1 Gestartet von C:\Users\Eveline\Desktop\trojaner Geladene Profile: Eveline (Verfügbare Profile: Eveline) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** start CloseProcesses: R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [93400 2014-11-21] (Malwarebytes Corporation) C:\Windows\system32\drivers\mbamchameleon.sys R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77416 2017-01-20] () C:\WINDOWS\system32\drivers\mbae64.sys Unlock: C:\Program Files (x86)\ Malwarebytes Anti-Malware C:\Program Files (x86)\ Malwarebytes Anti-Malware Unlock: C:\ProgramData\Malwarebytes C:\ProgramData\Malwarebytes C:\Users\Eveline\Downloads\mbam-clean-2.3.0.1001 (1).exe C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.*.dmp C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.*.dmp C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.*.dmp C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\*malwarebytes.* C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_mbam.exe_* EmptyTemp: end ***************** Prozesse erfolgreich geschlossen. mbamchameleon => Dienst konnte nicht gestoppt werden. HKLM\System\CurrentControlSet\Services\mbamchameleon => konnte nicht entfernt werden Schlüssel. Zugriff verweigert. Konnte nicht verschoben werden "C:\Windows\system32\drivers\mbamchameleon.sys" => ist geplant bei Neustart verschoben zu werden. ESProtectionDriver => Dienst konnte nicht gestoppt werden. HKLM\System\CurrentControlSet\Services\ESProtectionDriver => Schlüssel erfolgreich entfernt ESProtectionDriver => Dienst erfolgreich entfernt C:\WINDOWS\system32\drivers\mbae64.sys => erfolgreich verschoben "C:\Program Files (x86)\ Malwarebytes Anti-Malware " => nicht gefunden. "C:\Program Files (x86)\ Malwarebytes Anti-Malware " => nicht gefunden. "C:\ProgramData\Malwarebytes" => konnte nicht entsperrt werden "C:\ProgramData\Malwarebytes" Ordner verschieben: Konnte nicht verschoben werden "C:\ProgramData\Malwarebytes" => ist geplant bei Neustart verschoben zu werden. C:\Users\Eveline\Downloads\mbam-clean-2.3.0.1001 (1).exe => erfolgreich verschoben =========== "C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.*.dmp" ========== C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.10660.dmp => erfolgreich verschoben C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.1824.dmp => erfolgreich verschoben C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.2312.dmp => erfolgreich verschoben C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.2440.dmp => erfolgreich verschoben C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.5024.dmp => erfolgreich verschoben ========= Ende -> "C:\Users\Eveline\AppData\Local\CrashDumps\mbam.exe.*.dmp" ======== =========== "C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.*.dmp" ========== C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.11180.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.3080.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.3220.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.3504.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.5320.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.6052.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.7672.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.8256.dmp => erfolgreich verschoben C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.9072.dmp => erfolgreich verschoben ========= Ende -> "C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\MBAMService.exe.*.dmp" ======== =========== "C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.*.dmp" ========== C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.2672.dmp => erfolgreich verschoben C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.2772.dmp => erfolgreich verschoben C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.6220.dmp => erfolgreich verschoben ========= Ende -> "C:\Windows\SysWOW64\config\systemprofile\AppData\Local\CrashDumps\mbamservice.exe.*.dmp" ======== "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware " => nicht gefunden. =========== "C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\*malwarebytes.*" ========== C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_buy.malwarebytes.com_0.localstorage-journal => erfolgreich verschoben C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_forums.malwarebytes.com_0.localstorage => erfolgreich verschoben C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_forums.malwarebytes.com_0.localstorage-journal => erfolgreich verschoben C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_store.malwarebytes.com_0.localstorage-journal => erfolgreich verschoben ========= Ende -> "C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\*malwarebytes.*" ======== "C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk" => nicht gefunden. =========== "C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_mbam.exe_*" ========== nicht gefunden ========= Ende -> "C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_mbam.exe_*" ======== =========== EmptyTemp: ========== BITS transfer queue => 0 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 42786735 B Java, Flash, Steam htmlcache => 711 B Windows/system/drivers => 71504173 B Edge => 31319244 B Chrome => 559018668 B Firefox => 86957956 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 15685948 B NetworkService => 157714 B Eveline => 836222426 B RecycleBin => 98307530 B EmptyTemp: => 1.6 GB temporäre Dateien entfernt. ================================ Ergebnis der geplanten Datei-Verschiebungen (Start-Modus: Normal) (Datum&Uhrzeit: 02-02-2017 22:16:21) "C:\Windows\system32\drivers\mbamchameleon.sys" => Konnte nicht verschoben werden "C:\ProgramData\Malwarebytes" => Konnte nicht verschoben werden Ergebnis der geplanten Schlüssel-Entfernung nach dem Neustart: HKLM\System\CurrentControlSet\Services\mbamchameleon => konnte nicht entfernt werden Schlüssel. Zugriff verweigert. ==== Ende vom Fixlog 22:18:42 ==== Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017
durchgeführt von Eveline (Administrator) auf TRAUSDORFBÄR (02-02-2017 22:35:55)
Gestartet von C:\Users\Eveline\Desktop\trojaner
Geladene Profile: Eveline (Verfügbare Profile: Eveline)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
() C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
() C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(© 2015 Microsoft Corporation) C:\Users\Eveline\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-11-26] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-11] (CyberLink Corp.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [A1Servicecenter] => C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter_Launcher.exe [11438872 2015-08-25] (A1)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61896 2016-12-29] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [917576 2016-12-15] (Avira Operations GmbH & Co. KG)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\...\Run: [RESTART_STICKY_NOTES] => C:\WINDOWS\System32\StikyNot.exe
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27427808 2017-01-23] (Skype Technologies S.A.)
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\...\Run: [GoogleChromeAutoLaunch_3E866541A350BCF9753662F46BCD806E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1104728 2016-12-08] (Google Inc.)
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\...\Run: [BingSvc] => C:\Users\Eveline\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
Startup: C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outlook 2013.lnk [2014-12-04]
ShortcutTarget: Outlook 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE (Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{b189eb4b-65b6-4291-bcb5-c024edd5e03c}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.rheuma-selbst-hilfe.at/
HKU\S-1-5-21-1916095497-2879046457-857436438-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 5hf22y7s.eveline
FF ProfilePath: C:\Users\Eveline\AppData\Roaming\Nvu\Profiles\5hf22y7s.eveline [2015-07-02]
FF ProfilePath: C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default [2017-02-02]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\oqLzq2BH.default -> Bing
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\oqLzq2BH.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\oqLzq2BH.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\oqLzq2BH.default -> hxxp://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=de-at
FF Keyword.URL: Mozilla\Firefox\Profiles\oqLzq2BH.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (Emoji Keyboard) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\@emojikeyboard.xpi [2017-01-20]
FF Extension: (Avira Browser Safety) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\abs@avira.com.xpi [2016-11-22]
FF Extension: (Bing Search) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-01-31]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2016-12-04]
FF Extension: (Google Selection Translate - For AltKey) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\jid1-f7dnBeTj8ElpOQ@jetpack.xpi [2017-01-11]
FF Extension: (uBlock Origin) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\uBlock0@raymondhill.net.xpi [2017-01-25]
FF Extension: (A1 Servicecenter) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\Extensions\{594657B4-413A-41D0-8F85-A6D3F35C9BDF} [2015-09-08] [ist nicht signiert]
FF Extension: (Diagnostics) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\features\{4df4fe11-6cfd-4efd-b269-4aa27e9ced71}\diagnostics@mozilla.org.xpi [2017-02-01]
FF Extension: (Send HSTS Priming Requests) - C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\features\{4df4fe11-6cfd-4efd-b269-4aa27e9ced71}\hsts-priming@mozilla.org.xpi [2017-02-01]
FF SearchPlugin: C:\Users\Eveline\AppData\Roaming\Mozilla\Firefox\Profiles\oqLzq2BH.default\searchplugins\bing-.xml [2017-01-31]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://rheuma-selbst-hilfe.at/rsh_forum/index.php?page=Index&e917d7b4"
CHR DefaultSearchURL: Default -> hxxps://search.avira.net/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://search.avira.net/suggestions?q={searchTerms}&li=ff&hl=de
CHR Profile: C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default [2017-02-02]
CHR Extension: (Google Präsentationen) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-04]
CHR Extension: (Google Docs) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Writebox) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbehjmjchoiaglkeboicbgkpfafcmhij [2015-11-18]
CHR Extension: (Tri Jeweled 2) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\bennkoppbniegdeakggleaifebacachi [2015-01-23]
CHR Extension: (Signal Private Messenger) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\bikioccmkafdpakkkcpdbppfkghcmihk [2017-01-28]
CHR Extension: (YouTube) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Translation & Dictionary) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdgpdmhkjniimkgnhelgogagpocggbeo [2014-12-01]
CHR Extension: (Adblock Plus) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Google-Suche) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Timer) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\edebbhkhcaafmolanelponjjanocpacd [2014-12-01]
CHR Extension: (Right-Click Search Wikipedia) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\eikmpmafdimllogceehaijmnlndineje [2016-08-09]
CHR Extension: (Emoji Keyboard) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcgkphadgmbalmlklhbdagcicajenei [2017-01-19]
CHR Extension: (Google Tabellen) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-04]
CHR Extension: (Avira Browserschutz) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-09-21]
CHR Extension: (Google Docs Offline) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Writebox for Chrome) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjiojfkjllkkkkcicbaiahobdgjfhkom [2014-12-01]
CHR Extension: (Google Kalender (von Google)) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2016-08-26]
CHR Extension: (Google Photos) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcglmfcclpfgljeaiahehebeoaiicbko [2016-08-09]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldmiahjidflgnbiadknkmaimfpjkelng [2016-12-15]
CHR Extension: (Water's Valley) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhpodmbdlgmgffpgbennemfkjhhaocfl [2014-12-01]
CHR Extension: (Solitaire) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkbhppfbabandkdmgjmifahoabeodiep [2016-12-27]
CHR Extension: (Google Maps) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-08-09]
CHR Extension: (Chrome-Erweiterung für Google Notizen) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2016-08-09]
CHR Extension: (Planner 5D - Innenarchitektur) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2016-09-08]
CHR Extension: (Nehmen Sie Screenshot der Webseite - FireShot) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2016-12-04]
CHR Extension: (Regen-Alarm) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\meaikaglpfemjncbioflellmppndgmok [2016-07-24]
CHR Extension: (Sticky Notes) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbjdhgkkhefpifbifjiflpaajchdkhpg [2016-06-03]
CHR Extension: (Bundlr) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\neaecllpgiioinacndhkakancoifnbhm [2014-12-01]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-01-28]
CHR Extension: (Deutsch Übersetzer) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohiojbnhbaoegegaajagfiekffejejih [2014-12-01]
CHR Extension: (Send from Gmail (by Google)) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2016-08-09]
CHR Extension: (Context Menus) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\phlfmkfpmphogkomddckmggcfpmfchpn [2016-08-09]
CHR Extension: (Google Mail) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\Eveline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ACT2_Service; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [1421216 2011-08-22] ()
R2 AHDDC2; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [1518504 2012-07-30] ()
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1089592 2016-12-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [476736 2016-12-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [476736 2016-12-15] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1490296 2016-12-15] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [372272 2016-12-29] (Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [25232 2016-12-09] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2016-12-13] (Microsoft Corporation)
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [74712 2013-03-11] (CyberLink)
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [316376 2013-03-11] (CyberLink)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-08-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ACT2PM; C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys [15160 2011-06-10] ()
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [151352 2016-12-15] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153904 2016-12-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-09-27] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [28272 2016-12-15] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [93400 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoi.inf_amd64_ced1ded071ee981c\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [888064 2015-09-10] (Realtek )
R3 RtlWlanu_OldIC; C:\WINDOWS\System32\drivers\rtwlanu_oldIC.sys [3814400 2016-07-16] (Realtek Semiconductor Corporation )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-08-29] (SteelSeries ApS)
S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-02-01 21:42 - 2017-02-02 22:35 - 00000000 ____D C:\FRST
2017-02-01 21:42 - 2017-02-02 22:30 - 00000000 ____D C:\Users\Eveline\Desktop\trojaner
2017-01-31 23:21 - 2017-01-31 23:21 - 00006573 _____ C:\Users\Eveline\AppData\Local\recently-used.xbel
2017-01-31 12:16 - 2017-01-31 12:17 - 00543604 _____ C:\WINDOWS\Minidump\013117-32375-01.dmp
2017-01-30 16:45 - 2017-01-30 18:33 - 04015056 _____ C:\Users\Eveline\Downloads\adwcleaner_6.043.exe
2017-01-30 16:16 - 2017-01-30 16:16 - 00001128 _____ C:\Users\Public\Desktop\FileASSASSIN.lnk
2017-01-30 16:16 - 2017-01-30 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN
2017-01-30 16:16 - 2017-01-30 16:16 - 00000000 ____D C:\Program Files (x86)\FileASSASSIN
2017-01-30 16:15 - 2017-01-30 16:15 - 00167034 _____ C:\Users\Eveline\Downloads\fileassassin-setup-1.06.exe
2017-01-30 15:57 - 2017-01-30 18:38 - 00000992 _____ C:\Users\Eveline\Desktop\JRT.txt
2017-01-30 15:55 - 2017-01-30 15:55 - 01663040 _____ (Malwarebytes) C:\Users\Eveline\Downloads\JRT.exe
2017-01-30 14:44 - 2017-01-30 14:44 - 00001213 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-01-29 05:31 - 2017-01-29 05:31 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\1DCC58FE.sys
2017-01-29 05:29 - 2017-01-29 05:29 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\57E0571B.sys
2017-01-29 05:28 - 2017-01-29 05:28 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\34EA562A.sys
2017-01-29 04:37 - 2017-01-29 04:38 - 55566792 _____ (Malwarebytes ) C:\Users\Eveline\Downloads\mb3-setup-consumer-3.0.6.1469.exe
2017-01-29 03:07 - 2017-01-29 03:07 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\0BBA6A32.sys
2017-01-29 02:55 - 2017-01-29 02:55 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\2F426188.sys
2017-01-28 16:36 - 2017-01-28 16:36 - 00000000 ____D C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2017-01-28 16:36 - 2017-01-28 16:36 - 00000000 ____D C:\Program Files\Unlocker
2017-01-28 16:35 - 2017-01-28 16:35 - 01078591 _____ C:\Users\Eveline\Downloads\Unlocker1.9.2.exe
2017-01-28 15:31 - 2017-01-28 15:31 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2017-01-28 15:31 - 2017-01-28 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2017-01-28 15:31 - 2017-01-28 15:31 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2017-01-28 15:31 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-01-28 15:31 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2017-01-28 14:37 - 2017-01-30 18:35 - 00000000 ____D C:\AdwCleaner
2017-01-28 14:06 - 2017-01-28 14:06 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\630914E3.sys
2017-01-28 01:20 - 2017-01-28 01:20 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\34CA4A14.sys
2017-01-28 01:18 - 2017-01-28 01:18 - 00251848 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4A1C48E1.sys
2017-01-28 00:25 - 2017-01-20 07:47 - 00077416 _____ C:\WINDOWS\system32\Drivers\malewer.sys
2017-01-24 23:11 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-24 23:11 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-19 18:49 - 2017-01-19 18:49 - 00543716 _____ C:\WINDOWS\Minidump\011917-33078-01.dmp
2017-01-19 13:33 - 2017-01-19 13:33 - 03177934 _____ C:\Users\Eveline\Documents\Antrag_auf_Reisepass_110615_12.06.15.pdf
2017-01-12 19:29 - 2017-01-12 19:30 - 00976484 _____ C:\WINDOWS\Minidump\011217-28062-01.dmp
2017-01-12 18:36 - 2017-01-12 18:37 - 00543516 _____ C:\WINDOWS\Minidump\011217-31937-01.dmp
2017-01-11 14:59 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-11 14:59 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-11 14:59 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-11 14:59 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-11 14:59 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-11 14:59 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-11 14:59 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-11 14:59 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-11 14:59 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-11 14:59 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-11 14:59 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-11 14:59 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-11 14:59 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-11 14:59 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-11 14:59 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-11 14:59 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-11 14:59 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-11 14:59 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-11 14:59 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-11 14:59 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-11 14:59 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 14:59 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-11 14:59 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 14:59 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 14:59 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-11 14:59 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-11 14:59 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 14:59 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-11 14:59 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-11 14:59 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-11 14:59 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-11 14:59 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-11 14:59 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-11 14:59 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-11 14:59 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-11 14:59 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-11 14:59 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-11 14:59 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-11 14:59 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 14:59 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-11 14:59 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-11 14:59 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-11 14:59 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-11 14:59 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-11 14:59 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 14:59 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-11 14:59 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-11 14:59 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-11 14:59 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-11 14:59 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-11 14:59 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-11 14:59 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-11 14:59 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-11 14:59 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-11 14:59 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-11 14:59 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-11 14:59 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-11 14:59 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-11 14:58 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-11 14:58 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-11 14:58 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-11 14:58 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-11 14:58 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-11 14:58 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-11 14:58 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-11 14:58 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-11 14:58 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-11 14:58 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-11 14:58 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-11 14:58 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-11 14:58 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-11 14:58 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-11 14:58 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-11 14:58 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 14:58 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-11 14:58 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-11 14:58 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-11 14:58 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-11 14:58 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-11 14:58 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-11 14:58 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-11 14:58 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-11 14:58 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-11 14:58 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-11 14:58 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-11 14:58 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-11 14:58 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-11 14:58 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-11 14:58 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-11 14:58 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-11 14:58 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-11 14:58 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-11 14:58 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-11 14:58 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-11 14:58 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-11 14:58 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-11 14:58 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-11 14:58 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-11 14:58 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-11 14:58 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-11 14:58 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-11 14:58 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-11 14:58 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 14:58 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-11 14:58 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-11 14:58 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 14:58 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-11 14:58 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-11 14:58 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-11 14:58 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-11 14:58 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-11 14:58 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-11 14:58 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-11 14:58 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 14:58 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-11 14:58 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-11 14:58 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-11 14:58 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-11 14:58 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-11 14:58 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-11 14:58 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-11 14:58 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-11 14:58 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-11 14:58 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-11 14:58 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-11 14:58 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-11 14:58 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-11 14:58 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-11 14:58 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-11 14:58 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-11 14:58 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-11 14:58 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-11 14:58 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-11 14:58 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-11 14:58 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-11 14:58 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-11 14:58 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-11 14:58 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-11 14:58 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 14:58 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-11 14:58 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-11 14:58 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-11 14:58 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-11 14:58 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 14:58 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-11 14:58 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-11 14:58 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-11 14:58 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 14:58 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-11 14:58 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-11 14:58 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-11 14:58 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-11 14:58 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-11 14:58 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-11 14:58 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-11 14:58 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-11 14:58 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-11 14:58 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-11 14:58 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-11 14:58 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-11 14:58 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-11 14:58 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-11 14:58 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 14:58 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-11 14:58 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-11 14:58 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-11 02:18 - 2017-01-11 02:18 - 00254925 _____ C:\Users\Eveline\Documents\Apfelschmarrn.pdf
2017-01-06 22:48 - 2017-01-06 22:48 - 00002306 _____ C:\Users\Eveline\Desktop\Kindle.lnk
2017-01-06 22:48 - 2017-01-06 22:48 - 00000000 ____D C:\Users\Eveline\Documents\My Kindle Content
2017-01-06 22:48 - 2017-01-06 22:48 - 00000000 ____D C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2017-01-06 22:48 - 2017-01-06 22:48 - 00000000 ____D C:\Users\Eveline\AppData\Local\Amazon
2017-01-04 22:54 - 2017-02-02 02:34 - 00000000 ____D C:\Users\Eveline\Documents\Vit D
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-02-02 22:17 - 2014-12-01 14:34 - 00000000 ____D C:\Users\Eveline\Documents\Outlook-Dateien
2017-02-02 22:16 - 2016-10-01 09:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-02 22:16 - 2016-10-01 09:17 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-02 22:15 - 2016-10-01 09:21 - 00000000 ____D C:\Users\Eveline
2017-02-02 22:15 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-02-02 22:13 - 2015-05-13 06:26 - 00000000 ____D C:\Users\Eveline\AppData\LocalLow\Temp
2017-02-02 22:12 - 2015-06-30 22:35 - 00000000 ____D C:\Users\Eveline\AppData\Local\CrashDumps
2017-02-02 22:07 - 2016-11-17 10:48 - 00000000 ____D C:\Users\Eveline\AppData\LocalLow\Mozilla
2017-02-02 20:00 - 2016-10-01 09:15 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-02 15:27 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-02 15:27 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-01 08:53 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-01 00:49 - 2014-12-02 20:54 - 00000000 ____D C:\Users\Eveline\.gimp-2.8
2017-01-31 23:21 - 2014-12-02 20:56 - 00000000 ____D C:\Users\Eveline\AppData\Local\gtk-2.0
2017-01-31 12:27 - 2014-12-01 12:22 - 00000000 ____D C:\Users\Eveline\AppData\Local\Packages
2017-01-31 12:24 - 2015-07-30 17:40 - 00000000 ____D C:\Users\Eveline\AppData\Roaming\Skype
2017-01-31 12:23 - 2016-10-03 13:12 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-31 12:23 - 2015-07-30 17:39 - 00000000 ____D C:\ProgramData\Skype
2017-01-31 12:16 - 2016-12-10 15:34 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-31 12:16 - 2015-08-02 11:59 - 945176964 _____ C:\WINDOWS\MEMORY.DMP
2017-01-30 14:44 - 2016-10-01 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-01-30 14:44 - 2015-01-01 13:27 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-29 01:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-01-28 14:16 - 2016-11-16 13:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-28 14:16 - 2015-07-07 15:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-28 00:25 - 2015-01-09 14:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-26 14:57 - 2015-03-18 10:19 - 00000000 ____D C:\Users\Eveline\AppData\Local\ElevatedDiagnostics
2017-01-25 00:47 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-24 18:10 - 2015-01-26 12:49 - 00000000 ____D C:\Users\Eveline\Documents\Rezepte
2017-01-18 14:23 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-18 14:21 - 2014-12-01 14:14 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-01-13 14:20 - 2014-12-01 20:22 - 00000000 ____D C:\Users\Eveline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2017-01-12 20:06 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-12 17:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-11 17:22 - 2014-12-01 12:11 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-11 17:19 - 2016-10-01 09:15 - 00351576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-11 17:17 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-11 17:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-11 17:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-11 17:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-11 17:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-11 17:09 - 2014-12-01 13:42 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-11 17:07 - 2014-04-24 17:12 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-12-07 11:44 - 2016-12-28 16:35 - 0000600 _____ () C:\Users\Eveline\AppData\Local\PUTTY.RND
2017-01-31 23:21 - 2017-01-31 23:21 - 0006573 _____ () C:\Users\Eveline\AppData\Local\recently-used.xbel
2016-10-01 09:17 - 2016-10-01 09:17 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-06-02 09:05 - 2014-06-02 09:06 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-06-02 08:40 - 2014-06-02 08:40 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-06-02 09:05 - 2014-06-02 09:05 - 0000032 _____ () C:\ProgramData\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}.log
2014-06-02 08:38 - 2014-06-02 08:38 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2014-06-02 09:03 - 2014-06-02 09:04 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
2014-06-02 09:03 - 2014-06-02 09:03 - 0000032 _____ () C:\ProgramData\{E1646825-D391-42A0-93AA-27FA810DA093}.log
2014-06-02 08:38 - 2014-06-02 08:39 - 0000110 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log
2014-06-02 08:40 - 2014-06-02 08:40 - 0000110 _____ () C:\ProgramData\{E3D04529-6EDB-11D8-A372-0050BAE317E1}.log
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-01-28 16:50
==================== Ende von FRST.txt ============================
__________________ Danke und liebe GrüßeEveline |
|
02.02.2017, 22:44
| #36 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! SystemLook
__________________ --> Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! |
|
03.02.2017, 20:37
| #37 |
| /// TB-Ausbilder | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus, versuch mal bitte folgendes: Installiere MBAM nochmal, starte den Rechner neu auf und deinstalliere das Programm über die Systemsteuerung. |
|
03.02.2017, 21:03
| #38 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Beim Installieren gab es 12 Fehlermeldungen, eine davon ist im Anhang. Die anderen 11 lauteten genau so, nur mit einer anderen Datei... Nach der Installation gab es dann 2 Programme, das Neue und das Alte, was sich nicht löschen lässt. Screenshot im Anhang. Die Löschung von neu installierten Programm ging problemlos, aber das andere ist noch immer da und lässt sich auch weiterhin nicht löschen. Es scheint auch nicht bei den Programmen auf, nur das neu installiere war zu sehen,- Screenshot 3.
__________________ Danke und liebe GrüßeEveline |
|
03.02.2017, 21:53
| #39 |
| /// TB-Ausbilder | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus, Deaktiviere den Echtzeitschutz von Avira. Bitte berichte mir, ob es evtl. Probleme bei der Durchführung gibt bzw. welche Meldungen du von GMER bekommen hast.
|
|
03.02.2017, 22:28
| #40 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! GMER konnte auch nichts löschen. Alle Meldungen sind im Anhang!
__________________ Danke und liebe GrüßeEveline Geändert von evaioan (03.02.2017 um 22:51 Uhr) |
|
04.02.2017, 00:15
| #41 |
| /// TB-Ausbilder | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus, dann versuchen wir es mit FRST im Reparaturmodus: Dazu die FRST.exe auf einen USB-Stick speichern und der Anleitung folgen:  Scan mit FRST im Recovery-Modus von Windows 10 Szenario 1: Windows 10 lässt sich im Normalmodus starten. Schritt 1: Neustart des PC bei gedrückter SHIFT-Taste Schritt 2: "Problembehandlung" auswählen Schritt 3: Aufruf der "Erweiterten Optionen" Schritt 4: "Eingabeaufforderung" auswählen Schritt 5: Benutzerkonto auswählen Schritt 6: Falls gesetzt: "Kennwort-Eingabe" Schritt 7: "Eingabeaufforderung" wird geöffnet.        Weiteres Vorgehen: http://www.trojaner-board.de/132035-...ml#post1026554 Szenario 2: Windows 10 lässt sich nicht im Normalmodus starten. Schritt 1: "Erweiterte Reparaturoptionen anzeigen" auswählen. Analoges Vorgehen wie bei den Schritten 2-7 (siehe oben).  Nach Schritt 7 der bebilderten Anleitung geht es so weiter:
Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier nach Möglichkeit in Code-Tags (Anleitung). |
|
04.02.2017, 22:04
| #42 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus  ,habe im Moment leider keinen USB-Stick zu Hause und kann die gewünschte Datei nicht posten. Aber GMER hat einen Fund gemeldet, kannst du da bitte drüberschauen? Ich weiß nicht, was das zu bedeuten hat. Vielen Dank! Code:
ATTFilter GMER 2.2.19882 - hxxp://www.gmer.net
Rootkit scan 2017-02-04 21:56:18
Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\0000002c ST1000DM003-1CH162 rev.CC47 931,51GB
Running: znn0jglb.exe; Driver: C:\Users\Eveline\AppData\Local\Temp\fwdiqpog.sys
---- User code sections - GMER 2.2 ----
.text C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE[5720] C:\Program Files\Microsoft Office 15\Root\Office15\outlrpc.dll!MAPIRevokeMoniker@4 + 657 000000005e79287c 4 bytes [F4, 82, E5, 5D]
---- Threads - GMER 2.2 ----
Thread C:\WINDOWS\system32\csrss.exe [668:740] ffffee8dd5d36c20
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:4368] 000000005cf7e5d9
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:4364] 0000000067ac894d
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:2600] 0000000067ac876d
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:4732] 0000000067ac894d
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:6800] 0000000067ac894d
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:4700] 0000000067ac894d
Thread C:\WINDOWS\SysWOW64\SearchProtocolHost.exe [6108:7416] 0000000067ac894d
---- Processes - GMER 2.2 ----
Library C:\Program Files (x86)\Common Files\Microsoft Shared\Office15\mso.dll (*** suspicious ***) @ C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE [5720] 0000000067ab0000
Library C:\Program Files (x86)\Common Files\Microsoft Shared\Office15\riched20.dll (*** suspicious ***) @ C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE [5720] 0000000063300000
Library C:\Program Files (x86)\Common Files\Microsoft Shared\Office15\MSPTLS.DLL (*** suspicious ***) @ C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE [5720] 000000005eec0000
---- Services - GMER 2.2 ----
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [AUTO] CDPUserSvc_47be3 <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [MANUAL] MessagingService_47be3 <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [AUTO] OneSyncSvc_47be3 <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [MANUAL] PimIndexMaintenanceSvc_47be3 <-- ROOTKIT !!!
Service C:\WINDOWS\System32\svchost.exe (*** hidden *** ) [MANUAL] UnistoreSvc_47be3 <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [MANUAL] UserDataSvc_47be3 <-- ROOTKIT !!!
Service C:\WINDOWS\system32\drivers\WdBoot.sys (*** hidden *** ) [MANUAL] WdBoot <-- ROOTKIT !!!
Service C:\WINDOWS\system32\drivers\WdFilter.sys (*** hidden *** ) [MANUAL] WdFilter <-- ROOTKIT !!!
Service C:\Program Files (x86)\Windows Defender\MsMpEng.exe (*** hidden *** ) [MANUAL] WinDefend <-- ROOTKIT !!!
Service C:\WINDOWS\system32\svchost.exe (*** hidden *** ) [MANUAL] WpnUserService_47be3 <-- ROOTKIT !!!
---- Registry - GMER 2.2 ----
Reg HKLM\SYSTEM\CurrentControlSet\Control\BackupRestore\FilesNotToSnapshot@OfficeODC ?????????????????????????m???3???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????:????????????????????????????????????????????? ??? ??? ??? ??? ??? ?????????????????????????????????????????????????????????????????????????????????????????????????????A????????????????????????????????????????????? ??? ?C? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ??? ???#???#???#??????N??????????e??%SystemRoot%\system32\AppReadiness.dll??????? ?????????????S??????????"?????????????????? ????????????????????????$????????? ???????e???? ????????????????????????????L???????????????????b??????`?W?`??%SystemRoot%\system32\LogFiles\WMI\RtBackup\*.*?????????????????????????????????????????????????????????????????????????????????\System Volume Information\FVE2.{e40ad34d-dae9-4bc7-95bd-b16218c10f72}.*????????????????????\System Volume Information\FVE2.{c9ca54a3-6983-46b7-8684-a7e5e23499e3}??????????????????????\System Volume Information\FVE2
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemStartTime 0x07 0xD2 0x70 0xA3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemLastStartTime 0x94 0x27 0x29 0xA8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFStartTime 0x07 0xD2 0x70 0xA3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@CMFLastStartTime 0x94 0x27 0x29 0xA8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData\BootLanguages@de-DE 52
Reg HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\QMX242170905066XXXX_00_07DA_91^1CF18BE3E17C2CFF30F8F052769AA11A@Timestamp 0xA4 0x8F 0x10 0xA4 ...
Reg HKLM\SYSTEM\CurrentControlSet\Control\Lsa@LsaPid 756
Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{4C261485-DA02-4ED2-8119-CC5DBA04C687}\Connection@Name isatap.{B189EB4B-65B6-4291-BCB5-C024EDD5E03C}
Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed -650687587
Reg HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@InstanceID 481883e0-f29b-4025-8552-a9c2bdf
Reg HKLM\SYSTEM\CurrentControlSet\Control\WDI\Config@ServerName \BaseNamedObjects\WDI_{63b9bc55-8ff4-4e3c-b7df-1f457561f064}
Reg HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\DefenderApiLogger@Start 0
Reg HKLM\SYSTEM\CurrentControlSet\Control\WMI\Autologger\DefenderAuditLogger@Start 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\BITS@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\BITS\Performance@PerfMMFileName Global\MMF_BITS266ba4bd-1183-4463-bf17-cb1b9e9ead69
Reg HKLM\SYSTEM\CurrentControlSet\Services\BITS
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@ErrorControl 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@DisplayName CDPUserSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3@Description @%SystemRoot%\system32\cdpusersvc.dll,-101
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3\Security@Security 0x01 0x00 0x14 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\CDPUserSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters\Probe\{8178e1b4-f9f8-4350-88f1-8a86e5492e7b}@LastProbeTime 1486213394
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{4C261485-DA02-4ED2-8119-CC5DBA04C687}@InterfaceName isatap.{B189EB4B-65B6-4291-BCB5-C024EDD5E03C}
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{4C261485-DA02-4ED2-8119-CC5DBA04C687}@ReusableType 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{4C261485-DA02-4ED2-8119-CC5DBA04C687}@DefunctTimestamp 0x9F 0x38 0x96 0x58 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@DisplayName MessagingService_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3@Description @%SystemRoot%\system32\MessagingService.dll,-101
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\Security@Security 0x01 0x00 0x14 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo\0
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo\0@Type 7
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo\0@Action 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo\0@Guid 0x16 0x28 0x7A 0x2D ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo\0@Data0 0x75 0x18 0xBC 0xA3 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3\TriggerInfo\0@DataType0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\MessagingService_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\monitor\Parameters\Wdf@TimeOfLastTelemetryLog 0xF6 0x36 0x51 0x40 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@DisplayName Synchronisierungshost_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3@Description @%SystemRoot%\system32\APHostRes.dll,-10001
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\OneSyncSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@DisplayName Kontaktdaten_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3@Description @%SystemRoot%\system32\UserDataAccessRes.dll,-15000
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\PimIndexMaintenanceSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Diagnostics@ReadyBootTrainingCountSinceLastServicing 31
Reg HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@ReadyBootPlanAge 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@LastBootPlanUserTime ?Sa.?, ?Feb. ?04 ?17, 03:24:35????????????????????????+????????
Reg HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@EffectivePends 308
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 6445
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 2459
Reg HKLM\SYSTEM\CurrentControlSet\Services\srvnet\Parameters@MajorSequence 51
Reg HKLM\SYSTEM\CurrentControlSet\Services\sshid\Parameters\Wdf@TimeOfLastTelemetryLog 0xBA 0xBE 0x18 0x3F ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{b189eb4b-65b6-4291-bcb5-c024edd5e03c}@LeaseObtainedTime 1486240134
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{b189eb4b-65b6-4291-bcb5-c024edd5e03c}@T1 1486283334
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{b189eb4b-65b6-4291-bcb5-c024edd5e03c}@T2 1486315734
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{b189eb4b-65b6-4291-bcb5-c024edd5e03c}@LeaseTerminatesTime 1486326534
Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\Interfaces\{7114389a-a0d1-4fc8-a81a-efc3d9509e58}@Dhcpv6State 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@ImagePath C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@DisplayName Benutzerdatenspeicher _47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3@Description @%SystemRoot%\system32\UserDataAccessRes.dll,-10002
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UnistoreSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@DisplayName Benutzerdatenzugriff_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3@Description @%SystemRoot%\system32\UserDataAccessRes.dll,-14000
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\UserDataSvc_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated 0xBF 0xA2 0xC6 0x96 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh 0xBF 0x0A 0x8B 0xF8 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow 0xBF 0x3A 0x02 0x35 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot@Group _Early-Launch
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot@ImagePath \SystemRoot\system32\drivers\WdBoot.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdBoot
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdFilter@ImagePath \SystemRoot\system32\drivers\WdFilter.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdFilter@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WdFilter
Reg HKLM\SYSTEM\CurrentControlSet\Services\WinDefend@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WinDefend
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpdUpFltr\Parameters\Wdf@TimeOfLastTelemetryLog 0xAF 0x4E 0xD4 0x40 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@Type 224
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@Start 3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@ErrorControl 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@ImagePath C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@DisplayName Windows-Pushbenachrichtigungs-Benutzerdienst_47be3
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@FailureActions 0x80 0x51 0x01 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3@Description @%SystemRoot%\system32\WpnUserService.dll,-2
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3\Security
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3\Security@Security 0x01 0x00 0x04 0x80 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\WpnUserService_47be3
Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\60\0@Rw 0x64 0x62 0x03 0x00 ...
Reg HKLM\SYSTEM\Setup\Upgrade\NsiMigrationRoot\60\0@RwMask 0x64 0x62 0x03 0x00 ...
Reg HKLM\SYSTEM\Setup\Upgrade\Pnp\CurrentControlSet\Control\DeviceMigration\Devices\SWD\DAFUPNPPROVIDER\UUID:B6B1E5B7-3E7B-07F2-89E5-342355D84EB7\Interfaces\{d0875fb4-2196-4c7a-a63d-e416addd60a1}\Properties\{88ad39db-0d0c-4a38-8435-4043826b5c91}\000E@ 0x64 0x62 0x03 0x00 ...
Reg HKLM\SYSTEM\Setup\Upgrade\Pnp\CurrentControlSet\Control\DeviceMigration\Devices\SWD\DAFUPNPPROVIDER\UUID:B6B1E5B7-3E7B-07F2-89E5-342355D84EB7\Properties\{88ad39db-0d0c-4a38-8435-4043826b5c91}\000E@ 0x64 0x62 0x03 0x00 ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@WindowsRequestBucketCounter 6
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsRequestBucketDrainTime 0x27 0xD6 0xEE 0x56 ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsLargeRequestBucketDrainTime 0x27 0xD6 0xEE 0x56 ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastOtherRequestBucketDrainTime 0x27 0xD6 0xEE 0x56 ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastGlobalRequestBucketDrainTime 0x27 0xD6 0xEE 0x56 ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{15B8A2BE-30C0-4C57-A5EE-F6530E70D094}
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{15B8A2BE-30C0-4C57-A5EE-F6530E70D094}@LastAccessedTime 0xB0 0xDC 0x84 0xBC ...
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{15B8A2BE-30C0-4C57-A5EE-F6530E70D094}@AppId FileZilla.Client.AppID
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Search\RecentApps\{15B8A2BE-30C0-4C57-A5EE-F6530E70D094}@LaunchCount 1
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\SettingSync\SyncData\Namespace\windows\remotesyncdummyid@PendingOperations 8192
Reg HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\SettingSync\SyncData\Namespace\windows\wireless@IsLocalReplicaDirty 0
---- Disk sectors - GMER 2.2 ----
Disk \Device\Harddisk0\DR0 unknown MBR code
---- EOF - GMER 2.2 ----
__________________ Danke und liebe GrüßeEveline |
|
05.02.2017, 13:36
| #43 |
| /// TB-Ausbilder | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus, poste mir bitte die FRST.txt vom Reparaturmodus sobald verfügbar. der Fund von GMER ist ein sog. false positive, d. h. GMER zeigt hier fälschlicherweise an, dass die Dateien schädlich sind und auf eine Rootkit hindeuten. Zur Kontrolle bitte TDSS-Kiiller ausführen: Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
|
|
05.02.2017, 14:23
| #44 |
| | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Hallo und schönen Sonntag! Seit 2 Tagen ist mein PC auch langsamer, der Browser friert ab und zu ein und der PC lässt sich nicht immer hinunter fahren. Der Bildschirm schaltet sich zwar aus, aber der PC und die Tastatur bleiben an. Erst, wenn ich den Hauptschalter eine Weile gedrückt halte, dann fährt er ganz hinunter. Code:
ATTFilter 14:15:10.0227 0x17d8 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
14:15:10.0227 0x17d8 UEFI system
14:15:15.0425 0x17d8 ============================================================
14:15:15.0425 0x17d8 Current date / time: 2017/02/05 14:15:15.0425
14:15:15.0436 0x17d8 SystemInfo:
14:15:15.0436 0x17d8
14:15:15.0437 0x17d8 OS Version: 10.0.14393 ServicePack: 0.0
14:15:15.0437 0x17d8 Product type: Workstation
14:15:15.0437 0x17d8 ComputerName: TRAUSDORFBÄR
14:15:15.0437 0x17d8 UserName: Eveline
14:15:15.0437 0x17d8 Windows directory: C:\WINDOWS
14:15:15.0437 0x17d8 System windows directory: C:\WINDOWS
14:15:15.0437 0x17d8 Running under WOW64
14:15:15.0437 0x17d8 Processor architecture: Intel x64
14:15:15.0437 0x17d8 Number of processors: 4
14:15:15.0437 0x17d8 Page size: 0x1000
14:15:15.0437 0x17d8 Boot type: Normal boot
14:15:15.0437 0x17d8 CodeIntegrityOptions = 0x00000001
14:15:15.0437 0x17d8 ============================================================
14:15:16.0190 0x17d8 KLMD registered as C:\WINDOWS\system32\drivers\75826983.sys
14:15:16.0190 0x17d8 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.693, osProperties = 0x19
14:15:16.0836 0x17d8 System UUID: {EEB39B5E-9476-F330-7B9C-F212FFC0ABBE}
14:15:17.0360 0x17d8 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:15:17.0385 0x17d8 ============================================================
14:15:17.0385 0x17d8 \Device\Harddisk0\DR0:
14:15:17.0393 0x17d8 GPT partitions:
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7E0D0BA7-4D45-4F09-BBA8-C2A183A9C282}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {47EA8986-068D-4982-A02E-081C6663B764}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {0FAAE7E9-56B6-43AA-B5D7-A13CDD304AC8}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x40000
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {8D7F0CC6-879E-47F6-A767-0ED8FD3B0659}, UniqueGUID: {07F41686-314D-45A7-82AB-1E7A837573AC}, Name: Basic data partition, StartLBA 0x16C000, BlocksNum 0x200000
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D257ABB2-D7F4-4A43-B4D0-D0326336409E}, Name: Basic data partition, StartLBA 0x36C000, BlocksNum 0x6CAB9D8F
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {556509AE-58AF-4AD8-B591-74760D8D0665}, Name: , StartLBA 0x6CE26000, BlocksNum 0xE1000
14:15:17.0394 0x17d8 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {C12BBF49-B8EB-4BBF-9746-6A9A88FDE6F9}, Name: Basic data partition, StartLBA 0x6CF07000, BlocksNum 0x77FD000
14:15:17.0394 0x17d8 MBR partitions:
14:15:17.0394 0x17d8 ============================================================
14:15:17.0412 0x17d8 C: <-> \Device\Harddisk0\DR0\Partition5
14:15:17.0453 0x17d8 D: <-> \Device\Harddisk0\DR0\Partition7
14:15:17.0453 0x17d8 ============================================================
14:15:17.0453 0x17d8 Initialize success
14:15:17.0453 0x17d8 ============================================================
14:15:56.0460 0x28cc ============================================================
14:15:56.0460 0x28cc Scan started
14:15:56.0460 0x28cc Mode: Manual; SigCheck; TDLFS;
14:15:56.0460 0x28cc ============================================================
14:15:56.0460 0x28cc KSN ping started
14:15:56.0467 0x28cc KSN ping finished: false
14:16:01.0016 0x28cc ================ Scan system memory ========================
14:16:01.0016 0x28cc System memory - ok
14:16:01.0017 0x28cc ================ Scan services =============================
14:16:01.0138 0x28cc 1394ohci - ok
14:16:01.0144 0x28cc 3ware - ok
14:16:01.0161 0x28cc ACPI - ok
14:16:01.0166 0x28cc AcpiDev - ok
14:16:01.0171 0x28cc acpiex - ok
14:16:01.0176 0x28cc acpipagr - ok
14:16:01.0195 0x28cc AcpiPmi - ok
14:16:01.0197 0x28cc acpitime - ok
14:16:01.0258 0x28cc [ 2D766591E87FFFF237C0C9C16CDDECAB, AF04A4C029FD34A5F16B689A4F7F328FCEE11B0033E077FF5FC154C6021B2986 ] ACT2PM C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor64.sys
14:16:01.0298 0x28cc ACT2PM - ok
14:16:01.0331 0x28cc [ C47D15FC2CA269DD2EC5946953C5BF03, 20C9CEDECE45E24AA9C78A1FFE4BE6D150B10B726F6F576889971E40CDA267C4 ] ACT2_Service C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
14:16:01.0361 0x28cc ACT2_Service - ok
14:16:01.0377 0x28cc ADP80XX - ok
14:16:01.0394 0x28cc AFD - ok
14:16:01.0403 0x28cc ahcache - ok
14:16:01.0475 0x28cc [ 1CC3E547FE3DEC8272780F24F3059519, 72400F60D41239E9F2493DF71472704ECB006F5871E3CBB125DE2D0303051617 ] AHDDC2 C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe
14:16:01.0509 0x28cc AHDDC2 - ok
14:16:01.0527 0x28cc AJRouter - ok
14:16:01.0532 0x28cc ALG - ok
14:16:01.0534 0x28cc AmdK8 - ok
14:16:01.0536 0x28cc AmdPPM - ok
14:16:01.0538 0x28cc amdsata - ok
14:16:01.0541 0x28cc amdsbs - ok
14:16:01.0543 0x28cc amdxata - ok
14:16:01.0648 0x28cc [ 98D7647EF729503A60EF870DA5C21D0D, 7E36E8E3D9D0BD940DC225E1DB7EFD90F76F7BE8DCAD9782255556C31D6FD476 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
14:16:01.0681 0x28cc AntiVirMailService - ok
14:16:01.0718 0x28cc [ 229E752A26B53E155524D6530B95CDD4, B4D3DEA52860143D16A57EBA31CD3394B8B4FEA642EB3A736C8388447AB7E0E9 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
14:16:01.0733 0x28cc AntiVirSchedulerService - ok
14:16:01.0751 0x28cc [ 229E752A26B53E155524D6530B95CDD4, B4D3DEA52860143D16A57EBA31CD3394B8B4FEA642EB3A736C8388447AB7E0E9 ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
14:16:01.0765 0x28cc AntiVirService - ok
14:16:01.0819 0x28cc [ F2B26CD2305E917B1EA1BF49E0C59E31, 8CCE64C68B80D56C7604DB6ABD187F66C624462328F4886C607F0A46D8E9DE92 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
14:16:01.0850 0x28cc AntiVirWebService - ok
14:16:01.0866 0x28cc AppID - ok
14:16:01.0868 0x28cc AppIDSvc - ok
14:16:01.0877 0x28cc Appinfo - ok
14:16:01.0886 0x28cc applockerfltr - ok
14:16:01.0904 0x28cc AppReadiness - ok
14:16:01.0920 0x28cc AppXSvc - ok
14:16:01.0930 0x28cc arcsas - ok
14:16:01.0936 0x28cc AsyncMac - ok
14:16:01.0942 0x28cc atapi - ok
14:16:01.0950 0x28cc AudioEndpointBuilder - ok
14:16:01.0964 0x28cc Audiosrv - ok
14:16:01.0987 0x28cc [ 19A629CC661BBB49E25203B9626354F9, 9FDE67E19CE0B5973441A11EB0D5CD8187C1B47B3A2C866FD6BD939D31F42924 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
14:16:01.0999 0x28cc avgntflt - ok
14:16:02.0025 0x28cc [ B34C86461D03F33E9B1A57699DCABED3, 127A63A3AEC796DDF7E19432CAF523CA23051058752B9772244655797B3B4CDB ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
14:16:02.0033 0x28cc avipbb - ok
14:16:02.0135 0x28cc [ 2AEE4D1D7E668F1CCF97EDE93509B0EE, B082B3BBB27D3C8B26A754508C3B98BA803FEA707898FF18A120D6A2679098DF ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
14:16:02.0162 0x28cc Avira.ServiceHost - ok
14:16:02.0214 0x28cc [ 8D2830B4A88B957890AC292686140E2D, 5B645D67EC327E074C0A01B2CDF2FDBF376B6F869E2724F2699A7DEF4AA366D2 ] AviraUpdaterService C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
14:16:02.0237 0x28cc AviraUpdaterService - ok
14:16:02.0264 0x28cc [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
14:16:02.0278 0x28cc avkmgr - ok
14:16:02.0287 0x28cc [ 899D89FDF015BBAF628076987D74C295, 7534A10F652FBE559431B9B1C6BC13874E8BC7438D7AFD7553F96811FD3E59BD ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
14:16:02.0299 0x28cc avnetflt - ok
14:16:02.0305 0x28cc [ D19DA6C23FC2C4AF294E60CB7752D64C, 8EFC1D45A297D8881E89B00BF5993502D57F50C0ADBE07607FF140EEC724DC43 ] avusbflt C:\WINDOWS\system32\Drivers\avusbflt.sys
14:16:02.0311 0x28cc avusbflt - ok
14:16:02.0328 0x28cc AxInstSV - ok
14:16:02.0331 0x28cc b06bdrv - ok
14:16:02.0347 0x28cc BasicDisplay - ok
14:16:02.0349 0x28cc BasicRender - ok
14:16:02.0355 0x28cc bcmfn - ok
14:16:02.0357 0x28cc bcmfn2 - ok
14:16:02.0366 0x28cc BDESVC - ok
14:16:02.0374 0x28cc Beep - ok
14:16:02.0381 0x28cc BFE - ok
14:16:02.0399 0x28cc BITS - ok
14:16:02.0413 0x28cc bowser - ok
14:16:02.0425 0x28cc BrokerInfrastructure - ok
14:16:02.0431 0x28cc Browser - ok
14:16:02.0445 0x28cc BthAvrcpTg - ok
14:16:02.0450 0x28cc BthHFEnum - ok
14:16:02.0455 0x28cc bthhfhid - ok
14:16:02.0472 0x28cc BthHFSrv - ok
14:16:02.0477 0x28cc BTHMODEM - ok
14:16:02.0481 0x28cc bthserv - ok
14:16:02.0484 0x28cc buttonconverter - ok
14:16:02.0500 0x28cc CapImg - ok
14:16:02.0503 0x28cc cdfs - ok
14:16:02.0520 0x28cc CDPSvc - ok
14:16:02.0538 0x28cc CDPUserSvc - ok
14:16:02.0558 0x28cc cdrom - ok
14:16:02.0592 0x28cc CertPropSvc - ok
14:16:02.0595 0x28cc cht4iscsi - ok
14:16:02.0597 0x28cc cht4vbd - ok
14:16:02.0600 0x28cc circlass - ok
14:16:02.0605 0x28cc CLFS - ok
14:16:02.0783 0x28cc [ 45AF5F89D707C3F64AC59B627AE34A30, 3E0D50463133FD7D57419258C88D80FF47F2729636D7836EE2567F94B0BA0358 ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
14:16:02.0840 0x28cc ClickToRunSvc - ok
14:16:02.0845 0x28cc ClipSVC - ok
14:16:02.0847 0x28cc clreg - ok
14:16:02.0876 0x28cc [ 3E76A1547F2448BCEE3D2F4AE3931AB5, 31B41723FAA4210A86B1AE02D6C052BD8B738C4B89FB0177C1AE997D24BA5B8C ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
14:16:02.0884 0x28cc CLVirtualDrive - ok
14:16:02.0886 0x28cc CmBatt - ok
14:16:02.0889 0x28cc CNG - ok
14:16:02.0891 0x28cc cnghwassist - ok
14:16:02.0936 0x28cc CompositeBus - ok
14:16:02.0943 0x28cc COMSysApp - ok
14:16:02.0949 0x28cc condrv - ok
14:16:02.0967 0x28cc CoreMessagingRegistrar - ok
14:16:02.0982 0x28cc CryptSvc - ok
14:16:03.0055 0x28cc [ 9FF6436D65CD8C798691373E28FBFB3B, 7A9ACD14679FB82E71EF4C47E43DAD931EC4FD727A5656AF8A3CC3B95D67EB5B ] CyberLink PowerDVD 10 MS Monitor Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
14:16:03.0079 0x28cc CyberLink PowerDVD 10 MS Monitor Service - ok
14:16:03.0098 0x28cc [ 06B5C625CB915E9A7A1F08A43E332FA1, 66F0BFE088B44ED3D36E62DC05200CD09F135FF63C447846C603D6246FABB9BE ] CyberLink PowerDVD 10 MS Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
14:16:03.0113 0x28cc CyberLink PowerDVD 10 MS Service - ok
14:16:03.0120 0x28cc dam - ok
14:16:03.0137 0x28cc DcomLaunch - ok
14:16:03.0140 0x28cc DcpSvc - ok
14:16:03.0150 0x28cc defragsvc - ok
14:16:03.0157 0x28cc DeviceAssociationService - ok
14:16:03.0160 0x28cc DeviceInstall - ok
14:16:03.0162 0x28cc DevQueryBroker - ok
14:16:03.0177 0x28cc Dfsc - ok
14:16:03.0182 0x28cc Dhcp - ok
14:16:03.0214 0x28cc diagnosticshub.standardcollector.service - ok
14:16:03.0230 0x28cc DiagTrack - ok
14:16:03.0247 0x28cc disk - ok
14:16:03.0273 0x28cc DmEnrollmentSvc - ok
14:16:03.0275 0x28cc dmvsc - ok
14:16:03.0277 0x28cc dmwappushservice - ok
14:16:03.0291 0x28cc Dnscache - ok
14:16:03.0295 0x28cc dot3svc - ok
14:16:03.0297 0x28cc DPS - ok
14:16:03.0308 0x28cc drmkaud - ok
14:16:03.0311 0x28cc DsmSvc - ok
14:16:03.0313 0x28cc DsSvc - ok
14:16:03.0315 0x28cc DXGKrnl - ok
14:16:03.0318 0x28cc EapHost - ok
14:16:03.0320 0x28cc ebdrv - ok
14:16:03.0330 0x28cc EFS - ok
14:16:03.0333 0x28cc EhStorClass - ok
14:16:03.0363 0x28cc EhStorTcgDrv - ok
14:16:03.0366 0x28cc embeddedmode - ok
14:16:03.0380 0x28cc EntAppSvc - ok
14:16:03.0382 0x28cc ErrDev - ok
14:16:03.0393 0x28cc EventSystem - ok
14:16:03.0395 0x28cc exfat - ok
14:16:03.0407 0x28cc fastfat - ok
14:16:03.0410 0x28cc Fax - ok
14:16:03.0413 0x28cc fdc - ok
14:16:03.0415 0x28cc fdPHost - ok
14:16:03.0417 0x28cc FDResPub - ok
14:16:03.0433 0x28cc fhsvc - ok
14:16:03.0454 0x28cc FileCrypt - ok
14:16:03.0456 0x28cc FileInfo - ok
14:16:03.0458 0x28cc Filetrace - ok
14:16:03.0460 0x28cc flpydisk - ok
14:16:03.0462 0x28cc FltMgr - ok
14:16:03.0479 0x28cc FontCache - ok
14:16:03.0564 0x28cc FontCache3.0.0.0 - ok
14:16:03.0591 0x28cc FrameServer - ok
14:16:03.0598 0x28cc FsDepends - ok
14:16:03.0607 0x28cc Fs_Rec - ok
14:16:03.0624 0x28cc fvevol - ok
14:16:03.0628 0x28cc gencounter - ok
14:16:03.0631 0x28cc genericusbfn - ok
14:16:03.0634 0x28cc GPIOClx0101 - ok
14:16:03.0644 0x28cc gpsvc - ok
14:16:03.0647 0x28cc GpuEnergyDrv - ok
14:16:03.0694 0x28cc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:16:03.0707 0x28cc gupdate - ok
14:16:03.0711 0x28cc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:16:03.0718 0x28cc gupdatem - ok
14:16:03.0721 0x28cc HDAudBus - ok
14:16:03.0723 0x28cc HidBatt - ok
14:16:03.0725 0x28cc HidBth - ok
14:16:03.0728 0x28cc hidi2c - ok
14:16:03.0730 0x28cc hidinterrupt - ok
14:16:03.0731 0x28cc HidIr - ok
14:16:03.0742 0x28cc hidserv - ok
14:16:03.0762 0x28cc HidUsb - ok
14:16:03.0779 0x28cc HomeGroupListener - ok
14:16:03.0790 0x28cc HomeGroupProvider - ok
14:16:03.0792 0x28cc HpSAMD - ok
14:16:03.0794 0x28cc HTTP - ok
14:16:03.0813 0x28cc HvHost - ok
14:16:03.0831 0x28cc hvservice - ok
14:16:03.0833 0x28cc hwpolicy - ok
14:16:03.0835 0x28cc hyperkbd - ok
14:16:03.0849 0x28cc i8042prt - ok
14:16:03.0851 0x28cc iagpio - ok
14:16:03.0853 0x28cc iai2c - ok
14:16:03.0855 0x28cc iaLPSS2i_GPIO2 - ok
14:16:03.0858 0x28cc iaLPSS2i_I2C - ok
14:16:03.0860 0x28cc iaLPSSi_GPIO - ok
14:16:03.0862 0x28cc iaLPSSi_I2C - ok
14:16:03.0879 0x28cc [ 25555186E4FBDF0E30A5DBFC9B9A73F9, 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
14:16:03.0896 0x28cc iaStorA - ok
14:16:03.0899 0x28cc iaStorAV - ok
14:16:03.0938 0x28cc [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
14:16:03.0944 0x28cc IAStorDataMgrSvc - ok
14:16:03.0946 0x28cc iaStorV - ok
14:16:03.0948 0x28cc ibbus - ok
14:16:03.0962 0x28cc icssvc - ok
14:16:03.0964 0x28cc IKEEXT - ok
14:16:03.0970 0x28cc IndirectKmd - ok
14:16:04.0098 0x28cc [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
14:16:04.0175 0x28cc IntcAzAudAddService - ok
14:16:04.0201 0x28cc [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
14:16:04.0246 0x28cc Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
14:16:04.0310 0x28cc Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - warning
14:16:04.0339 0x28cc [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:16:04.0358 0x28cc Intel(R) Capability Licensing Service TCP IP Interface - ok
14:16:04.0420 0x28cc [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
14:16:04.0447 0x28cc Intel(R) ME Service - ok
14:16:04.0460 0x28cc intelide - ok
14:16:04.0475 0x28cc intelpep - ok
14:16:04.0483 0x28cc intelppm - ok
14:16:04.0490 0x28cc iorate - ok
14:16:04.0492 0x28cc IpFilterDriver - ok
14:16:04.0512 0x28cc iphlpsvc - ok
14:16:04.0516 0x28cc IPMIDRV - ok
14:16:04.0520 0x28cc IPNAT - ok
14:16:04.0523 0x28cc irda - ok
14:16:04.0527 0x28cc IRENUM - ok
14:16:04.0540 0x28cc irmon - ok
14:16:04.0543 0x28cc isapnp - ok
14:16:04.0547 0x28cc iScsiPrt - ok
14:16:04.0568 0x28cc [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
14:16:04.0577 0x28cc jhi_service - ok
14:16:04.0580 0x28cc kbdclass - ok
14:16:04.0595 0x28cc kbdhid - ok
14:16:04.0600 0x28cc kdnic - ok
14:16:04.0602 0x28cc KeyIso - ok
14:16:04.0607 0x28cc KSecDD - ok
14:16:04.0609 0x28cc KSecPkg - ok
14:16:04.0611 0x28cc ksthunk - ok
14:16:04.0614 0x28cc KtmRm - ok
14:16:04.0621 0x28cc LanmanServer - ok
14:16:04.0631 0x28cc LanmanWorkstation - ok
14:16:04.0634 0x28cc lfsvc - ok
14:16:04.0641 0x28cc LicenseManager - ok
14:16:04.0643 0x28cc lltdio - ok
14:16:04.0646 0x28cc lltdsvc - ok
14:16:04.0652 0x28cc lmhosts - ok
14:16:04.0690 0x28cc [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:16:04.0702 0x28cc LMS - ok
14:16:04.0706 0x28cc LSI_SAS - ok
14:16:04.0708 0x28cc LSI_SAS2i - ok
14:16:04.0710 0x28cc LSI_SAS3i - ok
14:16:04.0712 0x28cc LSI_SSS - ok
14:16:04.0715 0x28cc LSM - ok
14:16:04.0717 0x28cc luafv - ok
14:16:04.0727 0x28cc MapsBroker - ok
14:16:04.0768 0x28cc [ BDE2FC7213C0897524C1357BAAE30239, 1E1AB68145107429217E07A662477C86406E0188BE9F01CAC416AC13054D1A5E ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
14:16:04.0779 0x28cc MBAMSwissArmy - ok
14:16:04.0782 0x28cc megasas - ok
14:16:04.0791 0x28cc megasas2i - ok
14:16:04.0793 0x28cc megasr - ok
14:16:04.0815 0x28cc [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
14:16:04.0823 0x28cc MEIx64 - ok
14:16:04.0835 0x28cc MessagingService - ok
14:16:04.0854 0x28cc mlx4_bus - ok
14:16:04.0856 0x28cc MMCSS - ok
14:16:04.0866 0x28cc Modem - ok
14:16:04.0871 0x28cc monitor - ok
14:16:04.0873 0x28cc mouclass - ok
14:16:04.0875 0x28cc mouhid - ok
14:16:04.0878 0x28cc mountmgr - ok
14:16:04.0901 0x28cc [ ADF79A49E942C91D1FC9863CBFDD6B58, C2B2A792C4717133DCAE6297EE3F5D985B11D3C1E68A8DC23985AC6B78ACDE98 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:16:04.0910 0x28cc MozillaMaintenance - ok
14:16:04.0915 0x28cc mpsdrv - ok
14:16:04.0918 0x28cc MpsSvc - ok
14:16:04.0924 0x28cc MRxDAV - ok
14:16:04.0939 0x28cc mrxsmb - ok
14:16:04.0941 0x28cc mrxsmb10 - ok
14:16:04.0943 0x28cc mrxsmb20 - ok
14:16:04.0945 0x28cc MsBridge - ok
14:16:04.0954 0x28cc MSDTC - ok
14:16:04.0958 0x28cc Msfs - ok
14:16:04.0962 0x28cc msgpiowin32 - ok
14:16:04.0965 0x28cc mshidkmdf - ok
14:16:04.0967 0x28cc mshidumdf - ok
14:16:04.0969 0x28cc msisadrv - ok
14:16:04.0985 0x28cc MSiSCSI - ok
14:16:04.0988 0x28cc msiserver - ok
14:16:04.0990 0x28cc MSKSSRV - ok
14:16:04.0992 0x28cc MsLldp - ok
14:16:04.0993 0x28cc MSPCLOCK - ok
14:16:04.0995 0x28cc MSPQM - ok
14:16:04.0997 0x28cc MsRPC - ok
14:16:05.0001 0x28cc mssmbios - ok
14:16:05.0004 0x28cc MSTEE - ok
14:16:05.0006 0x28cc MTConfig - ok
14:16:05.0008 0x28cc Mup - ok
14:16:05.0010 0x28cc mvumis - ok
14:16:05.0023 0x28cc NativeWifiP - ok
14:16:05.0025 0x28cc NcaSvc - ok
14:16:05.0036 0x28cc NcbService - ok
14:16:05.0038 0x28cc NcdAutoSetup - ok
14:16:05.0040 0x28cc ndfltr - ok
14:16:05.0053 0x28cc NDIS - ok
14:16:05.0055 0x28cc NdisCap - ok
14:16:05.0069 0x28cc NdisImPlatform - ok
14:16:05.0071 0x28cc NdisTapi - ok
14:16:05.0073 0x28cc Ndisuio - ok
14:16:05.0076 0x28cc NdisVirtualBus - ok
14:16:05.0078 0x28cc NdisWan - ok
14:16:05.0080 0x28cc ndiswanlegacy - ok
14:16:05.0082 0x28cc ndproxy - ok
14:16:05.0084 0x28cc Ndu - ok
14:16:05.0086 0x28cc NetAdapterCx - ok
14:16:05.0088 0x28cc NetBIOS - ok
14:16:05.0091 0x28cc NetBT - ok
14:16:05.0093 0x28cc Netlogon - ok
14:16:05.0095 0x28cc Netman - ok
14:16:05.0098 0x28cc netprofm - ok
14:16:05.0107 0x28cc NetSetupSvc - ok
14:16:05.0130 0x28cc NetTcpPortSharing - ok
14:16:05.0133 0x28cc NgcCtnrSvc - ok
14:16:05.0136 0x28cc NgcSvc - ok
14:16:05.0138 0x28cc NlaSvc - ok
14:16:05.0140 0x28cc Npfs - ok
14:16:05.0142 0x28cc npsvctrig - ok
14:16:05.0144 0x28cc nsi - ok
14:16:05.0146 0x28cc nsiproxy - ok
14:16:05.0152 0x28cc NTFS - ok
14:16:05.0154 0x28cc Null - ok
14:16:05.0184 0x28cc [ 64DA1993B1973F049C1347DA1B05185E, 2A04E263DB13751D033E2F9B9518820CF4942EEAFA5A32488570EEB699EE2A96 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
14:16:05.0194 0x28cc NVHDA - ok
14:16:05.0550 0x28cc [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nvmoi.inf_amd64_ced1ded071ee981c\nvlddmkm.sys
14:16:05.0778 0x28cc nvlddmkm - ok
14:16:05.0897 0x28cc [ A6102293847A7A2DF01E7BF7AC1C1F12, 14E4E75711C00DA826136FB531E9AD53787502F441103386C5CD37EEFCE27AFC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
14:16:05.0932 0x28cc NvNetworkService - ok
14:16:05.0949 0x28cc nvraid - ok
14:16:05.0951 0x28cc nvstor - ok
14:16:06.0005 0x28cc [ 99D42078C9596A20A7B3419159265A25, E9F5380E6597C79B26B2CBAAC534F31C5027F32AAA0FD5876CF7E9BB6658F30C ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
14:16:06.0023 0x28cc NvStreamKms - ok
14:16:06.0108 0x28cc [ E6A64322EB213AEACBB61584AA6FB032, FA91C89B81DD7F3EC22DF71FFC3A506AD40AE76EC91F1115CCAB6ED39431369D ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
14:16:06.0172 0x28cc NvStreamNetworkSvc - ok
14:16:06.0217 0x28cc [ A8213BF32D2E75ADD362E118AD164749, 6F35210ED11088FE64F13DD63053FFDA4628A5F6397DA33A345970962AB83499 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
14:16:06.0262 0x28cc NvStreamSvc - ok
14:16:06.0271 0x28cc [ F37FE6B15A987AEEC08EEF531F2FAED7, CC768E7DE80C7A8CB2392F9BC528212B8A3A35A30A222ED0B0B959051E6F8065 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
14:16:06.0279 0x28cc nvvad_WaveExtensible - ok
14:16:06.0301 0x28cc OneSyncSvc - ok
14:16:06.0372 0x28cc [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:16:06.0397 0x28cc ose - ok
14:16:06.0414 0x28cc p2pimsvc - ok
14:16:06.0421 0x28cc p2psvc - ok
14:16:06.0424 0x28cc Parport - ok
14:16:06.0433 0x28cc partmgr - ok
14:16:06.0447 0x28cc PcaSvc - ok
14:16:06.0458 0x28cc pci - ok
14:16:06.0467 0x28cc pciide - ok
14:16:06.0470 0x28cc pcmcia - ok
14:16:06.0473 0x28cc pcw - ok
14:16:06.0483 0x28cc pdc - ok
14:16:06.0492 0x28cc PEAUTH - ok
14:16:06.0495 0x28cc percsas2i - ok
14:16:06.0498 0x28cc percsas3i - ok
14:16:06.0538 0x28cc PerfHost - ok
14:16:06.0555 0x28cc PhoneSvc - ok
14:16:06.0567 0x28cc PimIndexMaintenanceSvc - ok
14:16:06.0571 0x28cc pla - ok
14:16:06.0580 0x28cc PlugPlay - ok
14:16:06.0582 0x28cc PNRPAutoReg - ok
14:16:06.0585 0x28cc PNRPsvc - ok
14:16:06.0593 0x28cc PolicyAgent - ok
14:16:06.0596 0x28cc Power - ok
14:16:06.0599 0x28cc PptpMiniport - ok
14:16:06.0698 0x28cc [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
14:16:06.0821 0x28cc PrintNotify - ok
14:16:06.0827 0x28cc Processor - ok
14:16:06.0840 0x28cc ProfSvc - ok
14:16:06.0842 0x28cc Psched - ok
14:16:06.0844 0x28cc QWAVE - ok
14:16:06.0846 0x28cc QWAVEdrv - ok
14:16:06.0848 0x28cc RasAcd - ok
14:16:06.0864 0x28cc RasAgileVpn - ok
14:16:06.0866 0x28cc RasAuto - ok
14:16:06.0868 0x28cc Rasl2tp - ok
14:16:06.0879 0x28cc RasMan - ok
14:16:06.0881 0x28cc RasPppoe - ok
14:16:06.0883 0x28cc RasSstp - ok
14:16:06.0885 0x28cc rdbss - ok
14:16:06.0892 0x28cc rdpbus - ok
14:16:06.0893 0x28cc RDPDR - ok
14:16:06.0923 0x28cc RdpVideoMiniport - ok
14:16:06.0925 0x28cc rdyboost - ok
14:16:06.0927 0x28cc ReFSv1 - ok
14:16:06.0931 0x28cc RemoteAccess - ok
14:16:06.0933 0x28cc RemoteRegistry - ok
14:16:06.0950 0x28cc RetailDemo - ok
14:16:07.0002 0x28cc [ C70F30AD0A519A53544129BD723CC5FB, B93ACB75423E3DA0A9E3EA641C62265D3087FF504850E70AE87625221BE9E987 ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
14:16:07.0014 0x28cc RichVideo64 - ok
14:16:07.0017 0x28cc RmSvc - ok
14:16:07.0019 0x28cc RpcEptMapper - ok
14:16:07.0037 0x28cc RpcLocator - ok
14:16:07.0039 0x28cc RpcSs - ok
14:16:07.0041 0x28cc rspndr - ok
14:16:07.0106 0x28cc [ 841ECEC8C2F1FB61F0FF518B288649B7, 62856A0EC8BD6A5595C142CE68131CC625477460E469BEBB261F915A95AB8F2E ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
14:16:07.0130 0x28cc rt640x64 - ok
14:16:07.0147 0x28cc RtlWlanu_OldIC - ok
14:16:07.0166 0x28cc [ 56A28D8CCC3862AE32C14EE9CAE4B920, 6B2120B09D360A1DA17B21EE39675CBFAD0CB58ED0B8EE6AB53F25D04B411EC4 ] rzudd C:\WINDOWS\System32\drivers\rzudd.sys
14:16:07.0179 0x28cc rzudd - ok
14:16:07.0183 0x28cc s3cap - ok
14:16:07.0198 0x28cc SamSs - ok
14:16:07.0203 0x28cc sbp2port - ok
14:16:07.0220 0x28cc SCardSvr - ok
14:16:07.0231 0x28cc ScDeviceEnum - ok
14:16:07.0236 0x28cc scfilter - ok
14:16:07.0241 0x28cc Schedule - ok
14:16:07.0245 0x28cc scmbus - ok
14:16:07.0250 0x28cc scmdisk0101 - ok
14:16:07.0268 0x28cc SCPolicySvc - ok
14:16:07.0277 0x28cc sdbus - ok
14:16:07.0281 0x28cc SDRSVC - ok
14:16:07.0284 0x28cc sdstor - ok
14:16:07.0287 0x28cc seclogon - ok
14:16:07.0290 0x28cc SENS - ok
14:16:07.0293 0x28cc SensorDataService - ok
14:16:07.0309 0x28cc SensorService - ok
14:16:07.0311 0x28cc SensrSvc - ok
14:16:07.0314 0x28cc SerCx - ok
14:16:07.0316 0x28cc SerCx2 - ok
14:16:07.0320 0x28cc Serenum - ok
14:16:07.0322 0x28cc Serial - ok
14:16:07.0324 0x28cc sermouse - ok
14:16:07.0341 0x28cc SessionEnv - ok
14:16:07.0343 0x28cc sfloppy - ok
14:16:07.0388 0x28cc SharedAccess - ok
14:16:07.0390 0x28cc ShellHWDetection - ok
14:16:07.0409 0x28cc shpamsvc - ok
14:16:07.0412 0x28cc SiSRaid2 - ok
14:16:07.0414 0x28cc SiSRaid4 - ok
14:16:07.0456 0x28cc [ B72B80E6FF423C5011E745CB76DA9A08, 18A6B9D46E91AD4D463EB5CB832702392D2E162577F90C328B515FCE69FABD15 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:16:07.0473 0x28cc SkypeUpdate - ok
14:16:07.0488 0x28cc smphost - ok
14:16:07.0497 0x28cc SmsRouter - ok
14:16:07.0502 0x28cc SNMPTRAP - ok
14:16:07.0521 0x28cc spaceport - ok
14:16:07.0523 0x28cc SpbCx - ok
14:16:07.0531 0x28cc Spooler - ok
14:16:07.0537 0x28cc sppsvc - ok
14:16:07.0540 0x28cc srv - ok
14:16:07.0556 0x28cc srv2 - ok
14:16:07.0558 0x28cc srvnet - ok
14:16:07.0560 0x28cc SSDPSRV - ok
14:16:07.0587 0x28cc [ 23B3E65FDEA67313E4B8F89FB80F41BB, 1484E037A7F083445A1721DAB18477770646AC081DF7BA024E8457CECBB9A5B8 ] sshid C:\WINDOWS\System32\drivers\sshid.sys
14:16:07.0595 0x28cc sshid - ok
14:16:07.0613 0x28cc SstpSvc - ok
14:16:07.0632 0x28cc StateRepository - ok
14:16:07.0634 0x28cc stexstor - ok
14:16:07.0637 0x28cc stisvc - ok
14:16:07.0654 0x28cc storahci - ok
14:16:07.0657 0x28cc storflt - ok
14:16:07.0659 0x28cc stornvme - ok
14:16:07.0663 0x28cc storqosflt - ok
14:16:07.0669 0x28cc StorSvc - ok
14:16:07.0671 0x28cc storufs - ok
14:16:07.0675 0x28cc storvsc - ok
14:16:07.0677 0x28cc svsvc - ok
14:16:07.0680 0x28cc swenum - ok
14:16:07.0681 0x28cc swprv - ok
14:16:07.0697 0x28cc Synth3dVsc - ok
14:16:07.0699 0x28cc SysMain - ok
14:16:07.0705 0x28cc SystemEventsBroker - ok
14:16:07.0710 0x28cc TabletInputService - ok
14:16:07.0713 0x28cc TapiSrv - ok
14:16:07.0726 0x28cc Tcpip - ok
14:16:07.0728 0x28cc Tcpip6 - ok
14:16:07.0733 0x28cc tcpipreg - ok
14:16:07.0737 0x28cc tdx - ok
14:16:07.0739 0x28cc terminpt - ok
14:16:07.0742 0x28cc TermService - ok
14:16:07.0745 0x28cc Themes - ok
14:16:07.0764 0x28cc TieringEngineService - ok
14:16:07.0767 0x28cc tiledatamodelsvc - ok
14:16:07.0770 0x28cc TimeBrokerSvc - ok
14:16:07.0773 0x28cc TPM - ok
14:16:07.0775 0x28cc TrkWks - ok
14:16:07.0796 0x28cc TrustedInstaller - ok
14:16:07.0800 0x28cc tsusbflt - ok
14:16:07.0805 0x28cc TsUsbGD - ok
14:16:07.0808 0x28cc tunnel - ok
14:16:07.0810 0x28cc tzautoupdate - ok
14:16:07.0824 0x28cc [ A070ABB9D85582B2BECADBE6FCD12350, 3EBFA349F87933E20C4EADA2FA2E64206CCAC70DFB8B52C2E41670FFB16D7336 ] t_mouse.sys C:\WINDOWS\system32\DRIVERS\t_mouse.sys
14:16:07.0841 0x28cc t_mouse.sys - ok
14:16:07.0845 0x28cc UASPStor - ok
14:16:07.0847 0x28cc UcmCx0101 - ok
14:16:07.0850 0x28cc UcmTcpciCx0101 - ok
14:16:07.0852 0x28cc UcmUcsi - ok
14:16:07.0855 0x28cc Ucx01000 - ok
14:16:07.0857 0x28cc UdeCx - ok
14:16:07.0859 0x28cc udfs - ok
14:16:07.0862 0x28cc UEFI - ok
14:16:07.0864 0x28cc Ufx01000 - ok
14:16:07.0867 0x28cc UfxChipidea - ok
14:16:07.0869 0x28cc ufxsynopsys - ok
14:16:07.0874 0x28cc UI0Detect - ok
14:16:07.0876 0x28cc umbus - ok
14:16:07.0879 0x28cc UmPass - ok
14:16:07.0882 0x28cc UmRdpService - ok
14:16:07.0884 0x28cc UnistoreSvc - ok
14:16:07.0927 0x28cc [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
14:16:07.0932 0x28cc UnlockerDriver5 - ok
14:16:07.0935 0x28cc upnphost - ok
14:16:07.0938 0x28cc UrsChipidea - ok
14:16:07.0940 0x28cc UrsCx01000 - ok
14:16:07.0942 0x28cc UrsSynopsys - ok
14:16:07.0944 0x28cc usbccgp - ok
14:16:07.0947 0x28cc usbcir - ok
14:16:07.0949 0x28cc usbehci - ok
14:16:07.0953 0x28cc usbhub - ok
14:16:07.0956 0x28cc USBHUB3 - ok
14:16:07.0958 0x28cc usbohci - ok
14:16:07.0960 0x28cc usbprint - ok
14:16:07.0988 0x28cc [ 2EC7B2C8123236B1233A77281D378DF7, D97DB59C9CAE2B8B33C707E8CEA7A65BF88712842CC715D270F7432A99D21BB6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:16:08.0013 0x28cc usbscan - ok
14:16:08.0016 0x28cc usbser - ok
14:16:08.0019 0x28cc USBSTOR - ok
14:16:08.0022 0x28cc usbuhci - ok
14:16:08.0025 0x28cc USBXHCI - ok
14:16:08.0027 0x28cc UserDataSvc - ok
14:16:08.0032 0x28cc UserManager - ok
14:16:08.0043 0x28cc UsoSvc - ok
14:16:08.0045 0x28cc VaultSvc - ok
14:16:08.0048 0x28cc vdrvroot - ok
14:16:08.0057 0x28cc vds - ok
14:16:08.0059 0x28cc VerifierExt - ok
14:16:08.0067 0x28cc vhdmp - ok
14:16:08.0070 0x28cc vhf - ok
14:16:08.0073 0x28cc vmbus - ok
14:16:08.0075 0x28cc VMBusHID - ok
14:16:08.0078 0x28cc vmgid - ok
14:16:08.0080 0x28cc vmicguestinterface - ok
14:16:08.0082 0x28cc vmicheartbeat - ok
14:16:08.0085 0x28cc vmickvpexchange - ok
14:16:08.0087 0x28cc vmicrdv - ok
14:16:08.0090 0x28cc vmicshutdown - ok
14:16:08.0092 0x28cc vmictimesync - ok
14:16:08.0094 0x28cc vmicvmsession - ok
14:16:08.0096 0x28cc vmicvss - ok
14:16:08.0099 0x28cc volmgr - ok
14:16:08.0102 0x28cc volmgrx - ok
14:16:08.0104 0x28cc volsnap - ok
14:16:08.0107 0x28cc volume - ok
14:16:08.0110 0x28cc vpci - ok
14:16:08.0112 0x28cc vsmraid - ok
14:16:08.0115 0x28cc VSS - ok
14:16:08.0118 0x28cc VSTXRAID - ok
14:16:08.0120 0x28cc vwifibus - ok
14:16:08.0122 0x28cc vwififlt - ok
14:16:08.0125 0x28cc vwifimp - ok
14:16:08.0128 0x28cc W32Time - ok
14:16:08.0130 0x28cc WacomPen - ok
14:16:08.0140 0x28cc WalletService - ok
14:16:08.0142 0x28cc wanarp - ok
14:16:08.0145 0x28cc wanarpv6 - ok
14:16:08.0147 0x28cc wbengine - ok
14:16:08.0164 0x28cc WbioSrvc - ok
14:16:08.0166 0x28cc wcifs - ok
14:16:08.0170 0x28cc Wcmsvc - ok
14:16:08.0172 0x28cc wcncsvc - ok
14:16:08.0174 0x28cc wcnfs - ok
14:16:08.0177 0x28cc WdBoot - ok
14:16:08.0179 0x28cc Wdf01000 - ok
14:16:08.0181 0x28cc WdFilter - ok
14:16:08.0184 0x28cc WdiServiceHost - ok
14:16:08.0186 0x28cc WdiSystemHost - ok
14:16:08.0200 0x28cc wdiwifi - ok
14:16:08.0202 0x28cc WdNisDrv - ok
14:16:08.0225 0x28cc WdNisSvc - ok
14:16:08.0231 0x28cc WebClient - ok
14:16:08.0236 0x28cc Wecsvc - ok
14:16:08.0241 0x28cc WEPHOSTSVC - ok
14:16:08.0247 0x28cc wercplsupport - ok
14:16:08.0252 0x28cc WerSvc - ok
14:16:08.0255 0x28cc WFPLWFS - ok
14:16:08.0259 0x28cc WiaRpc - ok
14:16:08.0261 0x28cc WIMMount - ok
14:16:08.0263 0x28cc WinDefend - ok
14:16:08.0270 0x28cc WindowsTrustedRT - ok
14:16:08.0272 0x28cc WindowsTrustedRTProxy - ok
14:16:08.0281 0x28cc WinHttpAutoProxySvc - ok
14:16:08.0285 0x28cc WinMad - ok
14:16:08.0323 0x28cc Winmgmt - ok
14:16:08.0340 0x28cc WinRM - ok
14:16:08.0345 0x28cc WINUSB - ok
14:16:08.0347 0x28cc WinVerbs - ok
14:16:08.0376 0x28cc wisvc - ok
14:16:08.0378 0x28cc WlanSvc - ok
14:16:08.0400 0x28cc wlidsvc - ok
14:16:08.0403 0x28cc WmiAcpi - ok
14:16:08.0408 0x28cc wmiApSrv - ok
14:16:08.0418 0x28cc WMPNetworkSvc - ok
14:16:08.0437 0x28cc Wof - ok
14:16:08.0446 0x28cc workfolderssvc - ok
14:16:08.0450 0x28cc WPDBusEnum - ok
14:16:08.0454 0x28cc WpdUpFltr - ok
14:16:08.0458 0x28cc WpnService - ok
14:16:08.0461 0x28cc WpnUserService - ok
14:16:08.0465 0x28cc ws2ifsl - ok
14:16:08.0467 0x28cc wscsvc - ok
14:16:08.0470 0x28cc WSearch - ok
14:16:08.0489 0x28cc wuauserv - ok
14:16:08.0491 0x28cc WudfPf - ok
14:16:08.0494 0x28cc WUDFRd - ok
14:16:08.0497 0x28cc wudfsvc - ok
14:16:08.0499 0x28cc WUDFWpdFs - ok
14:16:08.0513 0x28cc WwanSvc - ok
14:16:08.0523 0x28cc XblAuthManager - ok
14:16:08.0535 0x28cc XblGameSave - ok
14:16:08.0537 0x28cc xboxgip - ok
14:16:08.0541 0x28cc XboxNetApiSvc - ok
14:16:08.0564 0x28cc xinputhid - ok
14:16:08.0572 0x28cc ================ Scan global ===============================
14:16:08.0632 0x28cc [ Global ] - ok
14:16:08.0632 0x28cc ================ Scan MBR ==================================
14:16:08.0646 0x28cc [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
14:16:08.0818 0x28cc \Device\Harddisk0\DR0 - ok
14:16:08.0819 0x28cc ================ Scan VBR ==================================
14:16:08.0851 0x28cc [ DC3170876CCE01EB1ABA739B908E956A ] \Device\Harddisk0\DR0\Partition1
14:16:08.0856 0x28cc \Device\Harddisk0\DR0\Partition1 - ok
14:16:08.0864 0x28cc [ 8112A77A3E19A7EA09AB94153A36FB26 ] \Device\Harddisk0\DR0\Partition2
14:16:08.0867 0x28cc \Device\Harddisk0\DR0\Partition2 - ok
14:16:08.0874 0x28cc [ 68492777A10F581CA995315C3B1C63CF ] \Device\Harddisk0\DR0\Partition3
14:16:08.0875 0x28cc \Device\Harddisk0\DR0\Partition3 - ok
14:16:08.0889 0x28cc [ 3771D5C9E0FD42C8C53C9C82DC748C43 ] \Device\Harddisk0\DR0\Partition4
14:16:08.0890 0x28cc \Device\Harddisk0\DR0\Partition4 - ok
14:16:08.0901 0x28cc [ 6001DFEF12B9133D4D4D4DBB7D97D1A6 ] \Device\Harddisk0\DR0\Partition5
14:16:08.0904 0x28cc \Device\Harddisk0\DR0\Partition5 - ok
14:16:08.0928 0x28cc [ E8EE21BB40E3647E9C930BE82FC4CDF3 ] \Device\Harddisk0\DR0\Partition6
14:16:08.0931 0x28cc \Device\Harddisk0\DR0\Partition6 - ok
14:16:08.0936 0x28cc [ CA3141679AF9E73D74EA552148FE4459 ] \Device\Harddisk0\DR0\Partition7
14:16:08.0938 0x28cc \Device\Harddisk0\DR0\Partition7 - ok
14:16:08.0938 0x28cc ================ Scan generic autorun ======================
14:16:09.0255 0x28cc [ 65E8545F1297CD83534C354A7BED1848, 19B3F3C17A335837454DC1851C6436D0BB2D8B1595AEB4DC71265FB20868B48F ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
14:16:09.0473 0x28cc RTHDVCPL - ok
14:16:09.0524 0x28cc [ E6A3062BDB2E18EBDEB69CF7F7A3A070, 48AB0CCA0230DCBB47CCC765659E390A4A42AC7303A27B835B9FBB1168AC7BF1 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
14:16:09.0558 0x28cc IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
14:16:09.0558 0x28cc IAStorIcon ( UnsignedFile.Multi.Generic ) - warning
14:16:09.0692 0x28cc [ BE586B5D1D73E1F07ED5AADDEFBCAA47, 68D957EBE01DD369BF4E2D5D07A7EDF9408066E61056A1C4968DBF8CE5841BBE ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
14:16:09.0734 0x28cc NvBackend - ok
14:16:09.0758 0x28cc [ DB367E8C8F46C26A05BA982715CC0DB5, 63AE8DD8E41260123E8C98905BD3D444BED86AEA6353F690483E5CB116433AC2 ] C:\WINDOWS\system32\TiltWheelMouse.exe
14:16:09.0783 0x28cc MouseDriver - ok
14:16:09.0783 0x28cc WindowsDefender - ok
14:16:09.0837 0x28cc [ 4E9AF25BA5E8219310E384AEA5B0EED8, 743062F755E7A88BA394E96CA26A988CCFDF73B441B779B3149D54A769CBC411 ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
14:16:09.0844 0x28cc CLMLServer_For_P2G8 - ok
14:16:09.0864 0x28cc [ 3DB184D96E9BCFD40E071DBADCA6127C, 5DBC91C1749267803415AF265B3AFE3663D515F579F9C771D2FC3ED4D5B96390 ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
14:16:09.0878 0x28cc CLVirtualDrive - ok
14:16:09.0900 0x28cc APSDaemon - ok
14:16:09.0923 0x28cc [ 0966408A384E8B0FE57B0008E18D561C, 045AB5798CAFA7D27E7D02F780B3508EBF34C0991C8EF166A61CF869D9399B70 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
14:16:09.0930 0x28cc RemoteControl10 - ok
14:16:09.0962 0x28cc [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
14:16:09.0995 0x28cc QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
14:16:09.0995 0x28cc QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
14:16:09.0995 0x28cc Force sending object to P2P due to detect: C:\Program Files (x86)\QuickTime\QTTask.exe
14:16:09.0997 0x28cc Object send P2P result: false
14:16:10.0315 0x28cc [ 4533BD3789B7A8A16431E61D5D5FB741, BEB3316553FCACB6CCED4468058A72E32C9BC85A932A38FA6EF11F7E0AA31E9A ] C:\Program Files (x86)\A1 Servicecenter\A1 Servicecenter\A1Servicecenter_Launcher.exe
14:16:10.0494 0x28cc A1Servicecenter - ok
14:16:10.0549 0x28cc [ 258E2CD2C4984A977106C9EF7CA8AF69, D8F6409D5F5782CC27D159D18E914A3DB59D8644D7017CA6F84F0CF30E95174C ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
14:16:10.0557 0x28cc Avira SystrayStartTrigger - ok
14:16:10.0656 0x28cc [ 1BC31F797516DC7B7446B62A849D5905, 49B35A41F1C3739800CBA2A559C2AEFE89FBC090F8305681AF3B379B639E16AA ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
14:16:10.0686 0x28cc avgnt - ok
14:16:10.0738 0x28cc OneDriveSetup - ok
14:16:10.0739 0x28cc OneDriveSetup - ok
14:16:10.0740 0x28cc RESTART_STICKY_NOTES - ok
14:16:10.0771 0x28cc Skype - ok
14:16:10.0871 0x28cc [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\Eveline\AppData\Local\Microsoft\BingSvc\BingSvc.exe
14:16:10.0899 0x28cc BingSvc - ok
14:16:11.0018 0x28cc [ 638EC39FFA5EB20E09F03E3433E9746E, 6299DE071EF97D32C334EF624BC4B0FD3BF15BDD411976687951696771373949 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
14:16:11.0053 0x28cc GoogleChromeAutoLaunch_3E866541A350BCF9753662F46BCD806E - ok
14:16:11.0062 0x28cc AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.24.143 ), 0x40000 ( disabled : updated )
14:16:11.0062 0x28cc AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
14:16:11.0064 0x28cc Win FW state via NFP2: enabled ( trusted )
14:16:11.0065 0x28cc ============================================================
14:16:11.0065 0x28cc Scan finished
14:16:11.0065 0x28cc ============================================================
14:16:11.0071 0x26e0 Detected object count: 3
14:16:11.0071 0x26e0 Actual detected object count: 3
14:17:13.0926 0x26e0 Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - skipped by user
14:17:13.0926 0x26e0 Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:17:13.0926 0x26e0 IAStorIcon ( UnsignedFile.Multi.Generic ) - skipped by user
14:17:13.0926 0x26e0 IAStorIcon ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:17:13.0927 0x26e0 QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
14:17:13.0927 0x26e0 QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip
__________________ Danke und liebe GrüßeEveline |
|
05.02.2017, 20:49
| #45 |
| /// TB-Ausbilder | Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! Servus, kannst du mir die Logdatei von FRST im Reparaturmodus posten? |
|
| Themen zu Malwarebytes 3.0 kann nicht deinstalliert und auch nicht aufgerufen werden! |
| administrator, anderen, anhang, dateien, einfach, fehlermeldung, gelöscht, install.exe, jahre, malwarebytes, natürlich, neu, nicht mehr, ordner, plötzlich, probleme, problemlos, programm, programme, ratlos, recht, starten, uninstall.exe, unlocker, zugriff, zugriff verweigert |
Linear-Darstellung
