| |
| |||||||
Log-Analyse und Auswertung: Win 7: normaler Modus extrem langsam, läuft normal abgesichertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
23.03.2017, 21:29
| #1 |
 |  Win 7: normaler Modus extrem langsam, läuft normal abgesichert Hallo liebes Trojaner-Team, seit heute ist mein Computer im normalen Modus extrem langsam, Ordner öffnen sich nach dem Doppelklicken erst nach ca. 10 Sekunden, der Inhalt des Fensters ist danach leer und wird nur nach und nach geladen, was weitere 10 - 20 Sekunden dauern kann. Im abgesicherten Modus (mit und ohne Netzwerk) läuft der PC normal. Zu anderen Symptomen kann ich im normalen Modus leider nicht viel schreiben, da ich keine Programme öffnen kann. Das Herunterfahren des Rechners funktioniert nur durch Reset oder Ausschalten, da sich der Rechner am Bildschirm: "Folgende Programme müssen noch geschlossen werden..." festhängt, ohne dort ein Programm anzuzeigen (ein einziges Mal stand dort "Netzwerkumgebung", ansonsten ist das Fenster der zu schließenden Programme leer) Mehrere Male ging der Rechner nach diesem Fenster zu einem Black-Screen über, bei dem der Mauszeiger allerdings noch sichtbar und zu bewegen war. Außerdem ist auffällig, das der Bootvorgang nicht bei jedem Male gelingt, in 1 von 10 Fällen bekomme ich, bevor Windows geladen wird, die Fehlermeldung "CPU Overglocking failed" - obwohl von mir kein Übertakten des CPUs eingestellt worden ist (ob das werkseitig geschah kann ich allerdings nicht sagen). Hier nun meine zwei Logs (Additions.txt muss ich leider anhängen, da die maximalen Zeichen weit überschritten wurden): (Für die angebotene Hilfe bin ich wirklich dankbar!) Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
durchgeführt von Steffen (Administrator) auf GOLIATH (23-03-2017 21:03:50)
Gestartet von E:\1 Downloads
Geladene Profile: Steffen (Verfügbare Profile: Steffen)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
() C:\Windows\SysWOW64\ASGT.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\WAC\PSANHost.exe
(NCP engineering GmbH) C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncpclcfg.exe
(NCP Engineering GmbH) C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncprwsnt.exe
() C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncpsec.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\WAC\PSUAService.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(TeamViewer GmbH) C:\Users\Steffen\AppData\Local\Temp\TeamViewer\TeamViewer_Service.exe
(Panda Security International) C:\Program Files (x86)\Panda Security\WaAgent\WAHost\WAHost.exe
(LogMeIn Inc.) C:\Program Files (x86)\Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\Hamachi\x64\LMIGuardianSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(LogMeIn Inc.) C:\Program Files (x86)\Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) E:\ITunes\iTunesHelper.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Dropbox, Inc.) C:\Users\Steffen\AppData\Local\Dropbox\Update\DropboxUpdate.exe
() C:\Program Files\EIZO\ColorNavigator 6\ColorNavigator 6.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(NCP engineering GmbH) C:\Program Files (x86)\LANCOM\Advanced VPN Client\NcpBudgetGui.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Contour Design, Inc.) C:\Program Files (x86)\Contour Shuttle\ShuttleHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(BitLeader) C:\Program Files (x86)\lg_fwupdate\fwupdate.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\WAC\PSUAMain.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Contour Design, Inc.) C:\Program Files (x86)\Contour Shuttle\ShuttleEngine.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
() C:\Program Files\EIZO\ColorNavigator 6\core\cn6_eacore.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LogiAppBroker.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [281776 2014-09-16] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7636696 2014-08-21] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392344 2014-08-26] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => E:\ITunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-02-26] (Logitech Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-06-27] (Intel Corporation)
HKLM-x32\...\Run: [NcpPopup] => C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncppopup.exe [964848 2015-01-20] (NCP engineering GmbH)
HKLM-x32\...\Run: [NcpBudgetGui] => C:\Program Files (x86)\LANCOM\Advanced VPN Client\NcpBudgetGui.exe [1819888 2015-01-20] (NCP engineering GmbH)
HKLM-x32\...\Run: [LGODDFU] => C:\Program Files (x86)\lg_fwupdate\lgfw.exe [27760 2012-07-12] (Bitleader)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2756672 2016-03-09] (Dominik Reichl)
HKLM-x32\...\Run: [Contour Shuttle Device Helper] => C:\Program Files (x86)\Contour Shuttle\ShuttleHelper.exe [126464 2015-09-23] (Contour Design, Inc.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2011-03-09] (CyberLink)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [179976 2013-09-02] (cyberlink)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\WAC\PSUAMain.exe [111896 2016-11-08] (Panda Security, S.L.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\SysWOW64\userinit.exe,
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-225253568-2950696071-1607657666-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-225253568-2950696071-1607657666-1000\...\Run: [Dropbox Update] => C:\Users\Steffen\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
HKU\S-1-5-21-225253568-2950696071-1607657666-1000\...\RunOnce: [Application Restart #3] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKU\S-1-5-21-225253568-2950696071-1607657666-1000\...\RunOnce: [Application Restart #4] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2360000 2016-10-25] (Adobe Systems Incorporated)
HKU\S-1-5-21-225253568-2950696071-1607657666-1000\...\MountPoints2: {6c123a37-0ce2-11e5-b123-02001e677b44} - H:\start.exe
HKU\S-1-5-18\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe [2670032 2015-11-30] (TODO: <Company name>)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe [2670032 2015-11-30] (TODO: <Company name>)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Steffen\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
Startup: C:\Users\Steffen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ColorNavigator 6.lnk [2016-12-14]
ShortcutTarget: ColorNavigator 6.lnk -> C:\Program Files\EIZO\ColorNavigator 6\ColorNavigator 6.exe ()
GroupPolicy\User: Beschränkung <======= ACHTUNG
GroupPolicyScripts: Beschränkung <======= ACHTUNG
GroupPolicyScripts-x32: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{0C5514B9-6611-4F5C-B63C-6D0B30FC22B8}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{988511EF-296C-4FBE-A8E5-68A749AD6919}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKU\S-1-5-21-225253568-2950696071-1607657666-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.de/
SearchScopes: HKU\S-1-5-21-225253568-2950696071-1607657666-1000 -> DefaultScope {616C8BC5-CC0A-48D7-A6F0-A2AD941590EB} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-225253568-2950696071-1607657666-1000 -> {616C8BC5-CC0A-48D7-A6F0-A2AD941590EB} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
FireFox:
========
FF ProfilePath: C:\Users\Steffen\AppData\Roaming\Mozilla\Firefox\Profiles\o2qp70bm.default-1447440277188 [2017-03-23]
FF Extension: (MEGA) - C:\Users\Steffen\AppData\Roaming\Mozilla\Firefox\Profiles\o2qp70bm.default-1447440277188\Extensions\firefox@mega.co.nz.xpi [2017-03-17]
FF Extension: (Adblock Plus) - C:\Users\Steffen\AppData\Roaming\Mozilla\Firefox\Profiles\o2qp70bm.default-1447440277188\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-25]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2017-01-03] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2017-03-23] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-03] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-09] (NVIDIA Corporation)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [2016-08-05] (pdfforge GmbH)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-225253568-2950696071-1607657666-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-08-18] () [Datei ist nicht signiert]
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [Datei ist nicht signiert]
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [243464 2013-09-02] (CyberLink)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2013-10-06] (DTS, Inc)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
R2 Hamachi2Svc; C:\Program Files (x86)\Hamachi\x64\hamachi-2.exe [3416584 2017-03-02] (LogMeIn Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-04-03] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-03] (Intel Corporation)
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\WAC\PSANHost.exe [109336 2016-10-25] (Panda Security, S.L.)
R2 ncpclcfg; C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncpclcfg.exe [531208 2015-01-20] (NCP engineering GmbH)
R2 ncprwsnt; C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncprwsnt.exe [1782024 2015-01-20] (NCP Engineering GmbH)
R2 ncpsec; C:\Program Files (x86)\LANCOM\Advanced VPN Client\ncpsec.exe [125952 2015-01-20] () [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2438880 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [972056 2016-05-18] (© pdfforge GmbH.)
R2 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (arvato digital services llc)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
R2 PSUAService; C:\Program Files (x86)\Panda Security\WAC\PSUAService.exe [48584 2016-11-03] (Panda Security, S.L.)
R2 SamsungRapidSvc; C:\Windows\System32\RAPID\SamsungRapidSvc.exe [28848 2014-09-16] (Samsung Electronics Co., Ltd.)
R2 TeamViewer; c:\users\steffen\appdata\local\temp\teamviewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH) <==== ACHTUNG
S3 vncserver; C:\Program Files\RealVNC\VNC Server\vncservice.exe [639808 2014-11-28] (RealVNC Ltd)
R2 WAHost; C:\Program Files (x86)\Panda Security\WaAgent\WAHost\WAHost.exe [573736 2016-11-11] (Panda Security International)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [672208 2017-02-03] (Wacom Technology, Corp.)
S2 NVIDIA Wireless Controller Service; "C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AIDA64Driver; E:\9 Service\aida64extreme_5_70\kerneld.x64 [45728 2016-04-09] ()
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R2 dvctprov; C:\Windows\System32\DRIVERS\dvctprov.sys [112888 2015-12-22] (Panda Security, S.L.)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [487704 2014-03-14] (Intel Corporation)
R3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [215608 2016-08-22] (GenesysLogic)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-05-28] (Intel Corporation)
R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2014-10-23] (ASUSTeK Computer Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 ncpfilt; C:\Windows\System32\DRIVERS\ncplelhp.sys [112560 2015-01-20] (NCP Engineering GmbH)
R3 ncplelhp; C:\Windows\System32\DRIVERS\ncplelhp.sys [112560 2015-01-20] (NCP Engineering GmbH)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [105232 2016-10-06] (Panda Security, S.L.)
R1 NNSDHCP; C:\Windows\System32\DRIVERS\NNSDhcp.sys [102160 2016-10-06] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [209168 2016-10-06] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [118032 2016-10-06] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [123664 2016-10-06] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [75544 2016-10-20] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [114448 2016-10-06] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [82192 2016-10-06] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [133392 2016-10-06] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [334096 2016-10-06] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [195344 2016-10-06] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [121104 2016-10-06] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [278944 2016-10-17] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [123152 2016-10-06] (Panda Security, S.L.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [178504 2016-10-24] (Panda Security, S.L.)
R0 PSINDvct; C:\Windows\System32\DRIVERS\PSINDvct.sys [62224 2015-01-23] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [132672 2016-10-24] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [206832 2016-10-24] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [132160 2016-10-24] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [145544 2016-10-24] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [115704 2016-10-24] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [70360 2016-08-08] (Panda Security, S.L.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R0 SamsungRapidDiskFltr; C:\Windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [268976 2014-09-16] (Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\Windows\System32\DRIVERS\SamsungRapidFSFltr.sys [111280 2014-09-16] (Samsung Electronics Co., Ltd.)
S3 Spyder4; C:\Windows\System32\DRIVERS\dccmtr.sys [15360 2013-09-18] (Datacolor)
S3 WacHidRouterPro; C:\Windows\System32\DRIVERS\wachidrouter.sys [119952 2017-01-25] (Wacom Technology)
S3 ZMHFSAudioSrv; C:\Windows\System32\drivers\zmhfsau.sys [53672 2015-07-02] (ZOOM)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-03-23 21:03 - 2017-03-23 21:03 - 00000000 ____D C:\Users\Steffen\AppData\Local\Logishrd
2017-03-23 21:03 - 2017-03-23 21:03 - 00000000 ____D C:\Program Files\Logitech
2017-03-23 21:03 - 2017-03-23 21:03 - 00000000 ____D C:\FRST
2017-03-23 21:01 - 2014-10-23 22:57 - 00024824 _____ (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys
2017-03-23 20:08 - 2017-03-23 20:58 - 00530846 _____ C:\Windows\ntbtlog.txt
2017-03-23 19:21 - 2017-03-23 21:01 - 00000000 ___HD C:\Users\Public\Documents\AdobeGC
2017-03-23 18:18 - 2016-08-08 10:00 - 00070360 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2017-03-22 22:33 - 2017-03-22 22:33 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3522b414ee5f9289
2017-03-22 22:25 - 2017-03-22 22:25 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9472ae9bca46bdfb
2017-03-22 22:25 - 2017-03-22 22:25 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign8b941b61aa63c200
2017-03-22 22:25 - 2017-03-22 22:25 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign4c799dbaa0836c71
2017-03-22 22:24 - 2017-03-22 22:24 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign52fb7dc6e2f2431f
2017-03-22 22:22 - 2017-03-22 22:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign5dfc0570b1545032
2017-03-22 22:22 - 2017-03-22 22:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3f895039a947c9d0
2017-03-22 22:22 - 2017-03-22 22:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3db1fd738c4fd133
2017-03-18 11:02 - 2017-03-18 11:02 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3f32149163157501
2017-03-18 11:01 - 2017-03-18 11:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigna9ea2a2358f1a012
2017-03-18 11:01 - 2017-03-18 11:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign8e7bbfe0b29cce1b
2017-03-18 11:01 - 2017-03-18 11:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign632d91b43a2e33b3
2017-03-18 11:00 - 2017-03-18 11:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignbb01f50534baba9e
2017-03-18 11:00 - 2017-03-18 11:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignade4b4adec8c098f
2017-03-18 11:00 - 2017-03-18 11:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigna33aa977c8a4df07
2017-03-18 11:00 - 2017-03-18 11:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign603b4b6c84017ae5
2017-03-17 22:52 - 2017-03-17 22:52 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9fcffb9c5b53b0c5
2017-03-17 22:52 - 2017-03-17 22:52 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign90deb015c280d81a
2017-03-17 22:52 - 2017-03-17 22:52 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign7bc768bc1b944b78
2017-03-17 22:52 - 2017-03-17 22:52 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign5b848efeca649f56
2017-03-14 19:18 - 2017-03-04 18:24 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-03-14 19:18 - 2017-03-04 17:39 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-03-14 19:18 - 2017-03-04 09:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-03-14 19:18 - 2017-03-04 09:20 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-03-14 19:18 - 2017-03-04 09:02 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-03-14 19:18 - 2017-03-04 09:01 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-14 19:18 - 2017-03-04 09:01 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-03-14 19:18 - 2017-03-04 09:01 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-03-14 19:18 - 2017-03-04 09:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-03-14 19:18 - 2017-03-04 08:59 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-14 19:18 - 2017-03-04 08:52 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-03-14 19:18 - 2017-03-04 08:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-03-14 19:18 - 2017-03-04 08:48 - 25746944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-14 19:18 - 2017-03-04 08:46 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-03-14 19:18 - 2017-03-04 08:45 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-03-14 19:18 - 2017-03-04 08:45 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-03-14 19:18 - 2017-03-04 08:45 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-03-14 19:18 - 2017-03-04 08:44 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-03-14 19:18 - 2017-03-04 08:36 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-03-14 19:18 - 2017-03-04 08:32 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-03-14 19:18 - 2017-03-04 08:31 - 06045696 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-03-14 19:18 - 2017-03-04 08:23 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-03-14 19:18 - 2017-03-04 08:21 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-03-14 19:18 - 2017-03-04 08:16 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-03-14 19:18 - 2017-03-04 08:16 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-03-14 19:18 - 2017-03-04 08:13 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-03-14 19:18 - 2017-03-04 08:11 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-03-14 19:18 - 2017-03-04 07:57 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-03-14 19:18 - 2017-03-04 07:55 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-03-14 19:18 - 2017-03-04 07:54 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-03-14 19:18 - 2017-03-04 07:52 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-03-14 19:18 - 2017-03-04 07:52 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-03-14 19:18 - 2017-03-04 07:26 - 15259648 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-03-14 19:18 - 2017-03-04 07:25 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-03-14 19:18 - 2017-03-04 07:12 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-03-14 19:18 - 2017-03-04 07:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-03-14 19:18 - 2017-03-04 05:18 - 20281856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-03-14 19:18 - 2017-03-02 19:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-03-14 19:18 - 2017-03-02 19:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-03-14 19:18 - 2017-03-02 19:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-03-14 19:18 - 2017-03-02 19:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-03-14 19:18 - 2017-03-02 19:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-03-14 19:18 - 2017-03-02 19:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-03-14 19:18 - 2017-03-02 18:55 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-14 19:18 - 2017-03-02 18:54 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-03-14 19:18 - 2017-03-02 18:53 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-03-14 19:18 - 2017-03-02 18:51 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-03-14 19:18 - 2017-03-02 18:50 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-03-14 19:18 - 2017-03-02 18:49 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-03-14 19:18 - 2017-03-02 18:49 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-03-14 19:18 - 2017-03-02 18:41 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-03-14 19:18 - 2017-03-02 18:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-03-14 19:18 - 2017-03-02 18:35 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-03-14 19:18 - 2017-03-02 18:32 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-03-14 19:18 - 2017-03-02 18:31 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-03-14 19:18 - 2017-03-02 18:29 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-03-14 19:18 - 2017-03-02 18:28 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-03-14 19:18 - 2017-03-02 18:22 - 04604416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-03-14 19:18 - 2017-03-02 18:21 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-03-14 19:18 - 2017-03-02 18:19 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-03-14 19:18 - 2017-03-02 18:17 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-03-14 19:18 - 2017-03-02 18:17 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-03-14 19:18 - 2017-03-02 18:11 - 13654528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-03-14 19:18 - 2017-03-02 17:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-14 19:18 - 2017-03-02 17:50 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-03-14 19:18 - 2017-03-02 17:50 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-03-14 19:18 - 2017-02-11 16:58 - 00462848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-03-14 19:18 - 2017-02-11 16:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-03-14 19:18 - 2017-02-11 16:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-03-14 19:18 - 2017-02-10 17:32 - 00803328 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-03-14 19:18 - 2017-02-10 17:32 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-03-14 19:18 - 2017-02-10 17:17 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2017-03-14 19:18 - 2017-02-10 17:17 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-03-14 19:18 - 2017-02-10 15:33 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-03-14 19:18 - 2017-02-09 17:36 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-03-14 19:18 - 2017-02-09 17:35 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-14 19:18 - 2017-02-09 17:35 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-03-14 19:18 - 2017-02-09 17:35 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-03-14 19:18 - 2017-02-09 17:35 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-03-14 19:18 - 2017-02-09 17:33 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-03-14 19:18 - 2017-02-09 17:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:19 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-03-14 19:18 - 2017-02-09 17:19 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-03-14 19:18 - 2017-02-09 17:16 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:14 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 17:03 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-03-14 19:18 - 2017-02-09 17:03 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-03-14 19:18 - 2017-02-09 17:03 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-03-14 19:18 - 2017-02-09 17:02 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-03-14 19:18 - 2017-02-09 17:00 - 03220480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-03-14 19:18 - 2017-02-09 16:59 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-03-14 19:18 - 2017-02-09 16:58 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-03-14 19:18 - 2017-02-09 16:55 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-03-14 19:18 - 2017-02-09 16:55 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-03-14 19:18 - 2017-02-09 16:55 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-03-14 19:18 - 2017-02-09 16:54 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-03-14 19:18 - 2017-02-09 16:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-03-14 19:18 - 2017-02-09 16:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-03-14 19:18 - 2017-02-09 16:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2017-03-14 19:18 - 2017-02-09 16:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-03-14 19:18 - 2017-02-09 16:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-03-14 19:18 - 2017-02-09 16:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-03-14 19:18 - 2017-02-09 16:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-03-14 19:18 - 2017-02-09 16:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-03-14 19:18 - 2017-02-09 16:49 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 16:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 16:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 16:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-03-14 19:18 - 2017-02-09 15:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-03-14 19:18 - 2017-02-09 15:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-03-14 19:18 - 2017-02-06 17:14 - 00733696 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-03-14 19:18 - 2017-01-13 19:00 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-03-14 19:18 - 2017-01-13 19:00 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-03-14 19:18 - 2017-01-13 18:45 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-03-14 19:18 - 2017-01-13 18:45 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2017-03-14 19:18 - 2017-01-11 19:01 - 01887744 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-03-14 19:18 - 2017-01-11 19:01 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2017-03-14 19:18 - 2017-01-11 18:43 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-03-14 19:18 - 2017-01-11 18:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2017-03-14 19:18 - 2017-01-06 19:00 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-03-14 19:18 - 2017-01-06 18:44 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-03-14 19:13 - 2017-02-23 00:42 - 00084712 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-03-14 19:13 - 2017-02-23 00:37 - 01285632 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-03-14 19:13 - 2017-02-18 15:05 - 01609216 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-14 19:13 - 2017-02-18 15:05 - 00646656 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-03-14 19:13 - 2016-12-31 16:36 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-03-14 19:13 - 2016-12-31 16:36 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-03-14 19:13 - 2016-12-31 16:36 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-03-14 19:13 - 2016-12-31 16:36 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-03-14 19:13 - 2016-12-31 16:36 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-13 19:45 - 2017-03-13 19:45 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignf828a9e4a43e9359
2017-03-13 19:45 - 2017-03-13 19:45 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignaf948186c2b62e09
2017-03-13 19:45 - 2017-03-13 19:45 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign793062088fc6e40d
2017-03-10 17:35 - 2017-03-10 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2017-03-09 19:44 - 2017-03-09 19:44 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-08 13:07 - 2017-03-11 17:14 - 00975215 _____ C:\Users\Steffen\Desktop\Recipe_Crafting_for_Consumables_v12.pdf
2017-03-06 13:56 - 2017-03-06 13:56 - 00000887 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2017-03-06 13:56 - 2017-03-06 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hamachi
2017-03-06 13:56 - 2017-03-06 13:56 - 00000000 ____D C:\Program Files (x86)\Hamachi
2017-03-05 20:17 - 2017-03-05 20:17 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigne320bf1d6478ab3d
2017-03-05 20:17 - 2017-03-05 20:17 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign8d28c75275aa1bf8
2017-03-05 20:17 - 2017-03-05 20:17 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign4830e0a65f509be5
2017-03-05 20:17 - 2017-03-05 20:17 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign04c03f3782d6204c
2017-03-05 20:17 - 2017-03-05 20:17 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign020bb32d7c0a7120
2017-03-05 19:57 - 2017-03-05 19:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc075e6a626a5e9d7
2017-03-05 19:57 - 2017-03-05 19:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignaf34f736d7c2ec7f
2017-03-05 19:57 - 2017-03-05 19:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign4a8aabf8564eb668
2017-03-05 19:57 - 2017-03-05 19:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign125d6688a2a4bc82
2017-03-05 19:53 - 2017-03-05 19:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignfd524355622e66c0
2017-03-05 19:53 - 2017-03-05 19:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigne043021ad060ac32
2017-03-05 19:53 - 2017-03-05 19:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign1d2e85d2c8c2f32c
2017-03-05 19:53 - 2017-03-05 19:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign0f3a575fe9274ac6
2017-03-05 19:53 - 2017-03-05 19:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign0c3cf78944823d6c
2017-03-05 18:37 - 2017-03-05 18:37 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3a267b3d8503c607
2017-03-05 18:37 - 2017-03-05 18:37 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign0cc46aabd2a7495e
2017-03-05 18:05 - 2017-03-05 18:05 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignd879ed78251f15fb
2017-03-05 18:05 - 2017-03-05 18:05 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9bb69a483d131560
2017-03-05 18:05 - 2017-03-05 18:05 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign8b56a28b323211bf
2017-03-03 00:56 - 2017-03-03 00:56 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign5616c423a719f841
2017-03-03 00:47 - 2017-03-03 00:47 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9049144652823399
2017-03-03 00:44 - 2017-03-03 00:44 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignd07d9faac3df70b0
2017-03-03 00:44 - 2017-03-03 00:44 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigncbabd037933ce7f5
2017-03-03 00:44 - 2017-03-03 00:44 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc0234fece709c698
2017-03-03 00:44 - 2017-03-03 00:44 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3ad3f8bfc15f5fc9
2017-03-03 00:43 - 2017-03-03 00:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignb1df85c51ff4016a
2017-03-03 00:43 - 2017-03-03 00:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign950ede8506014384
2017-03-03 00:43 - 2017-03-03 00:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign73a926123a22ab1a
2017-03-03 00:43 - 2017-03-03 00:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign53a04fdad0c66284
2017-03-03 00:31 - 2017-03-03 00:31 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignefedc1ee99a1bf3f
2017-03-03 00:31 - 2017-03-03 00:31 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9e31a00e59b440da
2017-03-03 00:31 - 2017-03-03 00:31 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign879ba87f35a9a340
2017-03-03 00:31 - 2017-03-03 00:31 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign31b8190032a3f9cc
2017-03-03 00:30 - 2017-03-03 00:30 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign87334d25c949180d
2017-03-03 00:30 - 2017-03-03 00:30 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign7519ec81d10c48dc
2017-03-03 00:30 - 2017-03-03 00:30 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign7514ec56e6fdb2b6
2017-03-03 00:30 - 2017-03-03 00:30 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign0330f063eb3ff62e
2017-03-03 00:26 - 2017-03-03 00:26 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignd983f450b7072858
2017-03-03 00:26 - 2017-03-03 00:26 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc4926d3f1ca23f1a
2017-03-03 00:26 - 2017-03-03 00:26 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign92ce3fb0f86a5a82
2017-03-03 00:26 - 2017-03-03 00:26 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign8bcfb47ee3618480
2017-03-03 00:22 - 2017-03-03 00:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignac8006f6b493fd54
2017-03-03 00:22 - 2017-03-03 00:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignab888dc8f7228f3d
2017-03-03 00:22 - 2017-03-03 00:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign7244a78267ea7a99
2017-03-03 00:22 - 2017-03-03 00:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign425c3ad00ee18c62
2017-03-03 00:22 - 2017-03-03 00:22 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign2d3896876e76484d
2017-03-03 00:21 - 2017-03-03 00:21 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc6d03791164bf351
2017-03-03 00:21 - 2017-03-03 00:21 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign5d7c6ef84c8cad53
2017-03-03 00:21 - 2017-03-03 00:21 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign54329148f4addb80
2017-03-03 00:21 - 2017-03-03 00:21 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign02e71ebd9e1a6da5
2017-03-03 00:19 - 2017-03-03 00:19 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign4aa60639810d650b
2017-03-03 00:19 - 2017-03-03 00:19 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign4937233701222918
2017-03-03 00:19 - 2017-03-03 00:19 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign1ef408ec67522db0
2017-03-03 00:19 - 2017-03-03 00:19 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign168e210977ff1ed3
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignb24173af6321d48c
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9b00d10d3414cd7b
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign97065b74af83a60c
2017-03-03 00:16 - 2017-03-03 00:16 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign05751b2af7e46dea
2017-03-03 00:08 - 2017-03-03 00:08 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignd681a7e18e4c466b
2017-03-03 00:08 - 2017-03-03 00:08 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigna30f07bf11c794f8
2017-03-03 00:08 - 2017-03-03 00:08 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign999bf919626f5a6c
2017-03-03 00:08 - 2017-03-03 00:08 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign04405e4df8660f49
2017-03-03 00:06 - 2017-03-03 00:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablett
2017-03-03 00:05 - 2017-03-03 00:05 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign6b596bd61b809391
2017-03-03 00:05 - 2017-03-03 00:05 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign41018435c98d87e2
2017-03-03 00:05 - 2017-03-03 00:05 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign2152e5640299c5f5
2017-03-03 00:03 - 2017-03-03 00:03 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign923550409788ab20
2017-03-03 00:03 - 2017-03-03 00:03 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3fbd8590cda9f3d5
2017-03-03 00:03 - 2017-03-03 00:03 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign1db0314ce54e0893
2017-03-03 00:03 - 2017-03-03 00:03 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign0fc222487ec798b0
2017-03-03 00:01 - 2017-03-03 00:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign78111f7d587d52a4
2017-03-03 00:01 - 2017-03-03 00:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign38458270ff40727f
2017-03-03 00:01 - 2017-03-03 00:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign31e9691cef61e7d5
2017-03-03 00:01 - 2017-03-03 00:01 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign246adc359cff76d8
2017-03-03 00:00 - 2017-03-03 00:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigneae252886290de0e
2017-03-03 00:00 - 2017-03-03 00:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignbf3736a77157b9f0
2017-03-03 00:00 - 2017-03-03 00:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign75d975a21d357a9a
2017-03-03 00:00 - 2017-03-03 00:00 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign5a7e8d4915cc41a8
2017-03-02 23:54 - 2017-03-02 23:54 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigna9f110d81b645b7c
2017-03-02 23:53 - 2017-03-02 23:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignb017b6d1d9f51967
2017-03-02 23:53 - 2017-03-02 23:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign625e9bb3abc44c46
2017-03-02 23:53 - 2017-03-02 23:53 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign2944c45181046ebb
2017-03-02 15:47 - 2017-03-02 15:47 - 00000000 ____D C:\Users\Steffen\ansel
2017-03-01 23:51 - 2017-03-01 23:51 - 00000000 ____D C:\Users\Steffen\Documents\League of Legends
2017-03-01 22:58 - 2017-03-01 22:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignebc81f377b9bffee
2017-03-01 22:58 - 2017-03-01 22:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignb694f4a6c45efd46
2017-03-01 22:58 - 2017-03-01 22:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign23869647cf2702cb
2017-03-01 20:33 - 2017-03-10 17:35 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\Riot Games
2017-03-01 18:29 - 2017-02-09 23:39 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-03-01 18:27 - 2017-02-10 01:52 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 34937280 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 28212280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 19110088 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 16398896 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 14373824 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-03-01 18:27 - 2017-02-10 01:52 - 13377072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 01051584 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00961080 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00611384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00425288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-03-01 18:27 - 2017-02-10 01:52 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-02-28 14:50 - 2017-03-01 18:01 - 00000000 ____D C:\Users\Steffen\Desktop\Wasser
2017-02-28 14:21 - 2017-02-28 14:21 - 00170626 _____ C:\Users\Steffen\Desktop\RE Pfosten ******.pdf
2017-02-28 14:21 - 2017-02-28 14:21 - 00118098 _____ C:\Users\Steffen\Desktop\*************#001_01.pdf
2017-02-27 19:58 - 2017-02-27 19:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign743238a32e3935e0
2017-02-27 19:58 - 2017-02-27 19:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign256a8eae710fe0a1
2017-02-27 19:58 - 2017-02-27 19:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign096dbc766b43beb6
2017-02-27 19:58 - 2017-02-27 19:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign045cf28ff3c3aae5
2017-02-27 17:12 - 2017-02-27 17:12 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign91f9eab813b431a2
2017-02-27 17:12 - 2017-02-27 17:12 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign28892ea7e82b8d5d
2017-02-27 17:11 - 2017-02-27 17:11 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc89e0dedabf009ed
2017-02-27 17:11 - 2017-02-27 17:11 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign238d5f5b27072f77
2017-02-24 14:43 - 2017-03-18 10:58 - 00000000 ____D C:\Users\Steffen\Desktop\Versicherungen
2017-02-24 14:43 - 2017-02-24 14:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigncb27a1abed96655d
2017-02-24 14:43 - 2017-02-24 14:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc6915b5b9dd5d53d
2017-02-24 14:43 - 2017-02-24 14:43 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign3682da2c86b92b7b
2017-02-22 17:14 - 2017-02-22 17:14 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign5970cf5eb684722e
2017-02-22 17:14 - 2017-02-22 17:14 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign2ddc9204c3239c69
2017-02-22 17:14 - 2017-02-22 17:14 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign2c20ca73eeee0b02
2017-02-22 12:32 - 2017-02-22 12:32 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignde45a7d54d3921a0
2017-02-22 12:32 - 2017-02-22 12:32 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign75d631e6d9aa8be0
2017-02-22 12:32 - 2017-02-22 12:32 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign41b7491243c898c3
2017-02-22 11:58 - 2017-02-22 11:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign7e0a2e9df570596d
2017-02-22 11:58 - 2017-02-22 11:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign18e2d90631db7daf
2017-02-22 11:58 - 2017-02-22 11:58 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign0feebbf7ca457958
2017-02-22 11:57 - 2017-02-22 11:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigndee63ce8d1f0f003
2017-02-22 11:57 - 2017-02-22 11:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign17abefa566ed7402
2017-02-22 11:57 - 2017-02-22 11:57 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign05dfedc94fd6f8bd
2017-02-22 11:48 - 2017-02-22 11:48 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignec0c103d29533501
2017-02-22 11:48 - 2017-02-22 11:48 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignc274e8b137416c30
2017-02-22 11:48 - 2017-02-22 11:48 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9f15f55a71780f5f
2017-02-22 11:02 - 2017-02-22 17:26 - 02902016 _____ C:\Users\Steffen\Desktop\V.ppt
2017-02-22 10:56 - 2017-02-22 10:56 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignf4854b59b824bdc6
2017-02-22 10:56 - 2017-02-22 10:56 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignca532994e3c17e34
2017-02-22 10:56 - 2017-02-22 10:56 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsigna25ecca9274336a0
2017-02-22 01:37 - 2017-02-22 01:37 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsignbb3dc7c1099aef12
2017-02-22 01:37 - 2017-02-22 01:37 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign9a98ed49c533bda2
2017-02-22 01:37 - 2017-02-22 01:37 - 00000000 ____D C:\Users\Steffen\AppData\Local\Tempzxpsign94125149cf1ed793
2017-02-22 01:18 - 2017-02-22 01:23 - 00000000 ____D C:\Users\Steffen\Desktop\Videos Canada
2017-02-22 00:12 - 2017-02-22 13:45 - 00000000 ____D C:\Users\Steffen\Desktop\V
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-03-23 21:03 - 2015-02-13 15:50 - 00000000 ____D C:\Users\Public\Documents\Logishrd
2017-03-23 21:03 - 2015-02-13 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-03-23 21:03 - 2015-02-13 15:50 - 00000000 ____D C:\ProgramData\Logitech
2017-03-23 21:03 - 2015-02-13 15:50 - 00000000 ____D C:\ProgramData\Logishrd
2017-03-23 21:03 - 2015-02-13 15:50 - 00000000 ____D C:\Program Files\Common Files\LogiShrd
2017-03-23 21:03 - 2009-07-14 05:45 - 00025152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-23 21:03 - 2009-07-14 05:45 - 00025152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-23 21:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-03-23 21:01 - 2016-12-08 10:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-23 21:01 - 2016-11-04 17:19 - 00000346 _____ C:\Windows\Tasks\Health-Check-auto.job
2017-03-23 21:01 - 2016-08-21 18:27 - 00000000 ____D C:\Users\Steffen\AppData\Local\LogMeIn Hamachi
2017-03-23 21:01 - 2015-07-29 16:29 - 00000000 ___RD C:\Users\Steffen\Creative Cloud Files
2017-03-23 21:01 - 2015-01-28 20:58 - 00000344 _____ C:\Windows\lgfwup.ini
2017-03-23 21:01 - 2015-01-28 20:58 - 00000000 ____D C:\Program Files (x86)\lg_fwupdate
2017-03-23 21:01 - 2015-01-28 20:54 - 00000000 ____D C:\Users\Steffen\AppData\Local\Adobe
2017-03-23 21:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-23 20:58 - 2016-11-16 13:52 - 00000000 ____D C:\Users\Steffen\AppData\LocalLow\Mozilla
2017-03-23 20:22 - 2015-06-02 14:38 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-225253568-2950696071-1607657666-1000UA.job
2017-03-23 20:18 - 2011-04-12 08:43 - 00663500 _____ C:\Windows\system32\perfh007.dat
2017-03-23 20:18 - 2011-04-12 08:43 - 00136320 _____ C:\Windows\system32\perfc007.dat
2017-03-23 20:18 - 2009-07-14 06:13 - 01528896 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-23 19:28 - 2015-06-02 14:38 - 00000000 ____D C:\Users\Steffen\AppData\Local\Dropbox
2017-03-23 18:27 - 2015-01-28 20:28 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E5B51F7A-A4D6-4F95-A8E5-ADE925EF3107}
2017-03-22 23:06 - 2016-03-10 00:25 - 00001788 _____ C:\Users\Steffen\AppData\Roaming\Coolorus 2
2017-03-21 15:44 - 2015-02-22 00:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-20 13:56 - 2016-12-14 15:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-18 10:55 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-03-15 16:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-03-15 14:31 - 2009-07-14 05:45 - 05117544 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-15 14:30 - 2015-01-28 22:39 - 00000000 ___SD C:\Windows\system32\CompatTel
2017-03-15 14:30 - 2015-01-28 22:39 - 00000000 ____D C:\Windows\system32\appraiser
2017-03-15 14:30 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\DVD Maker
2017-03-14 23:42 - 2015-01-29 16:24 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-03-14 23:42 - 2015-01-28 21:14 - 00000000 ____D C:\Windows\system32\MRT
2017-03-14 23:41 - 2015-01-28 21:14 - 138634176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-03-14 23:40 - 2015-01-28 21:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-03-14 23:39 - 2015-01-28 21:30 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-03-14 23:39 - 2015-01-28 21:30 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-03-14 21:20 - 2015-02-24 19:40 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-14 21:20 - 2015-02-24 19:40 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-14 21:20 - 2015-02-24 19:40 - 00004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-14 21:20 - 2015-02-24 19:40 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-14 21:20 - 2015-02-24 19:40 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-13 20:05 - 2016-03-02 15:46 - 00000000 ____D C:\Users\Steffen\Desktop\Games
2017-03-13 19:57 - 2015-01-31 18:25 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\KeePass
2017-03-12 19:10 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-03-11 10:22 - 2015-06-02 14:38 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-225253568-2950696071-1607657666-1000Core.job
2017-03-09 22:27 - 2015-04-05 20:16 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\.minecraft
2017-03-09 19:44 - 2015-02-03 20:11 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\Dropbox
2017-03-08 13:06 - 2015-01-28 20:18 - 00000000 ____D C:\ProgramData\Adobe
2017-03-06 21:47 - 2016-09-16 13:18 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-03-06 21:47 - 2016-09-16 13:18 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-03-05 19:49 - 2015-02-02 21:10 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\vlc
2017-03-03 00:06 - 2015-06-11 16:13 - 00000000 ____D C:\Program Files\Tablet
2017-03-02 15:47 - 2015-01-28 19:34 - 00000000 ____D C:\Users\Steffen
2017-03-02 13:26 - 2016-09-16 13:17 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2017-03-01 18:29 - 2016-12-08 10:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-03-01 18:29 - 2016-03-12 10:18 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-03-01 18:29 - 2015-01-28 20:40 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-27 19:58 - 2015-02-01 08:45 - 00000000 ____D C:\Users\Steffen\AppData\Local\Lazy Nezumi Pro
2017-02-27 17:28 - 2016-06-30 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lazy Nezumi Pro
2017-02-27 17:28 - 2016-06-30 18:14 - 00000000 ____D C:\Program Files (x86)\Lazy Nezumi Pro
2017-02-22 15:11 - 2016-04-20 16:51 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2017-02-22 10:56 - 2015-06-10 21:24 - 00000000 ____D C:\Users\Steffen\AppData\Local\CrashDumps
2017-02-21 23:21 - 2015-02-03 22:10 - 00000000 ____D C:\Users\Steffen\AppData\Roaming\Skype
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-03-10 00:25 - 2017-03-22 23:06 - 0001788 _____ () C:\Users\Steffen\AppData\Roaming\Coolorus 2
2015-02-01 08:23 - 2015-02-01 08:23 - 0000028 _____ () C:\Users\Steffen\AppData\Roaming\kulerdata.json
2015-09-05 13:58 - 2016-07-09 07:18 - 0069632 ___SH () C:\Users\Steffen\AppData\Roaming\Thumbs.db
2016-11-02 21:47 - 2016-11-02 21:47 - 0001557 _____ () C:\Users\Steffen\AppData\Local\recently-used.xbel
2015-01-28 19:56 - 2015-01-28 19:56 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-12-02 22:49 - 2015-12-02 22:49 - 0000121 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2016-12-26 11:24 - 2017-01-13 14:42 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-26 11:24 - 2017-01-13 00:59 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Einige Dateien in TEMP:
====================
2008-11-10 21:54 - 2008-11-10 21:54 - 0106496 _____ (Microsoft Corporation) C:\Users\Steffen\AppData\Local\Temp\GameuxInstallHelper.dll
2016-12-26 11:23 - 2015-08-08 20:11 - 0134656 _____ (Irfan Skiljan, IrfanView) C:\Users\Steffen\AppData\Local\Temp\iv_uninstall.exe
2016-12-08 10:49 - 2017-01-20 15:07 - 0352704 _____ (NVIDIA Corporation) C:\Users\Steffen\AppData\Local\Temp\nvStInst.exe
2016-12-08 10:51 - 2016-11-17 14:44 - 1135552 _____ (NVIDIA Corporation) C:\Users\Steffen\AppData\Local\Temp\NvTelemetry.dll
2016-12-08 10:51 - 2017-01-06 02:10 - 0255032 _____ (NVIDIA Corporation) C:\Users\Steffen\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-12-08 10:51 - 2017-01-06 02:10 - 0335928 _____ (NVIDIA Corporation) C:\Users\Steffen\AppData\Local\Temp\NvTelemetryAPI64.dll
2006-10-27 14:01 - 2006-10-27 14:01 - 0049152 _____ () C:\Users\Steffen\AppData\Local\Temp\SettingUpdate.exe
2016-12-27 00:13 - 2011-10-12 23:12 - 0314272 _____ () C:\Users\Steffen\AppData\Local\Temp\Uninstaller-12212.exe
2016-12-27 00:11 - 2011-10-12 23:12 - 0314272 _____ () C:\Users\Steffen\AppData\Local\Temp\Uninstaller-1976.exe
2016-12-27 00:11 - 2011-10-12 23:12 - 0314272 _____ () C:\Users\Steffen\AppData\Local\Temp\Uninstaller-9912.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-03-14 19:40
==================== Ende von FRST.txt ============================
|
| Themen zu Win 7: normaler Modus extrem langsam, läuft normal abgesichert |
| bildschirm, computer, cpu, defender, desktop, failed, fehlermeldung, flash player, hängen, hängt, langsam, launch, mozilla, netzwerk, node.js, nvcontainer, prozesse, realtek, registry, rundll, scan, security, sekunden, services.exe, software, svchost.exe, usb, windows |
Baum-Darstellung