| |
| |||||||
Log-Analyse und Auswertung: Problem mit launchpage.orgWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.04.2017, 14:41
| #1 |
 |  Problem mit launchpage.org Hallo, ich habe das exakt selbe Problem wie "Longer" im Post hier auf dem Forum vom 4.03.2017, 21:18 http://www.trojaner-board.de/184917-...hpage-org.html Startseite "launchpage.org" - Standard Startseite "launchpage.org" Ich gehe auch davon aus das der Chip Installer dafür ursächlich war... Kann ich einen Einzelnen Schritt aus dem Beitrag zum Selben Problem ausführen um die Arbeit für allle so gering wie möglich zu gestalten ? Vilene Lieben Dank und MFG Konstantin HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 15:04:21, on 30.04.2017 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.18639) Boot mode: Normal Running processes: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe C:\PROGRA~1\Lenovo\Zoom\TPSCREX.EXE C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Windows\SysWOW64\rundll32.exe C:\Program Files (x86)\Dropbox\Client\Dropbox.exe C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\PDF24\pdf24.exe C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe C:\Users\user\Downloads\hijackthis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Sign in bei Hotmail, Outlook Login, Skype, Messenger ? MSN Deutschland R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Sign in bei Hotmail, Outlook Login, Skype, Messenger ? MSN Deutschland R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Sign in bei Hotmail, Outlook Login, Skype, Messenger ? MSN Deutschland R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" O4 - HKLM\..\Run: [PWMTRV] rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [PDFPrint] "C:\Program Files (x86)\PDF24\pdf24.exe" O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR O4 - HKCU\..\Run: [f.lux] "C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O4 - Startup: An OneNote senden.lnk = C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE O4 - Global Startup: Adobe Acrobat - Schnellstart.lnk = ? O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe O8 - Extra context menu item: An vorhandenes PDF anfügen - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Auswahl in Adobe PDF konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Auswahl in vorhandene PDF-Datei konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000 O8 - Extra context menu item: In Adobe PDF konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105 O8 - Extra context menu item: Verknüpfungsziel in Adobe PDF konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: hxxp://*.webcompanion.com O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe O23 - Service: chip 1-click download service (chip1click) - Chip Digital GmbH - C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: Dropbox-Update-Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: Dropbox-Update-Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe O23 - Service: DbxSvc - Unknown owner - C:\Windows\system32\DbxSvc.exe (file missing) O23 - Service: Lenovo Doze Mode Service (DozeSvc) - Lenovo. - C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing) O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PDF24 - Geek Software GmbH - C:\Program Files (x86)\PDF24\pdf24.exe O23 - Service: Power Manager Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe O23 - Service: Anzeige am Bildschirm (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: Mobile Broadband Service (WMCoreService) - Ericsson AB - C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14476 bytes Malwarebytes www.malwarebytes.com -Protokolldetails- Scan-Datum: 30.04.17 Scan-Zeit: 15:31 Protokolldatei: Malwarebytes.txt Administrator: Ja -Softwaredaten- Version: 3.0.6.1469 Komponentenversion: 1.0.103 Version des Aktualisierungspakets: 1.0.1839 Lizenz: Testversion -Systemdaten- Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: user-PC\user -Scan-Übersicht- Scan-Typ: Bedrohungs-Scan Ergebnis: Abgeschlossen Gescannte Objekte: 315025 Abgelaufene Zeit: 0 Min., 52 Sek. -Scan-Optionen- Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert -Scan-Details- Prozess: 0 (keine bösartigen Elemente erkannt) Modul: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 1 PUP.Optional.Conduit, HKU\S-1-5-21-254914080-1563877497-1754063145-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, Keine Aktion durch Benutzer, [555], [236865],1.0.1839 Registrierungswert: 2 PUP.Optional.Conduit, HKU\S-1-5-21-254914080-1563877497-1754063145-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, Keine Aktion durch Benutzer, [555], [236865],1.0.1839 PUP.Optional.Conduit, HKU\S-1-5-21-254914080-1563877497-1754063145-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, Keine Aktion durch Benutzer, [555], [236865],1.0.1839 Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Daten-Stream: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Datei: 0 (keine bösartigen Elemente erkannt) Physischer Sektor: 0 (keine bösartigen Elemente erkannt) (end) Ich sehe ein dass es dumm war auf eigene Faust zu versuchen mich des Problems zu entledigen.. ich habe Malwarebytes einmal durchlaufen lasssen und jede menge in die Quarantäne verschoben und keine logdatei gespeichert  Ich wollte noch anmerken, das ich keinenexteren Virenscanner benutze, da ich gehört habe das der Windows Defender ausreichen würde.... vermutlich sollte ich daran auch etwas ändern nehme ich an ? Vielen Lieben dank Konstantin |
|
01.05.2017, 13:22
| #2 |
| /// TB-Ausbilder   | Problem mit launchpage.org Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Um die Bereinigung möchlichst effektiv und schnell gestalten zu können, bitte ich um Beachtung der folgenden Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
04.05.2017, 20:01
| #3 |
| /// TB-Ausbilder | Problem mit launchpage.org Fehlende Rückmeldung
__________________Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten. Profilnachricht inklusive Link zum Thema an mich falls Du denoch weiter machen willst. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen! |
|
17.05.2017, 21:48
| #4 |
| | Problem mit launchpage.orgFRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-05-2017
durchgeführt von user (Administrator) auf USER-PC (17-05-2017 22:39:13)
Gestartet von C:\Users\user\Downloads
Geladene Profile: user (Verfügbare Profile: user)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Flux Software LLC) C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916592 2014-07-28] (Synaptics Incorporated)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant systems, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [113656 2013-07-02] (Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [96024 2017-04-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [912768 2017-04-10] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [f.lux] => C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27793888 2017-05-05] (Skype Technologies S.A.)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat - Schnellstart.lnk [2017-03-04]
ShortcutTarget: Adobe Acrobat - Schnellstart.lnk -> C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk [2017-03-04]
ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2017-05-16]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2017-01-27]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 141.20.2.3 141.20.1.3
Tcpip\..\Interfaces\{73C8CFBD-F144-40C6-AC48-823388AE64E8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E08C96DE-4F95-4B54-A2EF-BF05D5BFBB9F}: [DhcpNameServer] 141.20.2.3 141.20.1.3
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022017-A6B219395BABB4E59ADF&form=CONBDF&conlogo=CT3332005&q={searchTerms}
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022017-A6B219395BABB4E59ADF&form=CONBDF&conlogo=CT3332005&q={searchTerms}
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-16] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2017-05-16] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-16] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-22] (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-22] (Oracle Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 0huy5nme.default-1493469142145
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0huy5nme.default-1493469142145 [2017-05-17]
FF Extension: (Avira Browser Safety) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0huy5nme.default-1493469142145\Extensions\abs@avira.com [2017-05-14]
FF Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\0huy5nme.default-1493469142145\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-04-29]
FF Extension: (Firefox Screenshots) - C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [2017-05-12] [ist nicht signiert]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1119712 2017-04-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [488920 2017-04-10] (Avira Operations GmbH & Co. KG)
U2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [488920 2017-04-10] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1520680 2017-04-10] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [373840 2017-04-18] (Avira Operations GmbH & Co. KG)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3801280 2017-05-04] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (Lenovo.)
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2017-03-04] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R2 LPlatSvc; C:\Windows\system32\LPlatSvc.exe [711248 2017-04-01] (Lenovo.)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-05-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [176968 2017-04-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [148104 2017-04-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-04-10] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-04-10] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [51248 2017-04-10] (Avira Operations GmbH & Co. KG)
S3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB)
S3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2017-02-11] (REALiX(tm))
S3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB)
S3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation)
S3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation)
S3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation)
S3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated)
S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [17280 2017-01-29] (Scott)
S3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-17 22:39 - 2017-05-17 22:39 - 00022677 _____ C:\Users\user\Downloads\FRST.txt
2017-05-17 22:39 - 2017-05-17 22:39 - 00000000 ____D C:\FRST
2017-05-17 22:38 - 2017-05-17 22:38 - 02429952 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2017-05-17 22:35 - 2017-05-17 22:35 - 00265970 _____ C:\Users\user\Downloads\Against_narrativity_final_2008_version.pdf
2017-05-17 22:31 - 2017-05-17 22:31 - 00141475 _____ C:\Users\user\Downloads\Stellenausschreibung Projektassistenz elhana Lernpaten e.V..pdf
2017-05-17 22:08 - 2017-05-17 22:08 - 01606137 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3(2).pdf
2017-05-17 21:46 - 2017-05-17 22:09 - 00000000 ____D C:\Users\user\Desktop\Statistik II
2017-05-17 20:57 - 2017-05-17 20:58 - 00000000 ____D C:\Users\user\Desktop\Lernen
2017-05-17 20:45 - 2017-05-17 20:45 - 00000000 ____D C:\Users\user\Documents\Benutzerdefinierte Office-Vorlagen
2017-05-17 19:28 - 2017-05-17 19:28 - 00122917 _____ C:\Users\user\Downloads\2016_10_fb3_flyer.pdf
2017-05-17 18:54 - 2017-05-17 18:57 - 00000000 ____D C:\AdwCleaner
2017-05-17 18:54 - 2017-05-17 18:55 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046(3).exe
2017-05-17 18:49 - 2017-05-17 18:49 - 00015390 _____ C:\Users\user\Downloads\hijackthis 17.05.17
2017-05-17 18:22 - 2017-05-17 18:22 - 00003126 _____ C:\Windows\System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C}
2017-05-17 18:19 - 2017-05-17 18:20 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(2).exe
2017-05-17 18:19 - 2017-05-17 18:19 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(1).exe
2017-05-17 17:03 - 2017-05-17 17:03 - 00005719 _____ C:\Users\user\Documents\.RData
2017-05-17 14:29 - 2017-05-17 14:29 - 00000000 ____D C:\Users\user\Documents\rkurs
2017-05-17 14:12 - 2017-05-17 14:12 - 00000000 ____D C:\Users\user\Documents\R
2017-05-17 10:47 - 2017-05-17 10:47 - 00000085 _____ C:\Windows\wininit.ini
2017-05-17 10:39 - 2017-05-17 10:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-17 10:38 - 2017-05-17 10:39 - 63035592 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.1.2.1733.exe
2017-05-17 10:37 - 2017-05-17 10:37 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2017-05-17 10:36 - 2017-05-17 10:36 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046(2).exe
2017-05-17 10:21 - 2017-05-17 10:24 - 00000000 ____D C:\Users\user\AppData\Local\NPE
2017-05-17 10:21 - 2017-05-17 10:21 - 03435768 _____ (Symantec Corporation) C:\Users\user\Downloads\NPE.exe
2017-05-17 10:21 - 2017-05-17 10:21 - 00000000 ____D C:\ProgramData\Norton
2017-05-17 03:06 - 2017-05-17 10:48 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-05-17 03:06 - 2017-05-17 10:47 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-05-17 03:06 - 2017-05-17 03:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\user\Downloads\spybot-2.4.exe
2017-05-17 03:06 - 2017-05-17 03:06 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2017-05-17 02:57 - 2017-05-17 02:57 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046(1).exe
2017-05-17 02:54 - 2017-05-17 02:54 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046.exe
2017-05-17 02:54 - 2017-05-17 02:54 - 04015056 _____ C:\Users\user\Downloads\adwcleaner_6.043.exe
2017-05-17 01:59 - 2017-05-17 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-16 23:49 - 2017-05-16 23:49 - 00000000 ____D C:\Users\user\Documents\OneNote-Notizbücher
2017-05-16 23:39 - 2017-05-16 23:40 - 00000000 ____D C:\Users\user\Desktop\Wahrnehmung
2017-05-16 23:38 - 2017-05-16 23:39 - 00000000 ____D C:\Users\user\Desktop\Referat Borderline
2017-05-16 23:34 - 2017-05-16 23:34 - 54199488 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\Documents\Bluetooth-Exchange-Ordner
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Local\Broadcom
2017-05-16 23:06 - 2012-12-04 04:38 - 00598808 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2017-05-16 23:04 - 2012-05-02 07:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2017-05-16 23:04 - 2011-09-18 01:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2017-05-16 23:03 - 2017-05-16 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-05-16 23:03 - 2017-05-16 23:03 - 00000000 ____D C:\Program Files (x86)\Dolby Home Theater v4
2017-05-16 23:02 - 2017-05-16 23:25 - 00000000 ____D C:\Program Files\ThinkPad
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____D C:\Program Files\CONEXANT
2017-05-16 23:02 - 2017-04-01 02:44 - 00711248 _____ (Lenovo.) C:\Windows\system32\LPlatSvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00187984 _____ (Lenovo.) C:\Windows\system32\ibmpmsvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00082816 _____ (Lenovo.) C:\Windows\system32\Drivers\ibmpmdrv.sys
2017-05-16 23:02 - 2017-04-01 02:44 - 00058448 _____ (Lenovo.) C:\Windows\system32\tpinspm.dll
2017-05-16 23:02 - 2012-08-06 14:30 - 01780384 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64AP73.dll
2017-05-16 23:02 - 2012-06-05 18:40 - 01580704 _____ (Conexant Systems Inc.) C:\Windows\system32\Drivers\CHDRT64.sys
2017-05-16 23:02 - 2012-05-31 15:03 - 00568992 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI64A90.dll
2017-05-16 23:02 - 2012-05-01 11:18 - 00002013 _____ C:\Windows\system32\VoipUpdate.ini
2017-05-16 23:02 - 2011-05-11 14:25 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll
2017-05-16 23:02 - 2011-02-17 15:16 - 02075712 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-05-16 23:02 - 2011-01-18 08:35 - 00030893 _____ C:\Windows\system32\Drivers\Mixer.ini
2017-05-16 23:02 - 2011-01-04 19:22 - 00001976 ____N C:\Windows\system32\Drivers\SamSfPa.dat
2017-05-16 23:02 - 2010-12-17 04:18 - 00198784 ____N (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe
2017-05-16 23:02 - 2010-11-23 13:30 - 00050304 _____ (Conexant Systems Inc.) C:\Windows\system32\CxPageMaster64.dll
2017-05-16 23:02 - 2010-11-18 13:47 - 00446592 ____N (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
2017-05-16 23:02 - 2010-10-28 10:27 - 00001816 _____ C:\Windows\system32\Drivers\Altmixer.ini
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.QtWebEngineProcess
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.LSC
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\SWTOOLS
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Program Files (x86)\Integrated Camera Driver
2017-05-16 23:01 - 2017-04-01 02:44 - 00088144 _____ (Lenovo.) C:\Windows\system32\ibmpmctl.exe
2017-05-16 23:01 - 2013-11-15 15:40 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\2C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C04
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0816
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0804
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0424
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041F
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0419
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0416
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0415
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0414
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0413
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0412
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0411
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0410
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040C
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0409
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0408
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0406
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0405
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0404
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0401
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Program Files (x86)\Chicony Electronics Co.,Ltd
2017-05-16 23:00 - 2011-03-07 17:07 - 00126976 _____ (Ricoh co.,Ltd.) C:\Windows\SysWOW64\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:06 - 00142848 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:05 - 00123392 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.dll
2017-05-16 23:00 - 2011-03-04 18:18 - 00166016 _____ (Ricoh co.,Ltd.) C:\Windows\system32\Drivers\5U877.sys
2017-05-16 22:53 - 2017-05-16 22:53 - 02724352 _____ (Lenovo ) C:\Users\user\Downloads\LSBSetup.exe
2017-05-16 20:38 - 2017-05-16 20:38 - 00268108 _____ C:\Users\user\Downloads\schwermut-als-objekt.pdf
2017-05-16 20:29 - 2017-05-16 20:29 - 03900001 _____ C:\Users\user\Downloads\ASISM04_fertig_web.pdf
2017-05-16 17:16 - 2017-05-17 17:00 - 00000000 ____D C:\Users\user\Desktop\rkurs
2017-05-16 16:25 - 2017-05-16 16:25 - 00000000 ____D C:\Users\user\Documents\Updater5
2017-05-16 16:15 - 2017-05-16 16:16 - 00000000 ____D C:\Users\user\Desktop\Wissenschaftliches Schreiben
2017-05-16 15:02 - 2017-05-16 15:02 - 00000000 ____D C:\Users\user\Desktop\Gecshichte der Psychologie
2017-05-16 14:57 - 2017-05-16 20:39 - 00000000 ____D C:\Users\user\Desktop\Ktitik
2017-05-16 14:56 - 2017-05-16 14:56 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(2).pdf
2017-05-16 14:50 - 2017-05-16 14:50 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017(1).pdf
2017-05-16 14:49 - 2017-05-16 14:57 - 00000000 ____D C:\Users\user\Desktop\Denken und Spracheverarbeitung
2017-05-16 14:49 - 2017-05-16 14:49 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(1).pdf
2017-05-16 14:48 - 2017-05-16 14:48 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017.pdf
2017-05-16 02:15 - 2017-05-16 02:15 - 00742528 _____ C:\Users\user\Downloads\Training.htm
2017-05-15 22:34 - 2017-05-15 22:41 - 00021911 ____H C:\Users\user\Desktop\~WRL1464.tmp
2017-05-15 21:54 - 2017-05-15 21:54 - 00000000 ____D C:\Users\user\Desktop\Zeitschrift für Sozialforschung
2017-05-15 21:26 - 2017-05-15 21:26 - 36441940 _____ C:\Users\user\Downloads\Zeitschrift_fuer_Sozialforschung_6_1937.pdf
2017-05-15 21:03 - 2017-05-15 21:03 - 00000000 ____D C:\Users\user\Desktop\01. Lehrbuch für klinische Psychologie - Psychotherapie
2017-05-15 19:56 - 2017-05-15 20:59 - 02965941 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org)(1).pdf
2017-05-15 12:54 - 2017-05-16 15:24 - 01607874 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3(1).pdf
2017-05-14 21:11 - 2017-05-14 21:11 - 00000000 ____D C:\Users\user\AppData\Roaming\Avira
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Windows\System32\Tasks\Avira
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Users\user\AppData\Local\Avira
2017-05-14 21:09 - 2017-05-14 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-05-14 21:07 - 2017-04-10 13:23 - 00176968 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2017-05-14 21:07 - 2017-04-10 13:23 - 00148104 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2017-05-14 21:07 - 2017-04-10 13:23 - 00078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2017-05-14 21:07 - 2017-04-10 13:23 - 00051248 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2017-05-14 21:07 - 2017-04-10 13:23 - 00035328 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2017-05-14 21:06 - 2017-05-16 23:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-05-14 21:06 - 2017-05-16 23:21 - 00000000 ____D C:\ProgramData\Avira
2017-05-14 21:06 - 2017-05-14 21:10 - 00000000 ____D C:\Program Files (x86)\Avira
2017-05-14 20:53 - 2017-05-14 21:05 - 04793032 _____ (Avira Operations GmbH & Co. KG) C:\Users\user\Downloads\avira_de_av_5918a787ebd94__ws.exe
2017-05-14 18:31 - 2017-05-14 18:31 - 02863178 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org).pdf
2017-05-14 18:27 - 2017-05-14 18:27 - 00253035 _____ C:\Users\user\Downloads\[]_Psychologie_Psychiatrie_Auszug._Der_Psychothera(bookzz.org).pdf
2017-05-14 18:14 - 2015-04-15 15:36 - 11254212 _____ C:\Users\user\Desktop\[Robert_L._Solso]_Kognitive_Psychologie(BookZZ.org).pdf
2017-05-12 16:17 - 2017-05-12 16:18 - 01053047 _____ C:\Users\user\Downloads\the%20aftermath%20of%20the%20allied%20triumph%20over%20germany.pdf
2017-05-11 17:31 - 2017-05-11 17:31 - 00519236 _____ C:\Users\user\Downloads\Israel Flag.php
2017-05-11 14:22 - 2017-05-11 14:22 - 00821845 _____ C:\Users\user\Downloads\StatTut2_3.pdf
2017-05-10 12:50 - 2017-04-28 03:14 - 05547240 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 03:14 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-05-10 12:50 - 2017-04-28 03:14 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-05-10 12:50 - 2017-04-28 03:11 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:36 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-05-10 12:50 - 2017-04-28 02:36 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 02:34 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:19 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-05-10 12:50 - 2017-04-28 02:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-05-10 12:50 - 2017-04-28 02:19 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-05-10 12:50 - 2017-04-28 02:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-05-10 12:50 - 2017-04-28 02:14 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-05-10 12:50 - 2017-04-28 02:12 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 02:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-05-10 12:50 - 2017-04-28 02:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-26 16:59 - 03220992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-10 12:50 - 2017-04-21 17:34 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-05-10 12:50 - 2017-04-21 17:15 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-05-10 12:50 - 2017-04-20 02:00 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-10 12:50 - 2017-04-20 01:16 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 02065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00876544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 01417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-05-10 12:50 - 2017-04-17 16:54 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-05-10 12:50 - 2017-04-16 11:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 11:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-05-10 12:50 - 2017-04-16 10:57 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:55 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-05-10 12:50 - 2017-04-16 10:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-10 12:50 - 2017-04-16 10:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 10:43 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-05-10 12:50 - 2017-04-16 10:38 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-05-10 12:50 - 2017-04-16 10:37 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-10 12:50 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-10 12:50 - 2017-04-16 10:36 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-10 12:50 - 2017-04-16 10:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-05-10 12:50 - 2017-04-16 10:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 10:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-10 12:50 - 2017-04-16 10:11 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-10 12:50 - 2017-04-16 10:09 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-05-10 12:50 - 2017-04-16 10:04 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-05-10 12:50 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 10:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-05-10 12:50 - 2017-04-16 10:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 09:57 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-05-10 12:50 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-05-10 12:50 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-10 12:50 - 2017-04-16 09:48 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 09:46 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-10 12:50 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:35 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 09:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-10 12:50 - 2017-04-16 09:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-05-10 12:50 - 2017-04-16 09:25 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-05-10 12:50 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 09:20 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-05-10 12:50 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-10 12:50 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-10 12:50 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-05-10 12:50 - 2017-04-12 17:26 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2017-05-10 12:50 - 2017-04-07 17:34 - 00986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-10 12:50 - 2017-04-07 17:34 - 00265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-10 12:50 - 2017-04-07 17:30 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-10 12:50 - 2017-04-07 17:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-05-10 12:50 - 2017-04-07 17:22 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-10 12:50 - 2017-04-05 16:55 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 01895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-05-10 12:50 - 2017-04-04 16:53 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-05-10 12:50 - 2017-04-04 16:53 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-05-10 12:50 - 2017-03-10 18:32 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-05-10 12:50 - 2017-03-10 18:32 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2017-05-10 12:50 - 2017-03-10 17:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-05-10 12:50 - 2017-03-10 17:55 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-05-10 12:50 - 2017-03-10 17:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-05-10 12:50 - 2017-03-09 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-05-10 12:50 - 2017-03-09 18:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-05-10 12:37 - 2017-05-10 20:48 - 11836434 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017(1).pdf
2017-05-09 17:06 - 2017-05-09 17:06 - 00118216 _____ C:\Users\user\Downloads\Laplanche-Inzest.pdf
2017-05-09 15:09 - 2017-05-09 15:10 - 00028355 _____ C:\Users\user\Downloads\Haseloff_KulturthFreud.pdf
2017-05-09 14:20 - 2017-05-09 14:20 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017.pdf
2017-05-09 12:37 - 2017-05-16 15:42 - 01993430 _____ C:\Users\user\Downloads\2017-05-09_Wiss_Schreiben_(5).pdf
2017-05-08 18:11 - 2017-05-08 18:11 - 00506237 _____ C:\Users\user\Downloads\Geburtstag.php
2017-05-08 16:50 - 2017-05-08 16:50 - 06694898 _____ C:\Users\user\Downloads\BuehrmannReader.pdf
2017-05-08 16:32 - 2017-05-08 16:33 - 00347930 _____ C:\Users\user\Downloads\Flyer Einladung Museumsfest 2017.pdf
2017-05-08 12:24 - 2017-05-16 15:42 - 01619288 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3.pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(4).pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(4).pdf
2017-05-06 23:43 - 2017-05-16 23:35 - 00000000 ____D C:\Users\user\Desktop\Allgmeine Psychologie
2017-05-06 20:31 - 2017-05-06 23:39 - 00000000 ____D C:\Ordner Desktop
2017-05-06 20:30 - 2017-05-17 21:00 - 00000000 ____D C:\Users\user\Desktop\docs pdf
2017-05-06 16:34 - 2017-05-06 16:34 - 00099291 _____ C:\Users\user\Downloads\sobre-la-parejas-del-ayer-la-pareja-humana-su-psicologia-sus-conflictos-su-tratamiento.pdf
2017-05-06 16:25 - 2017-05-06 16:25 - 00213738 _____ C:\Users\user\Downloads\El poder y sus conflictos en la pareja humana.pdf
2017-05-06 16:20 - 2017-05-06 16:20 - 00038612 _____ C:\Users\user\Downloads\14_UO_RBY_UAH.pdf
2017-05-05 23:49 - 2017-05-05 23:49 - 01552534 _____ C:\Users\user\Downloads\Brainhat_Elsevier_left_right.pdf
2017-05-05 23:48 - 2017-05-05 23:48 - 01630036 _____ C:\Users\user\Downloads\brain facts.pdf
2017-05-04 14:11 - 2017-05-04 14:11 - 00789044 _____ C:\Users\user\Downloads\StatTut2_2.pdf
2017-05-04 12:32 - 2017-05-04 12:32 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(1).pdf
2017-05-04 12:30 - 2017-05-04 12:30 - 12188880 _____ C:\Users\user\Downloads\Berk_2011_S.641-649_Liebe.pdf
2017-05-04 01:09 - 2017-05-04 01:09 - 08457076 _____ C:\Users\user\Downloads\SK 04 KM_3617050319190.pdf
2017-05-03 21:03 - 2017-05-03 21:03 - 11816779 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017.pdf
2017-05-02 23:04 - 2017-05-02 23:04 - 00020456 _____ C:\Users\user\Downloads\20161102_wohnungsgeberbestaetigung.pdf
2017-05-02 20:09 - 2017-05-02 20:09 - 01172583 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-2.pdf
2017-05-02 20:03 - 2017-05-02 20:03 - 01106984 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-1(1).pdf
2017-05-02 19:58 - 2017-05-02 19:58 - 01587063 _____ C:\Users\user\Downloads\Zielgruppen_Vortrag-Krull_Soziale-Phobie.pdf
2017-05-02 19:51 - 2017-05-02 19:52 - 22790583 _____ C:\Users\user\Downloads\Wahrnehmungseigenschaften + Allgemeine Sinnesphysiologie_2017(1).pdf
2017-05-02 19:51 - 2017-05-02 19:51 - 00260927 _____ C:\Users\user\Downloads\Überblick_Wahrnehmung+Handlung_2017(2).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(3).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(2).pdf
2017-05-02 19:19 - 2017-05-02 19:19 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(3).pdf
2017-05-02 19:11 - 2017-05-02 19:11 - 01886645 _____ C:\Users\user\Downloads\10 tips for writing a truly terrible journal article(1).pdf
2017-05-02 19:04 - 2017-05-02 19:04 - 08935575 _____ C:\Users\user\Downloads\APA_Chp-3_writing_clearly.pdf
2017-05-02 18:58 - 2017-05-02 18:58 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style(1).pdf
2017-05-02 18:54 - 2017-05-02 18:54 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen(1).pdf
2017-05-02 18:47 - 2017-05-02 18:47 - 04046470 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.6-Abbildungen.pdf
2017-05-02 18:43 - 2017-05-02 18:43 - 01960181 _____ C:\Users\user\Downloads\2017-05-02_Wiss_Schreiben_(4).pdf
2017-05-02 18:39 - 2017-05-02 18:39 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3)(1).pdf
2017-05-02 18:23 - 2017-05-02 18:23 - 05153453 _____ C:\Users\user\Downloads\2017-04-18_Wiss_Schreiben_(2).pdf
2017-05-02 18:20 - 2017-05-02 18:20 - 00013036 _____ C:\Users\user\Downloads\Semesterplan_Wiss_Schreiben_Gottwald(1).pdf
2017-05-02 18:06 - 2017-05-02 18:06 - 01612828 _____ C:\Users\user\Downloads\2017-04-11_Wiss_Schreiben_(1)(1).pdf
2017-05-02 14:26 - 2017-05-02 14:26 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(1).pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style.pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen.pdf
2017-05-02 12:59 - 2017-05-02 13:00 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3).pdf
2017-05-02 12:59 - 2017-05-02 12:59 - 01722272 _____ C:\Users\user\Downloads\Writing_without_bullshit_ch-1.pdf
2017-05-02 11:52 - 2017-05-02 11:53 - 04800083 _____ C:\Users\user\Downloads\folien14_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b.pdf
2017-05-02 11:48 - 2017-05-02 11:48 - 03917253 _____ C:\Users\user\Downloads\folien13_lernengedächtnis_ws201617_gedächtnissysteme_episodisch.pdf
2017-05-02 11:45 - 2017-05-02 11:45 - 02417602 _____ C:\Users\user\Downloads\folien12_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b_small.pdf
2017-05-02 11:43 - 2017-05-02 11:43 - 02122202 _____ C:\Users\user\Downloads\folien11_lernengedächtnis_ws201617_gedächtnissysteme_b.pdf
2017-05-02 11:28 - 2017-05-02 11:28 - 02349950 _____ C:\Users\user\Downloads\folien08_lernengedächtnis_ws201617_beobachtung.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme(1).pdf
2017-05-01 23:31 - 2017-05-01 23:31 - 00382638 _____ C:\Users\user\Downloads\dieo.pdf
2017-05-01 20:53 - 2017-05-01 20:53 - 00371721 _____ C:\Users\user\Downloads\Sem2_2017_stationäres_teilstationäres_setting.pptx (Schreibgeschützt).pdf
2017-05-01 20:51 - 2017-05-01 20:51 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017(1).pdf
2017-05-01 20:48 - 2017-05-01 20:48 - 00212904 _____ C:\Users\user\Downloads\pflichthofer_rahmen.pdf
2017-05-01 20:47 - 2017-05-01 20:47 - 00064145 _____ C:\Users\user\Downloads\SoSe2017_Seminarübersicht_LS_Settings-2.pdf
2017-05-01 20:28 - 2017-05-01 20:28 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG(1).pdf
2017-04-30 15:04 - 2017-04-30 15:04 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis.exe
2017-04-30 15:03 - 2017-04-30 15:03 - 01496584 _____ C:\Users\user\Downloads\HijackThis - CHIP-Installer.exe
2017-04-29 21:22 - 2017-04-29 21:22 - 00057829 _____ C:\Users\user\Downloads\Icke Rockabilly.jpeg
2017-04-29 21:21 - 2017-04-29 21:21 - 00061756 _____ C:\Users\user\Downloads\Icke mütze.jpeg
2017-04-28 14:52 - 2017-04-28 14:52 - 00153137 _____ C:\Users\user\Downloads\Hogh_Zweite_Natur._Kritische_und_affirmative_Lesarten_bei_John_McDowell_und_Theodor_W._Adorno.pdf
2017-04-28 14:46 - 2017-04-28 14:47 - 00098824 _____ C:\Users\user\Downloads\phase_zwei_org_hefte_artikel_die_verdinglichung_der_natur_25.pdf
2017-04-28 14:31 - 2017-04-28 14:32 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur(2).pdf
2017-04-28 14:31 - 2017-04-28 14:31 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur.pdf
2017-04-28 14:31 - 2017-04-28 14:31 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur(1).pdf
2017-04-27 14:08 - 2017-04-27 14:08 - 00910910 _____ C:\Users\user\Downloads\StatTut2_1.pdf
2017-04-27 13:39 - 2017-04-27 13:39 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(2).pdf
2017-04-27 13:36 - 2017-05-06 23:53 - 00000000 ____D C:\Users\user\Desktop\Entwicklungspsychologie II
2017-04-27 12:23 - 2017-04-28 14:53 - 01104861 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 04263520 _____ C:\Users\user\Downloads\Seiffge-Krenke_Jugend_2014_ S.380-403.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 01227687 _____ C:\Users\user\Downloads\Seiffge-Krenke_2012_S.10-40_Lebensphasen in Bewegung_Identität.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 00051206 _____ C:\Users\user\Downloads\Vorlesungsplan_Psych.II.SoSe17.pdf
2017-04-27 08:30 - 2017-04-27 08:30 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017.pdf
2017-04-27 08:30 - 2017-04-27 08:30 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG.pdf
2017-04-26 23:49 - 2017-04-26 23:49 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory(2).pdf
2017-04-26 23:49 - 2017-04-26 23:49 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory(1).pdf
2017-04-26 23:46 - 2017-04-26 23:46 - 00504359 _____ C:\Users\user\Downloads\What is psychoanalysis_.pdf
2017-04-26 23:42 - 2017-04-26 23:42 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory.pdf
2017-04-26 23:42 - 2017-04-26 23:42 - 00045803 _____ C:\Users\user\Downloads\vl_lernen_gedaechtnis_semesterplan(2).pdf
2017-04-26 23:38 - 2017-04-26 23:38 - 03241045 _____ C:\Users\user\Downloads\Bischof-Koehler_2011 S.414-445 Moralentwicklung(1).pdf
2017-04-26 23:11 - 2017-04-26 23:11 - 02308074 _____ C:\Users\user\Downloads\Mietzel_2002-S.293-317_Grundschulalter(1).pdf
2017-04-26 23:08 - 2017-04-26 23:08 - 10993815 _____ C:\Users\user\Downloads\16.Moralentwicklung(1).pdf
2017-04-26 23:06 - 2017-04-26 23:06 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral(2).pdf
2017-04-26 23:02 - 2017-04-26 23:02 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung(2).pdf
2017-04-26 23:02 - 2017-04-26 23:02 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild(2).pdf
2017-04-26 23:01 - 2017-04-26 23:01 - 01461706 _____ C:\Users\user\Downloads\15. Mentalisierung(1).pdf
2017-04-26 23:01 - 2017-04-26 23:01 - 00914576 _____ C:\Users\user\Downloads\Sodian_ 2003 _Theory of Mind(1).pdf
2017-04-26 22:58 - 2017-04-26 22:58 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung(1).pdf
2017-04-26 22:57 - 2017-04-26 22:57 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild(1).pdf
2017-04-26 22:53 - 2017-04-26 22:53 - 00447278 _____ C:\Users\user\Downloads\h97-1-psych.kv1.2jennifere.pdf
2017-04-26 22:47 - 2017-04-26 22:47 - 01373395 _____ C:\Users\user\Downloads\Diplomarbeit_M_Holzapfel.pdf
2017-04-26 22:40 - 2017-04-30 02:23 - 00013186 ____H C:\Users\user\Desktop\~WRL0005.tmp
2017-04-26 22:40 - 2017-04-26 22:40 - 00000000 ____H C:\Users\user\Desktop\~WRL3072.tmp
2017-04-26 21:48 - 2017-04-26 21:49 - 00000000 ____D C:\Users\user\Downloads\Cassandre
2017-04-26 11:15 - 2017-04-26 11:15 - 00522298 _____ C:\Users\user\Downloads\Der Kommende Aufstand.pdf
2017-04-25 16:32 - 2017-04-25 16:32 - 03560856 _____ C:\Users\user\Downloads\03. Hegel Werke 10 - Die Phänomenologie des Geistes. Das Bewusstsein.pdf
2017-04-25 16:32 - 2017-04-25 16:32 - 01683137 _____ C:\Users\user\Downloads\01. Platon - Sonnen-, Linien- und Höhlengleichnis.pdf
2017-04-25 14:32 - 2017-04-25 14:32 - 01094393 _____ C:\Users\user\Downloads\Denken2_2017(2).pdf
2017-04-25 14:31 - 2017-04-25 14:31 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017.pdf
2017-04-25 14:29 - 2017-04-25 16:19 - 01702894 _____ C:\Users\user\Downloads\10a. Popper - Die Logik der Sozialwissenschaften.pdf
2017-04-24 22:41 - 2017-04-24 22:41 - 02732169 _____ C:\Users\user\Downloads\Max Horkheimer (1937) - Traditionelle und kritische Theorie.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 10993815 _____ C:\Users\user\Downloads\16.Moralentwicklung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 03241045 _____ C:\Users\user\Downloads\Bischof-Koehler_2011 S.414-445 Moralentwicklung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 02308074 _____ C:\Users\user\Downloads\Mietzel_2002-S.293-317_Grundschulalter.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral(1).pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01461706 _____ C:\Users\user\Downloads\15. Mentalisierung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01344522 _____ C:\Users\user\Downloads\13.2Spracherwerb_ Dialog_OhneBild.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00914576 _____ C:\Users\user\Downloads\Sodian_ 2003 _Theory of Mind.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00876096 _____ C:\Users\user\Downloads\14.Affektspiegelung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00530732 _____ C:\Users\user\Downloads\Stern_1995._klinischeAspkInteraktion.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 32909874 _____ C:\Users\user\Downloads\Rauh_Vorgeburtliche Entwicklung und frühe Kindheit_2008.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 04454224 _____ C:\Users\user\Downloads\Hedervari_2011_S.28-56_Entwicklungsprozesse.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 02372279 _____ C:\Users\user\Downloads\8.a.Bindung.GrundlagenIPU_pdf Kopie.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 02093022 _____ C:\Users\user\Downloads\ZIMMERMANN_SPANGLER_Bindung.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01687819 _____ C:\Users\user\Downloads\11.Neugeborenenzeit.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01525150 _____ C:\Users\user\Downloads\Hedervari_2011_S.57-77_Bindungstheorie.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01470620 _____ C:\Users\user\Downloads\Dornes_1993_79-105_Selbstentwickl.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01460017 _____ C:\Users\user\Downloads\13.Selbstentw.Stern .pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 00854472 _____ C:\Users\user\Downloads\10.Pränatale Entwicklung und Frühgeburt_neu.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 00739536 _____ C:\Users\user\Downloads\09.Experimentelle Methoden der Säuglingsforschung.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 00597158 _____ C:\Users\user\Downloads\12.KlinischeAspInteraktion Kopie 2.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 23239256 _____ C:\Users\user\Downloads\3Theorien menschlEntw_2.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 03177534 _____ C:\Users\user\Downloads\Berk_2011_S.31-46_Methode.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01855165 _____ C:\Users\user\Downloads\Mietzel_2002_Piaget_2_S_181-195.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01721802 _____ C:\Users\user\Downloads\3Theorien menschlEnt_1 PDF.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01587523 _____ C:\Users\user\Downloads\Mietzel_2002_Piaget_3_S_251-259.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01097136 _____ C:\Users\user\Downloads\Mietzel_2002_Piaget_1_S.141-148.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01020743 _____ C:\Users\user\Downloads\Kienbaum_2010_S_147-162_Piaget.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 00990015 _____ C:\Users\user\Downloads\7a.Piaget _pdf.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 00868735 _____ C:\Users\user\Downloads\Dornes_1993_34-49_kompetenter Säugling.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 00701726 _____ C:\Users\user\Downloads\7b.Objektpermanenz.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 23017029 _____ C:\Users\user\Downloads\1 Einführung_Grundlagen(2).pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 14519025 _____ C:\Users\user\Downloads\Mietzel_2002_S_1-43_Grundlage.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 14519025 _____ C:\Users\user\Downloads\Mietzel_2002_S_1-43_Grundlage(1).pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 04307521 _____ C:\Users\user\Downloads\Berk_ 2011_S.4-31.Grundlagen.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 02710003 _____ C:\Users\user\Downloads\Kienbaum_2010_S_12-23_Grundlage.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 02397074 _____ C:\Users\user\Downloads\2.Kindbilder_neu.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 01396666 _____ C:\Users\user\Downloads\Kienbaum_2010_S_33-46_Methode.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 00776094 _____ C:\Users\user\Downloads\Hedervari_2011_S14_28 .Kindbilder_Resilienz.pdf
2017-04-24 20:30 - 2017-04-24 20:30 - 23017029 _____ C:\Users\user\Downloads\1 Einführung_Grundlagen(1).pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 03685058 _____ C:\Users\user\Downloads\Grossmann-Grossmann-2004-ab S.101-113.pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 02093022 _____ C:\Users\user\Downloads\ZIMMERMANN_SPANGLER_Bindung_2008.pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 01093913 _____ C:\Users\user\Downloads\Hedervari_2011_Bindung_Erwachsene_S_71-75.pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 01093913 _____ C:\Users\user\Downloads\Hedervari_2011_Bindung_Erwachsene_S_71-75(1).pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 00942909 _____ C:\Users\user\Downloads\Hedervari_Bindungsqualität_1995 S. 75-83.pdf
2017-04-24 13:36 - 2017-04-24 13:37 - 18809376 _____ C:\Users\user\Downloads\Grossmann_et_al._1997_Die_Bindungstheorie.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 02030640 _____ C:\Users\user\Downloads\Berk Bindung.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 01978287 _____ C:\Users\user\Downloads\7.Buchheim_BindungundPsychopathologieim Erwachsenenalter Kopie(1).pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 01101220 _____ C:\Users\user\Downloads\Bowlby 1988_1995_-Elternbindung und Persoenlichkeitsentwicklung-S.113-127.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 00920157 _____ C:\Users\user\Downloads\Dornes_2000_S.58-73 _Bindung.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 00800428 _____ C:\Users\user\Downloads\George_Kaplan_Main_2012_AAI_Fragen.S.419-439.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 00354143 _____ C:\Users\user\Downloads\Ainsworth_ 1977_Feinfühligkeit_lang(1).pdf
2017-04-24 13:33 - 2017-04-24 13:33 - 01561458 _____ C:\Users\user\Downloads\5.B.Bindung und Entwicklung von Geburt bis ins Erwachsenenalter.pdf
2017-04-24 13:30 - 2017-04-24 13:30 - 00968640 _____ C:\Users\user\Downloads\4.B.Attachment & Psychoanalysis in Childhood;Gruppe.pdf
2017-04-24 13:25 - 2017-04-24 13:25 - 00000000 ____D C:\Users\user\AppData\Local\PDF24
2017-04-24 13:18 - 2017-04-24 13:18 - 20749528 _____ (Geek Software GmbH ) C:\Users\user\Downloads\pdf24-creator-8.1.4.exe
2017-04-24 13:11 - 2017-04-24 13:11 - 01476044 _____ C:\Users\user\Downloads\4.BindungErwachsEinf_1.pdf .pdf
2017-04-24 13:10 - 2017-04-24 13:10 - 00000000 ____D C:\Users\user\Downloads\Metadata
2017-04-24 13:10 - 2017-04-24 13:10 - 00000000 ____D C:\Users\user\Downloads\Index
2017-04-24 13:10 - 2017-04-24 13:10 - 00000000 ____D C:\Users\user\Downloads\Data
2017-04-24 13:09 - 2017-04-24 13:09 - 00000000 ____D C:\Users\user\AppData\Roaming\Notepad++
2017-04-24 13:09 - 2017-04-24 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-04-24 13:09 - 2017-04-24 13:09 - 00000000 ____D C:\Program Files\Notepad++
2017-04-24 13:08 - 2017-04-24 13:08 - 02851328 _____ C:\Users\user\Downloads\npp.7.3.installer.x64.exe
2017-04-24 13:05 - 2017-04-24 13:05 - 00000000 ____D C:\Users\user\Downloads\SAT_GruppeB2
2017-04-24 13:04 - 2017-04-24 13:04 - 05744174 _____ C:\Users\user\Downloads\SAT_GruppeB2.key
2017-04-24 13:01 - 2017-04-24 13:01 - 00832411 _____ C:\Users\user\Downloads\ASCT_erweitert_B.1.pdf
2017-04-24 13:00 - 2017-04-24 13:00 - 00539794 _____ C:\Users\user\Downloads\2.BindungArbeitsmodIPU.pdf
2017-04-24 12:53 - 2017-04-24 12:53 - 02365124 _____ C:\Users\user\Downloads\1.Bindung.GrundlagenIPU.pdf
2017-04-24 12:53 - 2017-04-24 12:53 - 01017571 _____ C:\Users\user\Downloads\1.Bretherton_Kißgen_2009_S.107-120 Kopie(1).pdf
2017-04-24 12:49 - 2017-04-24 12:49 - 00045803 _____ C:\Users\user\Downloads\vl_lernen_gedaechtnis_semesterplan(1).pdf
2017-04-24 12:44 - 2017-04-24 12:44 - 22790583 _____ C:\Users\user\Downloads\Wahrnehmungseigenschaften + Allgemeine Sinnesphysiologie_2017.pdf
2017-04-24 12:40 - 2017-04-24 12:40 - 00260927 _____ C:\Users\user\Downloads\Überblick_Wahrnehmung+Handlung_2017(1).pdf
2017-04-24 12:13 - 2017-04-24 12:13 - 01094393 _____ C:\Users\user\Downloads\Denken2_2017(1).pdf
2017-04-24 12:04 - 2017-04-24 12:04 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(2).pdf
2017-04-24 10:39 - 2017-04-24 10:39 - 00177388 _____ C:\Users\user\Downloads\wochenkalender-2017-querformat-zeitplaner.pdf
2017-04-23 17:23 - 2017-04-23 17:23 - 06299986 ____T C:\Users\user\Downloads\Tjark Bahamas
2017-04-23 17:19 - 2017-04-24 11:41 - 21989119 _____ C:\Users\user\Downloads\T.-Kunstreich-Willkommensmob-und-Lynchkultur.pdf
2017-04-21 18:46 - 2017-04-21 18:46 - 01646939 _____ C:\Users\user\Downloads\Reiche_Sackgassen.pdf
2017-04-21 18:46 - 2017-04-21 18:46 - 00143664 _____ C:\Users\user\Downloads\Reiche_Haben fru he Sto rungen zugenommen_.pdf
2017-04-21 16:49 - 2017-04-21 16:49 - 00202286 _____ C:\Users\user\Downloads\dhl-zollinhaltserklaerung-cn22.pdf
2017-04-21 01:20 - 2017-04-21 01:20 - 00105570 _____ C:\Users\user\Downloads\Hysterie__Ansatz_zu_einer_Zwischenloesung__Zeitschrift_Psychologische_Medizin__Artikel_Heft1_2006(1).pdf
2017-04-20 12:29 - 2017-04-20 12:29 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(1).pdf
2017-04-20 12:27 - 2017-04-20 12:27 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder.pdf
2017-04-18 15:22 - 2017-04-18 15:44 - 01117128 _____ C:\Users\user\Downloads\Denken2_2017.pdf
2017-04-18 14:29 - 2017-04-18 14:29 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(1).pdf
2017-04-17 00:53 - 2017-04-17 00:53 - 01886645 _____ C:\Users\user\Downloads\10 tips for writing a truly terrible journal article.pdf
2017-04-17 00:53 - 2017-04-17 00:53 - 01612828 _____ C:\Users\user\Downloads\2017-04-11_Wiss_Schreiben_(1).pdf
2017-04-17 00:53 - 2017-04-17 00:53 - 00013036 _____ C:\Users\user\Downloads\Semesterplan_Wiss_Schreiben_Gottwald.pdf
2017-04-17 00:46 - 2017-04-17 00:46 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-17 22:37 - 2017-01-29 16:25 - 00000000 ____D C:\Users\user\Desktop\Kripu
2017-05-17 22:28 - 2017-04-10 20:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2017-05-17 22:00 - 2017-01-24 00:55 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-05-17 21:05 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-17 21:05 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-17 21:01 - 2017-01-24 00:44 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2017-05-17 21:01 - 2010-11-21 08:50 - 00703018 _____ C:\Windows\system32\perfh007.dat
2017-05-17 21:01 - 2010-11-21 08:50 - 00150570 _____ C:\Windows\system32\perfc007.dat
2017-05-17 21:01 - 2009-07-14 07:13 - 01628056 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-17 21:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-17 20:57 - 2017-01-24 00:55 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-05-17 20:57 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-17 18:20 - 2016-03-03 09:39 - 00000000 ____D C:\Users\user\AppData\Local\VirtualStore
2017-05-17 17:03 - 2017-04-12 16:07 - 00002220 _____ C:\Users\user\Documents\.Rhistory
2017-05-17 17:03 - 2017-04-12 16:07 - 00000000 ____D C:\Users\user\AppData\Roaming\RStudio
2017-05-17 17:03 - 2017-04-12 15:53 - 00045056 _____ C:\Users\user\AppData\Local\WebpageIcons.db
2017-05-17 17:03 - 2017-04-12 15:53 - 00000000 ____D C:\Users\user\AppData\Local\RStudio-Desktop
2017-05-17 10:48 - 2017-01-24 00:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-17 10:24 - 2017-02-22 15:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-17 03:42 - 2017-03-25 01:34 - 00000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics
2017-05-17 01:59 - 2017-01-24 00:55 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-16 23:46 - 2016-03-03 10:34 - 00000000 ____D C:\Program Files\Lenovo
2017-05-16 23:45 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-16 23:44 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-16 23:40 - 2017-03-13 12:52 - 00000000 ____D C:\Users\user\Desktop\Lernen und Gedächtnis B
2017-05-16 23:26 - 2016-03-03 10:28 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-05-16 23:25 - 2016-03-03 10:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-16 23:25 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2017-05-16 23:23 - 2016-03-03 10:28 - 00000000 ____D C:\ProgramData\Lenovo
2017-05-16 23:13 - 2016-03-03 10:30 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-05-16 23:13 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\TVT
2017-05-16 23:01 - 2016-03-03 10:36 - 00000000 ____D C:\Users\user\AppData\Local\Lenovo
2017-05-16 23:01 - 2016-03-03 10:33 - 00000000 ____D C:\Program Files (x86)\Intel
2017-05-16 23:01 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\Downloaded Installations
2017-05-16 23:00 - 2010-11-21 08:49 - 00000000 ____D C:\Windows\system32\0407
2017-05-16 22:45 - 2017-01-27 00:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 22:44 - 2017-01-26 22:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-05-16 22:44 - 2009-07-14 06:45 - 00424888 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-15 20:59 - 2017-03-13 16:46 - 00000000 ____D C:\Users\user\Desktop\Klinische Psychologie
2017-05-15 19:42 - 2017-01-24 00:55 - 00000000 ____D C:\Users\user\AppData\Local\Dropbox
2017-05-14 21:10 - 2016-03-03 10:30 - 00112136 _____ C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-14 21:06 - 2017-04-10 20:44 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-13 22:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2017-05-13 20:20 - 2017-01-30 13:08 - 00000000 ____D C:\Users\user\Desktop\Bücher
2017-05-12 13:17 - 2017-04-10 20:45 - 00000000 ____D C:\ProgramData\Skype
2017-05-12 13:16 - 2017-04-10 21:27 - 00000000 ____D C:\Program Files (x86)\Skype
2017-05-12 13:14 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-12 11:20 - 2016-03-03 10:27 - 01602336 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-05-12 11:19 - 2017-01-23 19:54 - 00000000 ____D C:\Windows\system32\MRT
2017-05-12 11:17 - 2017-01-23 19:54 - 156335152 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-02 23:02 - 2017-01-24 01:24 - 00000000 ___RD C:\Users\user\Dropbox
2017-04-30 16:24 - 2017-03-30 12:21 - 00000000 ____D C:\Users\user\Desktop\Psychoanalyse
2017-04-29 13:54 - 2017-01-24 00:44 - 00001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-04-27 01:19 - 2017-01-24 00:44 - 00001138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-04-27 01:19 - 2016-03-03 09:39 - 00001623 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-04-22 14:51 - 2017-02-23 16:19 - 00000000 ____D C:\ProgramData\Oracle
2017-04-22 14:51 - 2017-02-23 16:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-04-22 14:51 - 2017-02-23 16:19 - 00000000 ____D C:\Program Files (x86)\Java
2017-04-22 14:50 - 2017-02-23 16:19 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-04-20 22:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-04-12 15:53 - 2017-05-17 17:03 - 0045056 _____ () C:\Users\user\AppData\Local\WebpageIcons.db
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-13 22:49
==================== Ende von FRST.txt ============================
|
|
17.05.2017, 21:49
| #5 |
| | Problem mit launchpage.orgCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-05-2017
durchgeführt von user (17-05-2017 22:39:50)
Gestartet von C:\Users\user\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-03-03 07:39:15)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-254914080-1563877497-1754063145-500 - Administrator - Disabled)
Gast (S-1-5-21-254914080-1563877497-1754063145-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-254914080-1563877497-1754063145-1002 - Limited - Enabled)
user (S-1-5-21-254914080-1563877497-1754063145-1000 - Administrator - Enabled) => C:\Users\user
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat 8 Professional - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 8 Professional - English, Français, Deutsch) (Version: 8.0.0 - Adobe Systems)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.26.48 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{d68fe0f4-7f36-4215-ba7e-e88391b1300f}) (Version: 1.2.87.13303 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.87.13303 - Avira Operations GmbH & Co. KG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Conexant 20672 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.23.5 - Conexant)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.4 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Energie-Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
f.lux (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Flux) (Version: - )
HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
HWiNFO64 Version 5.44 (HKLM\...\HWiNFO64_is1) (Version: 5.44 - Martin Malík - REALiX)
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (HKLM-x32\...\{B2CA6F37-1602-4823-81B5-0384B6888AA6}) (Version: 1.1.0.1147 - RICOH)
Integrated Camera TWAIN (HKLM-x32\...\{9CA0DEE4-E84B-466F-9B96-FC255F3A929F}) (Version: 1.0.11.1223 - Chicony Electronics Co.,Ltd.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Identity Protection Technology 1.2.32.0 (HKLM-x32\...\{2D793E41-F598-1014-9984-F3B169A93F79}) (Version: 1.2.32.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.80.1211 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (Version: 1.67.12.24 - Lenovo) Hidden
Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - )
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0053 - Lenovo)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7967.2161 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM-x32\...\{EA9640BE-414E-4195-B53B-7905BF1A5A09}) (Version: 6.5.1.5 - Ericsson AB)
Mozilla Firefox 54.0 (x64 de) (HKLM\...\Mozilla Firefox 54.0 (x64 de)) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.0.6344 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
R for Windows 3.3.3 (HKLM\...\R for Windows 3.3.3_is1) (Version: 3.3.3 - R Core Team)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
RICOH_Media_Driver_v2.14.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.14.18.01 - RICOH)
RStudio (HKLM-x32\...\RStudio) (Version: 1.0.136 - RStudio)
Skype™ 7.35 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.35.103 - Skype Technologies S.A.)
ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4500 - Broadcom Corporation)
ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.42 - )
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo)
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version: - (c) 2006-2011, Tom Thielicke IT Solutions)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-254914080-1563877497-1754063145-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0C7D9716-89A8-4D67-9E8A-18E2DC9F2405} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {0FCB81DA-1EDE-46B9-8E45-603E916649DC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-16] (Microsoft Corporation)
Task: {2061D355-ADB3-4C10-8CFF-7392DE14B781} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {21075B5D-47A9-42C3-9C09-F7A12B5E3A94} - System32\Tasks\{02509E97-4B3B-4CAA-A395-DCA643927681} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional\Setup.exe" -d "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional"
Task: {22F4607C-E139-45EF-9DA8-68F09964F091} - System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C} => pcalua.exe -a C:\Users\user\Downloads\hijackthis(1).exe -d C:\Users\user\Downloads
Task: {419C784D-7B85-4A76-B4BD-BD13A8911F0E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-05-16] (Microsoft Corporation)
Task: {4963F5E8-79C4-4D87-AB02-F761137738E8} - System32\Tasks\{3B4B5D56-F47D-4642-AEEC-E9ADCB95385E} => pcalua.exe -a C:\Users\user\Downloads\APRO23_Win_ESD1_WWEFG.exe -d C:\Users\user\Downloads
Task: {7C00507B-742B-48A7-89B3-E84244B7816B} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2016-04-14] (Lenovo Group Limited)
Task: {7FA5844D-8A50-4C0C-922B-69B8877BEECC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
Task: {89C28CEB-CCB1-481D-8836-DA56981EB603} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {8CA0E647-3345-4B46-B9CE-02029F0EDDE1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {B7A580AE-DAB7-42B1-85CF-70E7412AEC87} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {BA249E61-4942-46AC-B611-5A68375889D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-16] (Microsoft Corporation)
Task: {C7813E8D-74FD-4B19-A75B-DE09C4917BA3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {FBDC8C13-B2D0-4E5B-9085-81EDFDC39305} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-01-27 00:12 - 2017-01-27 00:12 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-03-03 10:34 - 2016-04-14 07:08 - 00119808 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2017-03-08 04:42 - 2017-03-08 04:42 - 00230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2016-03-03 10:32 - 2013-11-01 04:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-05-16 23:02 - 2010-10-26 10:40 - 00049056 ____N () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2017-05-16 23:13 - 2017-05-09 18:55 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2016-03-04 10:53 - 2011-05-26 18:17 - 00065576 ____R () C:\Program Files (x86)\Mobile Broadband drivers\WMCore\MBMDebug.dll
2017-05-03 14:14 - 2017-05-03 14:14 - 01993176 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-01-27 00:12 - 2017-01-27 00:12 - 00679624 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 00871744 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-01-24 00:55 - 2017-04-26 02:38 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-05-17 01:59 - 2017-04-26 02:39 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-01-24 00:55 - 2017-04-26 02:40 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-05-17 01:59 - 2017-04-26 02:40 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-05-15 19:41 - 2017-05-16 23:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-02-28 11:24 - 2017-05-16 23:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-05-17 01:59 - 2017-04-26 02:34 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-05-17 01:59 - 2017-05-16 23:00 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-01-24 00:55 - 2017-05-16 23:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-05-17 01:59 - 2017-04-26 02:43 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-05-17 01:59 - 2017-04-26 02:43 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-01-24 00:55 - 2017-04-26 02:45 - 00697304 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-02-02 22:40 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 141.20.2.3 - 141.20.1.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{464EFF20-6DA4-491E-A676-DC91AB3E5DC7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{23FA464B-BD41-4859-8A00-377F02FB2CEB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E4DEAB5E-3CBB-4BE3-BEEA-4CA53038ABE6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9A1E926F-FBCD-4C5C-990A-32FEABFB922C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{06568ED1-A696-418A-BC68-DB576A534041}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{E9607340-1FCC-4C9B-8ED3-08F02EE28C30}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{64761C94-D618-4290-B0BD-E45A7A654529}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{4712F1FE-2D7C-46BB-933B-86880D1905BA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E52F5D10-090E-45B2-BDB1-975EF78C4C49}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{8D698AFE-C969-4B26-9A9C-6BF13AC2D9CC}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{D01FF73C-36DB-4B1A-8B93-FE443D7FBCAD}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
16-05-2017 23:00:20 Installiert Integrated Camera Driver Installer Package Ver.1.1.0œÑ³r
16-05-2017 23:00:48 Installed Integrated Camera TWAIN
16-05-2017 23:02:00 Installed Lenovo Power Management Driver
16-05-2017 23:02:17 Installiert ThinkPad UltraNav Utility
16-05-2017 23:04:54 Broadcom BTW Restore Point
16-05-2017 23:25:45 Entfernt ThinkPad UltraNav Utility
16-05-2017 23:47:42 chip 1-click download service wurde entfernt.
17-05-2017 10:23:06 Norton_Power_Eraser_20170517102306174
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: USB Device(VID_1f3a_PID_efe8)
Description: USB Device(VID_1f3a_PID_efe8)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: USB Devices
Service: usbUDisc
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/17/2017 08:57:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/17/2017 06:42:46 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/17/2017 06:42:46 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/17/2017 03:48:07 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 90080108).
Error: (05/17/2017 02:23:31 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80004005).
Error: (05/17/2017 10:48:44 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/17/2017 10:47:57 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/17/2017 10:47:57 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/17/2017 10:43:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/17/2017 10:43:41 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Systemfehler:
=============
Error: (05/17/2017 10:39:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Echtzeit-Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/17/2017 10:28:38 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "USER-PC :0" konnte nicht auf der Schnittstelle mit IP-Adresse 172.16.239.202
registriert werden. Der Computer mit IP-Adresse 172.16.238.111 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (05/17/2017 08:57:21 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "USER-PC :0" konnte nicht auf der Schnittstelle mit IP-Adresse 172.16.239.202
registriert werden. Der Computer mit IP-Adresse 172.16.238.111 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (05/17/2017 08:57:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "risdpcie" wurde aufgrund folgenden Fehlers nicht gestartet:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/17/2017 08:46:58 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{752073A1-23F2-4396-85F0-8FDB879ED0ED}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/17/2017 08:46:28 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
Zugriff verweigert
Error: (05/17/2017 08:46:22 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 172.16.239.202
registriert werden. Der Computer mit IP-Adresse 172.16.239.112 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (05/17/2017 08:46:20 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/17/2017 08:41:10 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WORKGROUP :1d" konnte nicht auf der Schnittstelle mit IP-Adresse 172.16.239.202
registriert werden. Der Computer mit IP-Adresse 172.16.239.112 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (05/17/2017 08:06:07 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "F55A",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{E08C96DE-4F95-4B54-A2EF-BF05D5BFBB9F}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 8070.23 MB
Verfügbarer physikalischer RAM: 4916.93 MB
Summe virtueller Speicher: 16138.65 MB
Verfügbarer virtueller Speicher: 12694.13 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:43.25 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: C230CF92)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
17.05.2017, 21:55
| #6 |
| | Problem mit launchpage.orgCode:
ATTFilter 22:52:22.0028 0x124c TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
22:52:27.0752 0x124c ============================================================
22:52:27.0752 0x124c Current date / time: 2017/05/17 22:52:27.0752
22:52:27.0752 0x124c SystemInfo:
22:52:27.0752 0x124c
22:52:27.0752 0x124c OS Version: 6.1.7601 ServicePack: 1.0
22:52:27.0752 0x124c Product type: Workstation
22:52:27.0753 0x124c ComputerName: USER-PC
22:52:27.0753 0x124c UserName: user
22:52:27.0753 0x124c Windows directory: C:\Windows
22:52:27.0753 0x124c System windows directory: C:\Windows
22:52:27.0753 0x124c Running under WOW64
22:52:27.0753 0x124c Processor architecture: Intel x64
22:52:27.0753 0x124c Number of processors: 4
22:52:27.0753 0x124c Page size: 0x1000
22:52:27.0753 0x124c Boot type: Normal boot
22:52:27.0753 0x124c CodeIntegrityOptions = 0x00000001
22:52:27.0753 0x124c ============================================================
22:52:28.0153 0x124c KLMD registered as C:\Windows\system32\drivers\43346178.sys
22:52:28.0154 0x124c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23796, osProperties = 0x1
22:52:28.0249 0x124c System UUID: {19353153-3D3F-7A09-8AC5-FA0C0C0A3518}
22:52:28.0535 0x124c Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:52:28.0540 0x124c ============================================================
22:52:28.0540 0x124c \Device\Harddisk0\DR0:
22:52:28.0540 0x124c MBR partitions:
22:52:28.0540 0x124c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:52:28.0540 0x124c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
22:52:28.0540 0x124c ============================================================
22:52:28.0546 0x124c C: <-> \Device\Harddisk0\DR0\Partition2
22:52:28.0547 0x124c ============================================================
22:52:28.0547 0x124c Initialize success
22:52:28.0547 0x124c ============================================================
22:53:25.0405 0x0970 ============================================================
22:53:25.0405 0x0970 Scan started
22:53:25.0405 0x0970 Mode: Manual; SigCheck; TDLFS;
22:53:25.0405 0x0970 ============================================================
22:53:25.0405 0x0970 KSN ping started
22:53:25.0475 0x0970 KSN ping finished: true
22:53:25.0745 0x0970 ================ Scan system memory ========================
22:53:25.0745 0x0970 System memory - ok
22:53:25.0745 0x0970 ================ Scan services =============================
22:53:25.0795 0x0970 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:53:25.0845 0x0970 1394ohci - ok
22:53:25.0855 0x0970 [ F4AF97702BAD85BFEF64B9A557F11B6F, 8255B2FBE64C60562A7DAAAD575EED49EE0D23DD42E5C76C988B8A3673843EA6 ] 5U877 C:\Windows\system32\DRIVERS\5U877.sys
22:53:25.0865 0x0970 5U877 - ok
22:53:25.0875 0x0970 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:53:25.0895 0x0970 ACPI - ok
22:53:25.0895 0x0970 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:53:25.0905 0x0970 AcpiPmi - ok
22:53:25.0915 0x0970 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:53:25.0935 0x0970 adp94xx - ok
22:53:25.0945 0x0970 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:53:25.0955 0x0970 adpahci - ok
22:53:25.0965 0x0970 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:53:25.0975 0x0970 adpu320 - ok
22:53:25.0985 0x0970 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:53:25.0995 0x0970 AeLookupSvc - ok
22:53:26.0005 0x0970 [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
22:53:26.0025 0x0970 AFD - ok
22:53:26.0035 0x0970 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
22:53:26.0035 0x0970 agp440 - ok
22:53:26.0045 0x0970 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
22:53:26.0055 0x0970 ALG - ok
22:53:26.0055 0x0970 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
22:53:26.0065 0x0970 aliide - ok
22:53:26.0065 0x0970 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
22:53:26.0075 0x0970 amdide - ok
22:53:26.0075 0x0970 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:53:26.0085 0x0970 AmdK8 - ok
22:53:26.0095 0x0970 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:53:26.0105 0x0970 AmdPPM - ok
22:53:26.0105 0x0970 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:53:26.0115 0x0970 amdsata - ok
22:53:26.0125 0x0970 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:53:26.0135 0x0970 amdsbs - ok
22:53:26.0135 0x0970 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:53:26.0145 0x0970 amdxata - ok
22:53:26.0175 0x0970 [ 0C891285258A793146DCF286BFEDFF20, 2BF060A4D1C26FBB99229DADFBDBE4C03DE3DE1FA6376948DEC257907CB83442 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
22:53:26.0215 0x0970 AntiVirMailService - ok
22:53:26.0225 0x0970 [ A92B5723DC25E9755C745F9946A2E2EA, 5C1994BB7BE36555AE43400E12A650B1AC4CC37E9765B3AB5A605AD13E0CE1CF ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
22:53:26.0245 0x0970 AntiVirSchedulerService - ok
22:53:26.0255 0x0970 [ A92B5723DC25E9755C745F9946A2E2EA, 5C1994BB7BE36555AE43400E12A650B1AC4CC37E9765B3AB5A605AD13E0CE1CF ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
22:53:26.0275 0x0970 AntiVirService - ok
22:53:26.0305 0x0970 [ 56B7AEE325CE5EA2BD854899E4E7123B, E25491348675939CB81C0E19A50473C8B13C1CFA1F84305478DD3403E1393800 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
22:53:26.0345 0x0970 AntiVirWebService - ok
22:53:26.0355 0x0970 [ 00D77B30CA9CB1D7793AC952549331A0, 73EF665E1C70B8E66C879203291B28736C928AC5621C8FF79F5CA21DD2E9E159 ] AppID C:\Windows\system32\drivers\appid.sys
22:53:26.0365 0x0970 AppID - ok
22:53:26.0365 0x0970 [ 3756F12C129CE5292D633FCD1F7D467E, 0889514E2D6EEC929434BF570BD9B4C26D5715F65A762F1B9F5A2DFFA305018B ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:53:26.0375 0x0970 AppIDSvc - ok
22:53:26.0385 0x0970 [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll
22:53:26.0395 0x0970 Appinfo - ok
22:53:26.0405 0x0970 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
22:53:26.0415 0x0970 AppMgmt - ok
22:53:26.0415 0x0970 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
22:53:26.0425 0x0970 arc - ok
22:53:26.0435 0x0970 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:53:26.0445 0x0970 arcsas - ok
22:53:26.0455 0x0970 [ 92C120176C43C62AFE107B5D945CE6EC, E3BA1200BD04167589D7AF29F6550F3242DB321DDCD6890D645A2053CC78C7E6 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:53:26.0465 0x0970 aspnet_state - ok
22:53:26.0475 0x0970 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:53:26.0495 0x0970 AsyncMac - ok
22:53:26.0505 0x0970 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
22:53:26.0505 0x0970 atapi - ok
22:53:26.0525 0x0970 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:53:26.0545 0x0970 AudioEndpointBuilder - ok
22:53:26.0565 0x0970 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:53:26.0585 0x0970 AudioSrv - ok
22:53:26.0595 0x0970 [ C0B4C2DF426BDFC679F658C442113E9C, CEC53912FF5A9378CB58F2E72FE61D3265E65B800EDCFC32278465ACDB5455D7 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
22:53:26.0605 0x0970 avgntflt - ok
22:53:26.0605 0x0970 [ AD68D7AC2CABCA09140E4FCEA98BCEF6, 134AD5DDFAC5BD58173E2EB2AC7DB1413E9416507E4252E4E0A8172B1A6206F5 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
22:53:26.0615 0x0970 avipbb - ok
22:53:26.0635 0x0970 [ 2C3A63EB4E0001D697823E9511E2C50D, F6BFEEE56EA0ABF5299A8FBF27C93F4B5925410D84935DAB4B3834A3679591AC ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
22:53:26.0655 0x0970 Avira.ServiceHost - ok
22:53:26.0655 0x0970 [ 3E0AB8C453FA433B15A30BAA8BD4B275, 30453E68013DF1A3CD9197F28E8591A67BFA6CA784129666A6F7DF9D2E12440B ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
22:53:26.0665 0x0970 avkmgr - ok
22:53:26.0665 0x0970 [ 19B6F9073BD606B7ABEC03A0328FDC1B, 639E6A05BB0E52CDBDF887A3FA209B32F84253D274F2A9A89E1D96F1BE4C8143 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
22:53:26.0675 0x0970 avnetflt - ok
22:53:26.0675 0x0970 [ 741C49B40E5E1FC624D8FBF153FE6C1B, DAF9105F994609E9E6E8545B63FDF0FF46218F7CDB0F7AE3849AE93C83B17B76 ] avusbflt C:\Windows\system32\Drivers\avusbflt.sys
22:53:26.0685 0x0970 avusbflt - ok
22:53:26.0695 0x0970 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:53:26.0715 0x0970 AxInstSV - ok
22:53:26.0725 0x0970 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:53:26.0735 0x0970 b06bdrv - ok
22:53:26.0745 0x0970 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:53:26.0765 0x0970 b57nd60a - ok
22:53:26.0765 0x0970 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
22:53:26.0775 0x0970 BDESVC - ok
22:53:26.0785 0x0970 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
22:53:26.0805 0x0970 Beep - ok
22:53:26.0825 0x0970 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
22:53:26.0845 0x0970 BFE - ok
22:53:26.0865 0x0970 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
22:53:26.0915 0x0970 BITS - ok
22:53:26.0915 0x0970 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:53:26.0925 0x0970 blbdrive - ok
22:53:26.0925 0x0970 [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:53:26.0945 0x0970 bowser - ok
22:53:26.0945 0x0970 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:53:26.0955 0x0970 BrFiltLo - ok
22:53:26.0955 0x0970 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:53:26.0965 0x0970 BrFiltUp - ok
22:53:26.0975 0x0970 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
22:53:26.0985 0x0970 Browser - ok
22:53:26.0995 0x0970 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:53:27.0005 0x0970 Brserid - ok
22:53:27.0015 0x0970 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:53:27.0025 0x0970 BrSerWdm - ok
22:53:27.0025 0x0970 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:53:27.0035 0x0970 BrUsbMdm - ok
22:53:27.0035 0x0970 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:53:27.0045 0x0970 BrUsbSer - ok
22:53:27.0055 0x0970 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc C:\Program Files (x86)\Browny02\BrYNSvc.exe
22:53:27.0065 0x0970 BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
22:53:27.0135 0x0970 Detect skipped due to KSN trusted
22:53:27.0135 0x0970 BrYNSvc - ok
22:53:27.0145 0x0970 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
22:53:27.0175 0x0970 BthEnum - ok
22:53:27.0185 0x0970 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:53:27.0205 0x0970 BTHMODEM - ok
22:53:27.0205 0x0970 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
22:53:27.0225 0x0970 BthPan - ok
22:53:27.0235 0x0970 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
22:53:27.0255 0x0970 BTHPORT - ok
22:53:27.0255 0x0970 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
22:53:27.0285 0x0970 bthserv - ok
22:53:27.0285 0x0970 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
22:53:27.0295 0x0970 BTHUSB - ok
22:53:27.0315 0x0970 [ 96E22173FD0E2670A2A20C1EEECA162A, 2CC26317DBA063058178EA9B775C2A0FA2CF94FEDC6DF89F3D8314207D56DA24 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
22:53:27.0335 0x0970 btwampfl - ok
22:53:27.0345 0x0970 [ A771078558477068DFD8037B82EB00F8, 58E1686B12B747639FE3BF4CCA58D48B8BBB349C9D316315AD7237F44EF760A4 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
22:53:27.0355 0x0970 btwaudio - ok
22:53:27.0365 0x0970 [ 9FF58F76024D25784755B01F926B00BE, 7A2504E326E63B7225FA25EA6D6ED3E7267278F5D2343A375D7F3B3F74EC9F38 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
22:53:27.0375 0x0970 btwavdt - ok
22:53:27.0395 0x0970 [ C8306C64F95DABC69A11DF3A664C00FB, 1AFE7B7E9FADA3A55CACADA8FEC1C2646CB99DA71CD033A28239932253B807C4 ] btwdins C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
22:53:27.0435 0x0970 btwdins - ok
22:53:27.0435 0x0970 [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
22:53:27.0445 0x0970 btwl2cap - ok
22:53:27.0445 0x0970 [ EDD953D635F3AA89EF902E3F82D60D22, 22A60B225A1AD0F25B9715338C805FED9D5F4BCAC296BBC0D045C6935BDA55E7 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
22:53:27.0455 0x0970 btwrchid - ok
22:53:27.0455 0x0970 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:53:27.0485 0x0970 cdfs - ok
22:53:27.0495 0x0970 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:53:27.0505 0x0970 cdrom - ok
22:53:27.0505 0x0970 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
22:53:27.0535 0x0970 CertPropSvc - ok
22:53:27.0535 0x0970 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
22:53:27.0545 0x0970 circlass - ok
22:53:27.0565 0x0970 [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS C:\Windows\system32\CLFS.sys
22:53:27.0575 0x0970 CLFS - ok
22:53:27.0665 0x0970 [ 79BEA02EBBD4F51A44939E9395A9BCB6, 247A4B1CBD591B02B5B1994FA745EB5E7963A097DEE3A8948875E63604A1E734 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
22:53:27.0735 0x0970 ClickToRunSvc - ok
22:53:27.0755 0x0970 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:53:27.0765 0x0970 clr_optimization_v2.0.50727_32 - ok
22:53:27.0765 0x0970 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:53:27.0775 0x0970 clr_optimization_v2.0.50727_64 - ok
22:53:27.0795 0x0970 [ 1A3D6CABDC37B34D85059185272DBB2F, C7FAB62EC4D9947ADAD0E065D4CDAF8D6EA2AF9FD0C3A1F1A676276825808FD8 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:53:27.0805 0x0970 clr_optimization_v4.0.30319_32 - ok
22:53:27.0815 0x0970 [ 59B44C95D56A9BB269B1D4A3F25468C2, 462799657FA493866A14F0D36D5D92C95E8886E6AC5F199D069E6938425A9218 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:53:27.0825 0x0970 clr_optimization_v4.0.30319_64 - ok
22:53:27.0825 0x0970 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:53:27.0835 0x0970 CmBatt - ok
22:53:27.0835 0x0970 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:53:27.0845 0x0970 cmdide - ok
22:53:27.0855 0x0970 [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
22:53:27.0875 0x0970 CNG - ok
22:53:27.0915 0x0970 [ 5BEC441B6B91E874C987C06F98176D90, FA4B523271947AE908C41BA2ABB1E4871359C8DE21E0ECC2B4CD49F734EF8FB4 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
22:53:27.0955 0x0970 CnxtHdAudService - ok
22:53:27.0955 0x0970 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:53:27.0965 0x0970 Compbatt - ok
22:53:27.0965 0x0970 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:53:27.0975 0x0970 CompositeBus - ok
22:53:27.0975 0x0970 COMSysApp - ok
22:53:28.0015 0x0970 [ 6140F41C58F782976CD78F5FADECA816, 791CD3D1862939CBC58179DAA6B8B46348D82956080F4CA043559EE566094478 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
22:53:28.0035 0x0970 cphs - ok
22:53:28.0035 0x0970 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:53:28.0045 0x0970 crcdisk - ok
22:53:28.0055 0x0970 [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:53:28.0065 0x0970 CryptSvc - ok
22:53:28.0085 0x0970 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
22:53:28.0105 0x0970 CSC - ok
22:53:28.0115 0x0970 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
22:53:28.0135 0x0970 CscService - ok
22:53:28.0145 0x0970 [ 9D0D050170D47E778B624A28C90F23DE, 48528AA9EB0C9FB5086D992EF1F9556C8249D267C2E3D4E681D5C8B6BC316C71 ] CxAudMsg C:\Windows\system32\CxAudMsg64.exe
22:53:28.0155 0x0970 CxAudMsg - ok
22:53:28.0165 0x0970 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:53:28.0175 0x0970 dbupdate - ok
22:53:28.0175 0x0970 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
22:53:28.0185 0x0970 dbupdatem - ok
22:53:28.0185 0x0970 dbx - ok
22:53:28.0195 0x0970 [ 85E71BD98A72996A00C71EB7B537A631, 7ECCEF0CF289DD0649F1A9F176F8631BBE0D043723D368E13F26FA7C49A82D6F ] DbxSvc C:\Windows\system32\DbxSvc.exe
22:53:28.0205 0x0970 DbxSvc - ok
22:53:28.0215 0x0970 [ 5E9F8D029D9B03110D835CBFC058068B, 038FDF99C643C8102026BA26A75899A56E91AD0C239DF71AA5443FD35C718C78 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:53:28.0235 0x0970 DcomLaunch - ok
22:53:28.0245 0x0970 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
22:53:28.0275 0x0970 defragsvc - ok
22:53:28.0285 0x0970 [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:53:28.0295 0x0970 DfsC - ok
22:53:28.0305 0x0970 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
22:53:28.0315 0x0970 Dhcp - ok
22:53:28.0345 0x0970 [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
22:53:28.0385 0x0970 DiagTrack - ok
22:53:28.0395 0x0970 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
22:53:28.0415 0x0970 discache - ok
22:53:28.0425 0x0970 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
22:53:28.0435 0x0970 Disk - ok
22:53:28.0435 0x0970 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
22:53:28.0445 0x0970 dmvsc - ok
22:53:28.0455 0x0970 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:53:28.0465 0x0970 Dnscache - ok
22:53:28.0475 0x0970 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
22:53:28.0505 0x0970 dot3svc - ok
22:53:28.0515 0x0970 [ 497E0E7CD4E6A708EDF8EF4D1702F427, 53591AFB2CACD1A1EDEAEDFABE57E04E219E0A7112F168E78A34DFE9413D7CEC ] DozeSvc C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE
22:53:28.0535 0x0970 DozeSvc - ok
22:53:28.0545 0x0970 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
22:53:28.0565 0x0970 DPS - ok
22:53:28.0575 0x0970 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:53:28.0585 0x0970 drmkaud - ok
22:53:28.0605 0x0970 [ 30545EF2A1E3EF79450AED5DF80F5884, A7109F481680237481E28C17088D7608EB39C49513BD0AF3F1E9E63E17F250C1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:53:28.0625 0x0970 DXGKrnl - ok
22:53:28.0635 0x0970 [ 3CE83D7EE95D9C9F03323810A2E747DF, 50E34E2EC26584A1BE06EA5049481D1AE2F3213B2A81BA86411623ADCEE24F53 ] DzHDD64 C:\Windows\system32\DRIVERS\DzHDD64.sys
22:53:28.0645 0x0970 DzHDD64 - ok
22:53:28.0655 0x0970 [ BA01A130D2B850CA87483CE6AC1A2BBA, DFF760DB1A6F60A856D64F01C67B8FC075ABED9DD80FFA50AA681296FF56FCE0 ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
22:53:28.0675 0x0970 e1cexpress - ok
22:53:28.0675 0x0970 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
22:53:28.0705 0x0970 EapHost - ok
22:53:28.0775 0x0970 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:53:28.0845 0x0970 ebdrv - ok
22:53:28.0855 0x0970 [ F88F2E5806FC405B0FA94B7947A5875E, 292DA82C308C9F9775DF4E2C8FDE726D4BA6B224049C113809422EDE07919248 ] ecnssndis C:\Windows\system32\Drivers\wwuss64.sys
22:53:28.0855 0x0970 ecnssndis - ok
22:53:28.0865 0x0970 [ C8CD88218EFC28F7E44A9892B3E97F4D, 3C84997B657808BBE1A9B9AD5EB8E1900ED703D67C3CE66F85BA0BADDA616CD8 ] ecnssndisfltr C:\Windows\system32\Drivers\wwussf64.sys
22:53:28.0865 0x0970 ecnssndisfltr - ok
22:53:28.0875 0x0970 [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] EFS C:\Windows\System32\lsass.exe
22:53:28.0885 0x0970 EFS - ok
22:53:28.0905 0x0970 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:53:28.0925 0x0970 ehRecvr - ok
22:53:28.0925 0x0970 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
22:53:28.0935 0x0970 ehSched - ok
22:53:28.0955 0x0970 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:53:28.0975 0x0970 elxstor - ok
22:53:28.0975 0x0970 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:53:28.0985 0x0970 ErrDev - ok
22:53:28.0995 0x0970 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
22:53:29.0035 0x0970 EventSystem - ok
22:53:29.0035 0x0970 [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat C:\Windows\system32\drivers\exfat.sys
22:53:29.0055 0x0970 exfat - ok
22:53:29.0055 0x0970 [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:53:29.0075 0x0970 fastfat - ok
22:53:29.0085 0x0970 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
22:53:29.0105 0x0970 Fax - ok
22:53:29.0115 0x0970 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
22:53:29.0125 0x0970 fdc - ok
22:53:29.0125 0x0970 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
22:53:29.0155 0x0970 fdPHost - ok
22:53:29.0155 0x0970 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
22:53:29.0185 0x0970 FDResPub - ok
22:53:29.0185 0x0970 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:53:29.0195 0x0970 FileInfo - ok
22:53:29.0195 0x0970 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:53:29.0225 0x0970 Filetrace - ok
22:53:29.0245 0x0970 [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:53:29.0255 0x0970 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
22:53:29.0505 0x0970 Detect skipped due to KSN trusted
22:53:29.0505 0x0970 FLEXnet Licensing Service - ok
22:53:29.0525 0x0970 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:53:29.0545 0x0970 flpydisk - ok
22:53:29.0565 0x0970 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:53:29.0575 0x0970 FltMgr - ok
22:53:29.0605 0x0970 [ CF0108CBA6D1860563BA20E3D74C6646, 737B5E89A858D7E3AEC8BF660AA4FCC56501A69468EA143531286016AF7C0B33 ] FontCache C:\Windows\system32\FntCache.dll
22:53:29.0635 0x0970 FontCache - ok
22:53:29.0645 0x0970 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:53:29.0645 0x0970 FontCache3.0.0.0 - ok
22:53:29.0655 0x0970 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:53:29.0665 0x0970 FsDepends - ok
22:53:29.0665 0x0970 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:53:29.0675 0x0970 Fs_Rec - ok
22:53:29.0685 0x0970 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:53:29.0695 0x0970 fvevol - ok
22:53:29.0705 0x0970 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:53:29.0705 0x0970 gagp30kx - ok
22:53:29.0725 0x0970 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
22:53:29.0755 0x0970 gpsvc - ok
22:53:29.0765 0x0970 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:53:29.0775 0x0970 hcw85cir - ok
22:53:29.0785 0x0970 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:53:29.0795 0x0970 HdAudAddService - ok
22:53:29.0805 0x0970 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:53:29.0815 0x0970 HDAudBus - ok
22:53:29.0815 0x0970 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:53:29.0825 0x0970 HidBatt - ok
22:53:29.0835 0x0970 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:53:29.0845 0x0970 HidBth - ok
22:53:29.0845 0x0970 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
22:53:29.0865 0x0970 HidIr - ok
22:53:29.0865 0x0970 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
22:53:29.0895 0x0970 hidserv - ok
22:53:29.0895 0x0970 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:53:29.0905 0x0970 HidUsb - ok
22:53:29.0905 0x0970 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:53:29.0935 0x0970 hkmsvc - ok
22:53:29.0945 0x0970 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:53:29.0955 0x0970 HomeGroupListener - ok
22:53:29.0965 0x0970 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:53:29.0975 0x0970 HomeGroupProvider - ok
22:53:29.0975 0x0970 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:53:29.0985 0x0970 HpSAMD - ok
22:53:30.0005 0x0970 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:53:30.0025 0x0970 HTTP - ok
22:53:30.0035 0x0970 [ EF558A02D734A1403583E95CCEEC2487, F0D052DAF48A62E4A90D067BFCB5EE9563804DE68D0EA82E0E11C8D16AD19D29 ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO64A.SYS
22:53:30.0045 0x0970 HWiNFO32 - ok
22:53:30.0045 0x0970 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:53:30.0055 0x0970 hwpolicy - ok
22:53:30.0055 0x0970 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:53:30.0065 0x0970 i8042prt - ok
22:53:30.0075 0x0970 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:53:30.0095 0x0970 iaStorV - ok
22:53:30.0095 0x0970 [ B361FBB161B58731A5EE6AF986F01B6F, ED90488A229E70A5826227F035EE683C227F3F979961320FC0AD99D1490BD5D2 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
22:53:30.0115 0x0970 IBMPMDRV - ok
22:53:30.0115 0x0970 [ 68AC55102456B1B2370888C7CD5261CE, 0EB06BB3981B0133519BD17095D01B28D28730D0ED46789C26B5A646F2C91856 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
22:53:30.0125 0x0970 IBMPMSVC - ok
22:53:30.0135 0x0970 [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
22:53:30.0145 0x0970 ICCS - ok
22:53:30.0165 0x0970 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:53:30.0185 0x0970 idsvc - ok
22:53:30.0195 0x0970 IEEtwCollectorService - ok
22:53:30.0295 0x0970 [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:53:30.0415 0x0970 igfx - ok
22:53:30.0415 0x0970 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:53:30.0425 0x0970 iirsp - ok
22:53:30.0445 0x0970 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
22:53:30.0475 0x0970 IKEEXT - ok
22:53:30.0485 0x0970 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:53:30.0495 0x0970 IntcDAud - ok
22:53:30.0505 0x0970 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
22:53:30.0515 0x0970 intelide - ok
22:53:30.0515 0x0970 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:53:30.0525 0x0970 intelppm - ok
22:53:30.0525 0x0970 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:53:30.0555 0x0970 IPBusEnum - ok
22:53:30.0565 0x0970 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:53:30.0585 0x0970 IpFilterDriver - ok
22:53:30.0605 0x0970 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:53:30.0625 0x0970 iphlpsvc - ok
22:53:30.0625 0x0970 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:53:30.0635 0x0970 IPMIDRV - ok
22:53:30.0645 0x0970 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:53:30.0665 0x0970 IPNAT - ok
22:53:30.0675 0x0970 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:53:30.0685 0x0970 IRENUM - ok
22:53:30.0685 0x0970 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:53:30.0695 0x0970 isapnp - ok
22:53:30.0705 0x0970 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:53:30.0715 0x0970 iScsiPrt - ok
22:53:30.0725 0x0970 [ BD7C4C575FF1A0E47B346890998FE72F, ED80337E85AC149C8BF6A9ABDF2D281BE173375F04277567AFA607B3B683ED71 ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
22:53:30.0735 0x0970 jhi_service - ok
22:53:30.0735 0x0970 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:53:30.0745 0x0970 kbdclass - ok
22:53:30.0755 0x0970 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:53:30.0755 0x0970 kbdhid - ok
22:53:30.0765 0x0970 [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] KeyIso C:\Windows\system32\lsass.exe
22:53:30.0775 0x0970 KeyIso - ok
22:53:30.0775 0x0970 [ 15682ED7B70B186C9C2BE6CA423D8E74, 02C6D35271D01925A2D9069589D75F7341988B8AFC1AC0A43401A5C63A959E37 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:53:30.0785 0x0970 KSecDD - ok
22:53:30.0795 0x0970 [ 945F4DA63A76EB2725C070BF3A86B5A5, EB778A52FCD2FCF98CFC0E7363F25B4CCE778C79E7308DF47C3D1AC92A791ED0 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:53:30.0805 0x0970 KSecPkg - ok
22:53:30.0805 0x0970 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:53:30.0835 0x0970 ksthunk - ok
22:53:30.0845 0x0970 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
22:53:30.0875 0x0970 KtmRm - ok
22:53:30.0885 0x0970 [ F761A831C9DC8D0204B7FB43E3A896B7, 9739FC721C774C0C754D0E558D39A77FF8B976CC98C044CB4D16446A9AF3E0A1 ] l36wgps C:\Windows\system32\DRIVERS\l36wgps64.sys
22:53:30.0895 0x0970 l36wgps - ok
22:53:30.0895 0x0970 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:53:30.0925 0x0970 LanmanServer - ok
22:53:30.0935 0x0970 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:53:30.0965 0x0970 LanmanWorkstation - ok
22:53:30.0965 0x0970 [ 403F6798A847D9F98B650D27D0FA3FD3, D69314309E251C74D77CDEF1DED7A4E83788871FA723D0D74B9FE5BAA89F9998 ] LENOVO.CAMMUTE C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
22:53:30.0975 0x0970 LENOVO.CAMMUTE - ok
22:53:30.0975 0x0970 [ 2B9D8555DC004E240082D18E7725CE20, 9DEF9463CB099C0BC8782C1E5FCE62F038B971ABC12966774D1F83569B081A42 ] lenovo.smi C:\Windows\system32\DRIVERS\smiifx64.sys
22:53:30.0985 0x0970 lenovo.smi - ok
22:53:30.0995 0x0970 [ 00F2E095C36199D8BF14A8E40CDBC2D0, A7E048E496056E7554F9BB2CA71374820821371F39D5BE22C88285D412E2FCBE ] LENOVO.TPKNRSVC C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
22:53:30.0995 0x0970 LENOVO.TPKNRSVC - ok
22:53:31.0005 0x0970 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:53:31.0025 0x0970 lltdio - ok
22:53:31.0035 0x0970 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:53:31.0075 0x0970 lltdsvc - ok
22:53:31.0075 0x0970 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:53:31.0105 0x0970 lmhosts - ok
22:53:31.0115 0x0970 [ A41FDFC6618B688E403440E2E6252504, D8DDE0B6167F0176FCEBCF3CD50717B3A48862EDAECEA1693921F577C48427DE ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:53:31.0125 0x0970 LMS - ok
22:53:31.0145 0x0970 [ 42C2F38B3485332F1DF025F321086330, FD43897FD8AF5236BEFFB60FF1E1E3A74E8707B48C826A823807F76B37A476AE ] LPlatSvc C:\Windows\system32\LPlatSvc.exe
22:53:31.0175 0x0970 LPlatSvc - ok
22:53:31.0175 0x0970 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:53:31.0185 0x0970 LSI_FC - ok
22:53:31.0195 0x0970 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:53:31.0205 0x0970 LSI_SAS - ok
22:53:31.0205 0x0970 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:53:31.0215 0x0970 LSI_SAS2 - ok
22:53:31.0215 0x0970 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:53:31.0225 0x0970 LSI_SCSI - ok
22:53:31.0235 0x0970 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
22:53:31.0265 0x0970 luafv - ok
22:53:31.0275 0x0970 [ D8BA1ECBF0B9A4B4E1F3B7EB517D6C20, 9A72B2FAE2E39D1F7E73DD55888D30AAE46BDC5294A5EA558AF00CABF1C20D5B ] Mbm3CBus C:\Windows\system32\DRIVERS\Mbm3CBus.sys
22:53:31.0285 0x0970 Mbm3CBus - ok
22:53:31.0295 0x0970 [ 01E60917101B309E15F30DA26ACF64F6, 141BBBCA6A2E20A1AF242483F98E03401A956C691177EBCC1946D87736B42D59 ] Mbm3DevMt C:\Windows\system32\DRIVERS\Mbm3DevMt.sys
22:53:31.0315 0x0970 Mbm3DevMt - ok
22:53:31.0315 0x0970 [ 6350A2CA21FB7B14432EFFDC61863AED, C2C051E155455AD57219C1E8689B51D736FB50876BE10F3770B0560BF27C538B ] Mbm3mdfl C:\Windows\system32\DRIVERS\Mbm3mdfl.sys
22:53:31.0325 0x0970 Mbm3mdfl - ok
22:53:31.0335 0x0970 [ 9FC3A8713D148E15D0472E1C44DD0FDA, A36FF9787477E7D1F9C202B7D87A701114B76B6A796A89D6D199D351CC040622 ] Mbm3Mdm C:\Windows\system32\DRIVERS\Mbm3Mdm.sys
22:53:31.0355 0x0970 Mbm3Mdm - ok
22:53:31.0355 0x0970 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:53:31.0375 0x0970 Mcx2Svc - ok
22:53:31.0375 0x0970 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
22:53:31.0385 0x0970 megasas - ok
22:53:31.0395 0x0970 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:53:31.0405 0x0970 MegaSR - ok
22:53:31.0415 0x0970 [ 6EA2F13DEAF130753F6FC19AFFFF94A8, ADA5BA2DBCD58372918FD278834B2E13FE0F73E200A2E747AB7B123C31E46825 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:53:31.0415 0x0970 MEIx64 - ok
22:53:31.0425 0x0970 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
22:53:31.0445 0x0970 MMCSS - ok
22:53:31.0455 0x0970 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
22:53:31.0475 0x0970 Modem - ok
22:53:31.0485 0x0970 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:53:31.0495 0x0970 monitor - ok
22:53:31.0695 0x0970 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:53:31.0725 0x0970 mouclass - ok
22:53:31.0735 0x0970 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:53:31.0745 0x0970 mouhid - ok
22:53:31.0755 0x0970 [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:53:31.0765 0x0970 mountmgr - ok
22:53:31.0775 0x0970 [ 1F5517F54D300E73681A2CC3B48797E4, FC1AF027F53C635FD5D146C930669623615CB5A18EA187D06C1674474A1F8BCD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:53:31.0785 0x0970 MozillaMaintenance - ok
22:53:31.0795 0x0970 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
22:53:31.0805 0x0970 mpio - ok
22:53:31.0805 0x0970 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:53:31.0835 0x0970 mpsdrv - ok
22:53:31.0855 0x0970 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:53:31.0895 0x0970 MpsSvc - ok
22:53:31.0905 0x0970 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:53:31.0915 0x0970 MRxDAV - ok
22:53:31.0925 0x0970 [ 054F780A442DB96F9FE10501B35E75CA, 72DF4BCEB6E14745CBEBF29B1F2882EC05C2952CED233E038105721494C984A4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:53:31.0935 0x0970 mrxsmb - ok
22:53:31.0945 0x0970 [ A1EAC982807B3179DD92235B6B709C0A, 8AD2652391B40D94E0FC4C9132630A7122679EF05B67328E4467043A45CD2737 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:53:31.0955 0x0970 mrxsmb10 - ok
22:53:31.0965 0x0970 [ E6B504F163094F2DB84F7D34A893FA00, 389413D7A4188DE226FD5ED996355C93BC90B7F460E31F5991B8714CE701CCC8 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:53:31.0975 0x0970 mrxsmb20 - ok
22:53:31.0975 0x0970 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
22:53:31.0985 0x0970 msahci - ok
22:53:31.0995 0x0970 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:53:32.0005 0x0970 msdsm - ok
22:53:32.0005 0x0970 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
22:53:32.0015 0x0970 MSDTC - ok
22:53:32.0025 0x0970 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:53:32.0055 0x0970 Msfs - ok
22:53:32.0055 0x0970 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:53:32.0075 0x0970 mshidkmdf - ok
22:53:32.0085 0x0970 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:53:32.0085 0x0970 msisadrv - ok
22:53:32.0095 0x0970 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:53:32.0135 0x0970 MSiSCSI - ok
22:53:32.0135 0x0970 msiserver - ok
22:53:32.0135 0x0970 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:53:32.0165 0x0970 MSKSSRV - ok
22:53:32.0165 0x0970 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:53:32.0185 0x0970 MSPCLOCK - ok
22:53:32.0195 0x0970 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:53:32.0215 0x0970 MSPQM - ok
22:53:32.0225 0x0970 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:53:32.0245 0x0970 MsRPC - ok
22:53:32.0245 0x0970 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:53:32.0255 0x0970 mssmbios - ok
22:53:32.0255 0x0970 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:53:32.0285 0x0970 MSTEE - ok
22:53:32.0285 0x0970 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:53:32.0295 0x0970 MTConfig - ok
22:53:32.0295 0x0970 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
22:53:32.0305 0x0970 Mup - ok
22:53:32.0315 0x0970 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
22:53:32.0355 0x0970 napagent - ok
22:53:32.0365 0x0970 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:53:32.0385 0x0970 NativeWifiP - ok
22:53:32.0405 0x0970 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:53:32.0425 0x0970 NDIS - ok
22:53:32.0435 0x0970 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:53:32.0465 0x0970 NdisCap - ok
22:53:32.0465 0x0970 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:53:32.0485 0x0970 NdisTapi - ok
22:53:32.0495 0x0970 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:53:32.0515 0x0970 Ndisuio - ok
22:53:32.0525 0x0970 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:53:32.0555 0x0970 NdisWan - ok
22:53:32.0555 0x0970 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:53:32.0585 0x0970 NDProxy - ok
22:53:32.0595 0x0970 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:53:32.0615 0x0970 NetBIOS - ok
22:53:32.0625 0x0970 [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:53:32.0635 0x0970 NetBT - ok
22:53:32.0645 0x0970 [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] Netlogon C:\Windows\system32\lsass.exe
22:53:32.0645 0x0970 Netlogon - ok
22:53:32.0655 0x0970 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
22:53:32.0695 0x0970 Netman - ok
22:53:32.0705 0x0970 [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:53:32.0715 0x0970 NetMsmqActivator - ok
22:53:32.0725 0x0970 [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:53:32.0735 0x0970 NetPipeActivator - ok
22:53:32.0745 0x0970 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
22:53:32.0785 0x0970 netprofm - ok
22:53:32.0785 0x0970 [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:53:32.0795 0x0970 NetTcpActivator - ok
22:53:32.0805 0x0970 [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:53:32.0815 0x0970 NetTcpPortSharing - ok
22:53:32.0985 0x0970 [ 30933BB56FB611D0252BAD488ADFB533, 660B96A1BB6158224E518E6847E16C5A876C516C39FACFF87ABC9A200447B809 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
22:53:33.0155 0x0970 NETwNs64 - ok
22:53:33.0165 0x0970 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:53:33.0175 0x0970 nfrd960 - ok
22:53:33.0185 0x0970 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
22:53:33.0205 0x0970 NlaSvc - ok
22:53:33.0205 0x0970 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:53:33.0235 0x0970 Npfs - ok
22:53:33.0235 0x0970 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
22:53:33.0265 0x0970 nsi - ok
22:53:33.0265 0x0970 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:53:33.0285 0x0970 nsiproxy - ok
22:53:33.0325 0x0970 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:53:33.0365 0x0970 Ntfs - ok
22:53:33.0365 0x0970 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
22:53:33.0395 0x0970 Null - ok
22:53:33.0395 0x0970 [ 69FCDECD0215195261EC5362AB4A1520, B1B1DBACC4641AC4A4520CDE736074468BC9B5605BD5DFB140D946A0DF810F08 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
22:53:33.0415 0x0970 nusb3hub - ok
22:53:33.0415 0x0970 [ F813EA99DA158FB4079622D882873D63, 243DE756315C8652718871AB499DC3AEBA2A48438706CA37B3C46B02ED6DFF63 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:53:33.0425 0x0970 nusb3xhc - ok
22:53:33.0435 0x0970 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:53:33.0445 0x0970 nvraid - ok
22:53:33.0455 0x0970 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:53:33.0465 0x0970 nvstor - ok
22:53:33.0465 0x0970 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:53:33.0475 0x0970 nv_agp - ok
22:53:33.0485 0x0970 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:53:33.0495 0x0970 ohci1394 - ok
22:53:33.0495 0x0970 [ 5B32D0B4376B02DA2DCFC8C521D66A11, 7442DA396874D01015345930ABB5986F66538CE80F06EA4758131E75954DBAF8 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:53:33.0515 0x0970 ose - ok
22:53:33.0615 0x0970 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:53:33.0715 0x0970 osppsvc - ok
22:53:33.0735 0x0970 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:53:33.0745 0x0970 p2pimsvc - ok
22:53:33.0765 0x0970 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
22:53:33.0775 0x0970 p2psvc - ok
22:53:33.0785 0x0970 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
22:53:33.0795 0x0970 Parport - ok
22:53:33.0795 0x0970 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:53:33.0805 0x0970 partmgr - ok
22:53:33.0815 0x0970 [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
22:53:33.0825 0x0970 PcaSvc - ok
22:53:33.0835 0x0970 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
22:53:33.0845 0x0970 pci - ok
22:53:33.0845 0x0970 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
22:53:33.0855 0x0970 pciide - ok
22:53:33.0865 0x0970 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:53:33.0875 0x0970 pcmcia - ok
22:53:33.0875 0x0970 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
22:53:33.0885 0x0970 pcw - ok
22:53:33.0905 0x0970 [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:53:33.0925 0x0970 PEAUTH - ok
22:53:33.0955 0x0970 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
22:53:33.0985 0x0970 PeerDistSvc - ok
22:53:34.0015 0x0970 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:53:34.0025 0x0970 PerfHost - ok
22:53:34.0065 0x0970 [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
22:53:34.0105 0x0970 pla - ok
22:53:34.0115 0x0970 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:53:34.0135 0x0970 PlugPlay - ok
22:53:34.0135 0x0970 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:53:34.0145 0x0970 PNRPAutoReg - ok
22:53:34.0155 0x0970 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:53:34.0165 0x0970 PNRPsvc - ok
22:53:34.0185 0x0970 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:53:34.0195 0x0970 PolicyAgent - ok
22:53:34.0205 0x0970 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
22:53:34.0235 0x0970 Power - ok
22:53:34.0275 0x0970 [ 3E1BA96F0B2E07117AD0E81C2B685E32, 8E6C45C1222D3C5442ECCE5E29B1023DDEB1E457FE86267A1DDEF8ED06ADDB3B ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
22:53:34.0315 0x0970 Power Manager DBC Service - ok
22:53:34.0315 0x0970 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:53:34.0345 0x0970 PptpMiniport - ok
22:53:34.0345 0x0970 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
22:53:34.0355 0x0970 Processor - ok
22:53:34.0365 0x0970 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
22:53:34.0375 0x0970 ProfSvc - ok
22:53:34.0385 0x0970 [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:53:34.0395 0x0970 ProtectedStorage - ok
22:53:34.0395 0x0970 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:53:34.0425 0x0970 Psched - ok
22:53:34.0455 0x0970 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:53:34.0495 0x0970 ql2300 - ok
22:53:34.0495 0x0970 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:53:34.0505 0x0970 ql40xx - ok
22:53:34.0515 0x0970 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
22:53:34.0535 0x0970 QWAVE - ok
22:53:34.0535 0x0970 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:53:34.0555 0x0970 QWAVEdrv - ok
22:53:34.0555 0x0970 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:53:34.0585 0x0970 RasAcd - ok
22:53:34.0585 0x0970 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:53:34.0615 0x0970 RasAgileVpn - ok
22:53:34.0625 0x0970 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
22:53:34.0645 0x0970 RasAuto - ok
22:53:34.0655 0x0970 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:53:34.0685 0x0970 Rasl2tp - ok
22:53:34.0695 0x0970 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
22:53:34.0725 0x0970 RasMan - ok
22:53:34.0725 0x0970 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:53:34.0755 0x0970 RasPppoe - ok
22:53:34.0765 0x0970 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:53:34.0785 0x0970 RasSstp - ok
22:53:34.0795 0x0970 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:53:34.0825 0x0970 rdbss - ok
22:53:34.0825 0x0970 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:53:34.0845 0x0970 rdpbus - ok
22:53:34.0845 0x0970 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:53:34.0865 0x0970 RDPCDD - ok
22:53:34.0875 0x0970 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
22:53:34.0885 0x0970 RDPDR - ok
22:53:34.0895 0x0970 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:53:34.0915 0x0970 RDPENCDD - ok
22:53:34.0915 0x0970 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:53:34.0945 0x0970 RDPREFMP - ok
22:53:34.0955 0x0970 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:53:34.0965 0x0970 RDPWD - ok
22:53:34.0975 0x0970 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:53:34.0985 0x0970 rdyboost - ok
22:53:34.0985 0x0970 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:53:35.0015 0x0970 RemoteAccess - ok
22:53:35.0025 0x0970 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:53:35.0055 0x0970 RemoteRegistry - ok
22:53:35.0055 0x0970 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:53:35.0075 0x0970 RFCOMM - ok
22:53:35.0075 0x0970 [ A6DA2B0C8F5BB3F9F5423CFF8D6A02D9, 1841364D1ADC7DFD107AE3533BD8E37AD1E176EE5822D1B354A9E8E865029996 ] risdpcie C:\Windows\system32\DRIVERS\risdpe64.sys
22:53:35.0085 0x0970 risdpcie - ok
22:53:35.0085 0x0970 [ 5A227511ED22DDFEDF7EF7323C8F7D2F, 5056DED32432E192268BE8214B6152A488807357D1BBB769171843E589BF4320 ] risdxc C:\Windows\system32\DRIVERS\risdxc64.sys
22:53:35.0095 0x0970 risdxc - ok
22:53:35.0105 0x0970 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:53:35.0125 0x0970 RpcEptMapper - ok
22:53:35.0135 0x0970 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
22:53:35.0145 0x0970 RpcLocator - ok
22:53:35.0155 0x0970 [ 5E9F8D029D9B03110D835CBFC058068B, 038FDF99C643C8102026BA26A75899A56E91AD0C239DF71AA5443FD35C718C78 ] RpcSs C:\Windows\system32\rpcss.dll
22:53:35.0175 0x0970 RpcSs - ok
22:53:35.0185 0x0970 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:53:35.0205 0x0970 rspndr - ok
22:53:35.0205 0x0970 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
22:53:35.0215 0x0970 s3cap - ok
22:53:35.0225 0x0970 [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] SamSs C:\Windows\system32\lsass.exe
22:53:35.0235 0x0970 SamSs - ok
22:53:35.0235 0x0970 SAService - ok
22:53:35.0235 0x0970 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:53:35.0245 0x0970 sbp2port - ok
22:53:35.0255 0x0970 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:53:35.0285 0x0970 SCardSvr - ok
22:53:35.0285 0x0970 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:53:35.0315 0x0970 scfilter - ok
22:53:35.0335 0x0970 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
22:53:35.0365 0x0970 Schedule - ok
22:53:35.0375 0x0970 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:53:35.0395 0x0970 SCPolicySvc - ok
22:53:35.0405 0x0970 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:53:35.0415 0x0970 SDRSVC - ok
22:53:35.0415 0x0970 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:53:35.0425 0x0970 secdrv - ok
22:53:35.0435 0x0970 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
22:53:35.0445 0x0970 seclogon - ok
22:53:35.0445 0x0970 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
22:53:35.0475 0x0970 SENS - ok
22:53:35.0475 0x0970 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:53:35.0485 0x0970 SensrSvc - ok
22:53:35.0485 0x0970 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:53:35.0495 0x0970 Serenum - ok
22:53:35.0505 0x0970 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:53:35.0515 0x0970 Serial - ok
22:53:35.0515 0x0970 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:53:35.0525 0x0970 sermouse - ok
22:53:35.0535 0x0970 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
22:53:35.0565 0x0970 SessionEnv - ok
22:53:35.0565 0x0970 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:53:35.0575 0x0970 sffdisk - ok
22:53:35.0575 0x0970 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:53:35.0585 0x0970 sffp_mmc - ok
22:53:35.0595 0x0970 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:53:35.0605 0x0970 sffp_sd - ok
22:53:35.0605 0x0970 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:53:35.0615 0x0970 sfloppy - ok
22:53:35.0625 0x0970 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:53:35.0655 0x0970 SharedAccess - ok
22:53:35.0675 0x0970 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:53:35.0705 0x0970 ShellHWDetection - ok
22:53:35.0705 0x0970 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:53:35.0715 0x0970 SiSRaid2 - ok
22:53:35.0715 0x0970 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:53:35.0725 0x0970 SiSRaid4 - ok
22:53:35.0735 0x0970 [ 18614592402298F32EBE75B85AA98F6A, 94E914CF70006F272D1155ABCCF000691742EA6F81CA46FCADFEA1CA257B72C9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:53:35.0755 0x0970 SkypeUpdate - ok
22:53:35.0765 0x0970 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:53:35.0795 0x0970 Smb - ok
22:53:35.0795 0x0970 [ 7956FD22F1AC83057630975D2B9AA452, ACBA47559D97B1B3FBDD7D9C7F13918EA00D63D9194642692E89E05B2D304BDE ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
22:53:35.0805 0x0970 SmbDrvI - ok
22:53:35.0805 0x0970 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:53:35.0815 0x0970 SNMPTRAP - ok
22:53:35.0825 0x0970 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
22:53:35.0825 0x0970 spldr - ok
22:53:35.0845 0x0970 [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
22:53:35.0875 0x0970 Spooler - ok
22:53:35.0955 0x0970 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
22:53:36.0045 0x0970 sppsvc - ok
22:53:36.0055 0x0970 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:53:36.0085 0x0970 sppuinotify - ok
22:53:36.0095 0x0970 [ 546C81F238F084A393EC54114741A0A8, AA223A2A8E8503CBDB0CE6A70620B372E0591070F9FF7D8532A93B54EF7B7E51 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:53:36.0115 0x0970 srv - ok
22:53:36.0125 0x0970 [ 431D2B06E8F93EAEC53E8FA37FCFF2F1, 4CB94D250E9D2646FCE7284D4D3CED1BB02E4D79AD33A414D16EF794195868CA ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:53:36.0145 0x0970 srv2 - ok
22:53:36.0145 0x0970 [ 42EDAB3E3E8E25C7093674936C2DB4BD, B2D5E006B748F24F0FF2CEFFC3D056F3D50E8A818BDFF4231C87C022A25F44ED ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:53:36.0165 0x0970 srvnet - ok
22:53:36.0165 0x0970 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:53:36.0195 0x0970 SSDPSRV - ok
22:53:36.0205 0x0970 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:53:36.0225 0x0970 SstpSvc - ok
22:53:36.0235 0x0970 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:53:36.0245 0x0970 stexstor - ok
22:53:36.0255 0x0970 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
22:53:36.0285 0x0970 stisvc - ok
22:53:36.0285 0x0970 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
22:53:36.0295 0x0970 storflt - ok
22:53:36.0295 0x0970 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
22:53:36.0305 0x0970 StorSvc - ok
22:53:36.0305 0x0970 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
22:53:36.0315 0x0970 storvsc - ok
22:53:36.0325 0x0970 [ 1319A23E010C0A8CC0B51F71AF2DEC87, 048454D21AB12C638D5589FFF2C615C7EE304A3D16790455A1E913D25D5C69C1 ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe
22:53:36.0335 0x0970 SUService - ok
22:53:36.0335 0x0970 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:53:36.0345 0x0970 swenum - ok
22:53:36.0355 0x0970 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
22:53:36.0395 0x0970 swprv - ok
22:53:36.0405 0x0970 [ AFB9FC97DAC435B588EACD63C3174DAA, FDE397F1202E02B1911E3C4A851918AA73BF206A44939BA981F50BC116E0E35A ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:53:36.0415 0x0970 SynTP - ok
22:53:36.0455 0x0970 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
22:53:36.0505 0x0970 SysMain - ok
22:53:36.0505 0x0970 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:53:36.0525 0x0970 TabletInputService - ok
22:53:36.0535 0x0970 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
22:53:36.0565 0x0970 TapiSrv - ok
22:53:36.0605 0x0970 [ 351A21ED3971ADD558956FF3EB0F6FED, 44C3A5452F120E9D29FB9840E811CF0C1D7D8F675ED1B2E501C746A4CC0BF8A7 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:53:36.0645 0x0970 Tcpip - ok
22:53:36.0695 0x0970 [ 351A21ED3971ADD558956FF3EB0F6FED, 44C3A5452F120E9D29FB9840E811CF0C1D7D8F675ED1B2E501C746A4CC0BF8A7 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:53:36.0735 0x0970 TCPIP6 - ok
22:53:36.0985 0x0970 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:53:37.0015 0x0970 tcpipreg - ok
22:53:37.0025 0x0970 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:53:37.0045 0x0970 TDPIPE - ok
22:53:37.0055 0x0970 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:53:37.0065 0x0970 TDTCP - ok
22:53:37.0075 0x0970 [ EC75A942C32F7F405659D86156DCE4C5, 01EA22B0F8ADD1674E3DE785F5ABC3C0F0DAE42E69CD9EEADDDCDDD4C652CBFD ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:53:37.0085 0x0970 tdx - ok
22:53:37.0085 0x0970 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:53:37.0095 0x0970 TermDD - ok
22:53:37.0115 0x0970 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
22:53:37.0135 0x0970 TermService - ok
22:53:37.0135 0x0970 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
22:53:37.0155 0x0970 Themes - ok
22:53:37.0155 0x0970 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
22:53:37.0185 0x0970 THREADORDER - ok
22:53:37.0185 0x0970 [ 48DDEF0B921DD331536CC82C1A8FF64F, 540107E278E4C7DE4F43D37F7EA7BC094B6755399C22EE3A68574AA8A7719ACC ] TPM C:\Windows\system32\drivers\tpm.sys
22:53:37.0205 0x0970 TPM - ok
22:53:37.0205 0x0970 [ 1B58B92F059C30F33A7B9DF7EC61F288, 0C0469784166F0433A178017BFB79831919372C5B5A7C948BAA8727F753FBF09 ] TPPWRIF C:\Windows\system32\drivers\Tppwr64v.sys
22:53:37.0215 0x0970 TPPWRIF - ok
22:53:37.0215 0x0970 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
22:53:37.0245 0x0970 TrkWks - ok
22:53:37.0255 0x0970 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:53:37.0275 0x0970 TrustedInstaller - ok
22:53:37.0285 0x0970 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:53:37.0295 0x0970 tssecsrv - ok
22:53:37.0295 0x0970 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:53:37.0305 0x0970 TsUsbFlt - ok
22:53:37.0305 0x0970 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:53:37.0315 0x0970 TsUsbGD - ok
22:53:37.0325 0x0970 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:53:37.0355 0x0970 tunnel - ok
22:53:37.0355 0x0970 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:53:37.0365 0x0970 uagp35 - ok
22:53:37.0375 0x0970 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:53:37.0405 0x0970 udfs - ok
22:53:37.0415 0x0970 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:53:37.0425 0x0970 UI0Detect - ok
22:53:37.0425 0x0970 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:53:37.0435 0x0970 uliagpkx - ok
22:53:37.0435 0x0970 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:53:37.0445 0x0970 umbus - ok
22:53:37.0445 0x0970 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
22:53:37.0455 0x0970 UmPass - ok
22:53:37.0465 0x0970 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
22:53:37.0475 0x0970 UmRdpService - ok
22:53:37.0535 0x0970 [ C4A807D3FA652C0B349A282E7BC87215, FCA5DDA410D34CE60F3D7A029E1632A07B7C8D0ED37188150D50CCC9A9AD96E1 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:53:37.0595 0x0970 UNS - ok
22:53:37.0605 0x0970 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
22:53:37.0635 0x0970 upnphost - ok
22:53:37.0645 0x0970 [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:53:37.0655 0x0970 usbccgp - ok
22:53:37.0655 0x0970 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:53:37.0665 0x0970 usbcir - ok
22:53:37.0675 0x0970 [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:53:37.0675 0x0970 usbehci - ok
22:53:37.0695 0x0970 [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys
22:53:37.0705 0x0970 usbhub - ok
22:53:37.0705 0x0970 [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:53:37.0715 0x0970 usbohci - ok
22:53:37.0725 0x0970 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:53:37.0735 0x0970 usbprint - ok
22:53:37.0735 0x0970 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:53:37.0745 0x0970 USBSTOR - ok
22:53:37.0745 0x0970 [ 6D14D8EC1DD33A072653E75E3B28B062, C50F1B1D055387D16363C5C6C04768B1FECC843242D7C09478990A136BF5F7D5 ] usbUDisc C:\Windows\system32\DRIVERS\USBDrv_AMD64.sys
22:53:37.0755 0x0970 usbUDisc - ok
22:53:37.0755 0x0970 [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:53:37.0765 0x0970 usbuhci - ok
22:53:37.0775 0x0970 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:53:37.0785 0x0970 usbvideo - ok
22:53:37.0795 0x0970 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
22:53:37.0815 0x0970 UxSms - ok
22:53:37.0825 0x0970 [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] VaultSvc C:\Windows\system32\lsass.exe
22:53:37.0825 0x0970 VaultSvc - ok
22:53:37.0835 0x0970 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:53:37.0845 0x0970 vdrvroot - ok
22:53:37.0855 0x0970 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
22:53:37.0895 0x0970 vds - ok
22:53:37.0895 0x0970 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:53:37.0905 0x0970 vga - ok
22:53:37.0905 0x0970 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:53:37.0935 0x0970 VgaSave - ok
22:53:37.0945 0x0970 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:53:37.0955 0x0970 vhdmp - ok
22:53:37.0955 0x0970 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
22:53:37.0965 0x0970 viaide - ok
22:53:37.0975 0x0970 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
22:53:37.0985 0x0970 vmbus - ok
22:53:37.0985 0x0970 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
22:53:37.0995 0x0970 VMBusHID - ok
22:53:37.0995 0x0970 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:53:38.0005 0x0970 volmgr - ok
22:53:38.0015 0x0970 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:53:38.0035 0x0970 volmgrx - ok
22:53:38.0035 0x0970 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:53:38.0055 0x0970 volsnap - ok
22:53:38.0055 0x0970 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:53:38.0065 0x0970 vsmraid - ok
22:53:38.0105 0x0970 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
22:53:38.0165 0x0970 VSS - ok
22:53:38.0165 0x0970 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:53:38.0175 0x0970 vwifibus - ok
22:53:38.0185 0x0970 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:53:38.0195 0x0970 vwififlt - ok
22:53:38.0195 0x0970 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:53:38.0215 0x0970 vwifimp - ok
22:53:38.0225 0x0970 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
22:53:38.0255 0x0970 W32Time - ok
22:53:38.0265 0x0970 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:53:38.0275 0x0970 WacomPen - ok
22:53:38.0275 0x0970 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:53:38.0305 0x0970 WANARP - ok
22:53:38.0305 0x0970 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:53:38.0335 0x0970 Wanarpv6 - ok
22:53:38.0365 0x0970 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
22:53:38.0405 0x0970 wbengine - ok
22:53:38.0415 0x0970 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:53:38.0425 0x0970 WbioSrvc - ok
22:53:38.0445 0x0970 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:53:38.0455 0x0970 wcncsvc - ok
22:53:38.0465 0x0970 [ BC00873272B3771CCDA38336AF2B4D4B, 3E412DEC5F172B4C5FD5C227CD790EE56B90A00A8B538704E8F973D230BE2289 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:53:38.0475 0x0970 WcsPlugInService - ok
22:53:38.0475 0x0970 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
22:53:38.0485 0x0970 Wd - ok
22:53:38.0505 0x0970 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:53:38.0525 0x0970 Wdf01000 - ok
22:53:38.0535 0x0970 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:53:38.0545 0x0970 WdiServiceHost - ok
22:53:38.0545 0x0970 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:53:38.0555 0x0970 WdiSystemHost - ok
22:53:38.0565 0x0970 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
22:53:38.0575 0x0970 WebClient - ok
22:53:38.0585 0x0970 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:53:38.0615 0x0970 Wecsvc - ok
22:53:38.0625 0x0970 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:53:38.0655 0x0970 wercplsupport - ok
22:53:38.0655 0x0970 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
22:53:38.0685 0x0970 WerSvc - ok
22:53:38.0685 0x0970 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:53:38.0715 0x0970 WfpLwf - ok
22:53:38.0715 0x0970 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:53:38.0725 0x0970 WIMMount - ok
22:53:38.0725 0x0970 WinDefend - ok
22:53:38.0735 0x0970 WinHttpAutoProxySvc - ok
22:53:38.0745 0x0970 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:53:38.0775 0x0970 Winmgmt - ok
22:53:38.0815 0x0970 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
22:53:38.0865 0x0970 WinRM - ok
22:53:38.0875 0x0970 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:53:38.0885 0x0970 WinUsb - ok
22:53:38.0905 0x0970 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:53:38.0935 0x0970 Wlansvc - ok
22:53:38.0935 0x0970 WMCoreService - ok
22:53:38.0945 0x0970 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:53:38.0955 0x0970 WmiAcpi - ok
22:53:38.0955 0x0970 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:53:38.0975 0x0970 wmiApSrv - ok
22:53:38.0975 0x0970 WMPNetworkSvc - ok
22:53:38.0985 0x0970 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:53:38.0985 0x0970 WPCSvc - ok
22:53:38.0995 0x0970 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:53:39.0005 0x0970 WPDBusEnum - ok
22:53:39.0015 0x0970 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:53:39.0035 0x0970 ws2ifsl - ok
22:53:39.0045 0x0970 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
22:53:39.0055 0x0970 wscsvc - ok
22:53:39.0055 0x0970 WSearch - ok
22:53:39.0115 0x0970 [ F24A345C584EC2EFC49F9F375EBDA2A5, 85FBB211CA2320363B5503E06AC23C6A89007D3777D696DF6D7ADB2369965ECD ] wuauserv C:\Windows\system32\wuaueng.dll
22:53:39.0175 0x0970 wuauserv - ok
22:53:39.0185 0x0970 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:53:39.0195 0x0970 WudfPf - ok
22:53:39.0205 0x0970 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:53:39.0215 0x0970 WUDFRd - ok
22:53:39.0225 0x0970 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:53:39.0235 0x0970 wudfsvc - ok
22:53:39.0235 0x0970 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
22:53:39.0255 0x0970 WwanSvc - ok
22:53:39.0265 0x0970 [ 63DD9FFD416D66959C9DA57D8B001531, 3DB6C38B698565F9DAD0680D8E9BF3CE285E4298307E81918FF21F509E32CF0D ] WwanUsbServ C:\Windows\system32\DRIVERS\WwanUsbMp64.sys
22:53:39.0275 0x0970 WwanUsbServ - ok
22:53:39.0285 0x0970 ================ Scan global ===============================
22:53:39.0285 0x0970 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
22:53:39.0295 0x0970 [ C635B3578DBAFB1E03497C0D2F2418A5, 697454B3EC86078F0C37C258BDEDA8E2798BB574B0C11E652D4A0141E827174C ] C:\Windows\system32\winsrv.dll
22:53:39.0305 0x0970 [ C635B3578DBAFB1E03497C0D2F2418A5, 697454B3EC86078F0C37C258BDEDA8E2798BB574B0C11E652D4A0141E827174C ] C:\Windows\system32\winsrv.dll
22:53:39.0315 0x0970 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:53:39.0325 0x0970 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
22:53:39.0325 0x0970 [ Global ] - ok
22:53:39.0325 0x0970 ================ Scan MBR ==================================
22:53:39.0325 0x0970 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:53:39.0435 0x0970 \Device\Harddisk0\DR0 - ok
22:53:39.0435 0x0970 ================ Scan VBR ==================================
22:53:39.0435 0x0970 [ E1D3C751E68B47605D042E8A2EC848A6 ] \Device\Harddisk0\DR0\Partition1
22:53:39.0435 0x0970 \Device\Harddisk0\DR0\Partition1 - ok
22:53:39.0435 0x0970 [ D53BA63EBD1C6369CEB71A2645CF78A4 ] \Device\Harddisk0\DR0\Partition2
22:53:39.0435 0x0970 \Device\Harddisk0\DR0\Partition2 - ok
22:53:39.0445 0x0970 ================ Scan generic autorun ======================
22:53:39.0445 0x0970 [ A6B647ACD4E24D8ABDBD035BDEAA53BD, D26A79193228AAD1A8A05EDE84D4807991CDD1D004D5656170D234F82514A851 ] C:\Windows\system32\igfxtray.exe
22:53:39.0455 0x0970 IgfxTray - ok
22:53:39.0465 0x0970 [ 82F7D63F723715D1D115BE5AFB560AD8, DE9714B8DF94B12FECE4DD9CA189B849B40CCE557780B0E4C367D4957802C007 ] C:\Windows\system32\igfxpers.exe
22:53:39.0485 0x0970 Persistence - ok
22:53:39.0485 0x0970 SynTPEnh - ok
22:53:39.0485 0x0970 [ 084F1404AE15651DF5F5246C2E3D5569, 52212D1CBDDE9B5C5210216094EEB0D7AF8B85CE7A61690023F24A43338AC0C0 ] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
22:53:39.0495 0x0970 LENOVO.TPKNRRES - ok
22:53:39.0495 0x0970 [ 42361B4BD80768E82B80285851037665, A555A6BF8016645B838FEA993AD273D1F472586F3600619DC243B1C33438FA07 ] C:\Program Files\Conexant\ForteConfig\fmapp.exe
22:53:39.0505 0x0970 ForteConfig - ok
22:53:39.0515 0x0970 [ 4F12EAD0B4C8BDAED5A11CC11F394B0A, EF769C2C2564D42979746B8BFD1D6E6532BFAB3BFCE2D09A0A17D0E64498B9B3 ] C:\Program Files\CONEXANT\SAII\SAIICpl.exe
22:53:39.0525 0x0970 SmartAudio - ok
22:53:39.0525 0x0970 [ 36B8CD690F411AB6094A3FE8E71892A0, 64AAE57E6A4053F595518416CAF7AE3C851C6FF547EA143F58BD7D4BB09344B7 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
22:53:39.0535 0x0970 IMSS - ok
22:53:39.0545 0x0970 Dropbox - ok
22:53:39.0605 0x0970 [ 7F42FFCD6FF7CA558C2D95DADCD5EFA9, CD9E71A718AD3FF465950A7D3937884154F021A296C301BE2FECD0AE69F04713 ] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
22:53:39.0655 0x0970 BrStsMon00 - detected UnsignedFile.Multi.Generic ( 1 )
22:53:47.0035 0x0970 Detect skipped due to KSN trusted
22:53:47.0035 0x0970 BrStsMon00 - ok
22:53:47.0055 0x0970 [ A21E70B4F972CA396A80013D0D436350, EE9C6A43895BBFE901CE8055E166064D1F38F196F4F8342DBED43D9E2A1E855E ] C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
22:53:47.0075 0x0970 Acrobat Assistant 8.0 - ok
22:53:47.0095 0x0970 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:53:47.0135 0x0970 Sidebar - ok
22:53:47.0135 0x0970 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:53:47.0155 0x0970 mctadmin - ok
22:53:47.0375 0x0970 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:53:47.0415 0x0970 Sidebar - ok
22:53:47.0415 0x0970 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:53:47.0435 0x0970 mctadmin - ok
22:53:47.0445 0x0970 [ B22CB67919EBAD88B0E8BB9CDA446010, 2F744FEAC48EDE7D6B6D2727F7DDFA80B26D9E3B0009741B00992B19AD85E128 ] C:\Windows\System32\StikyNot.exe
22:53:47.0455 0x0970 RESTART_STICKY_NOTES - ok
22:53:47.0665 0x0970 [ 3F6B014280D8A98ACC323BB28CA5BCA7, 724FE1E949D57E982B50CC6FBBA8BCB524C42592A39ED60D37042CC2C2E73CAB ] C:\Program Files\CCleaner\CCleaner64.exe
22:53:47.0855 0x0970 CCleaner Monitoring - ok
22:53:47.0885 0x0970 [ C1DE156BD17A08A294C61C28981CCAD5, BCB8351A3F00126F0DD70C9FD72ED8CBEA692E76D1C377ECF8762E822DC31DDF ] C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe
22:53:47.0915 0x0970 f.lux - ok
22:53:47.0915 0x0970 Skype - ok
22:53:47.0915 0x0970 Waiting for KSN requests completion. In queue: 8
22:53:48.0035 0x0d70 Object required for P2P: [ 3F6B014280D8A98ACC323BB28CA5BCA7 ] C:\Program Files\CCleaner\CCleaner64.exe
22:53:48.0285 0x0d70 Object send P2P result: true
22:53:48.0945 0x0970 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\WindowsSecurityCenter.exe ( 15.0.26.45 ), 0x41000 ( enabled : updated )
22:53:48.0955 0x0970 Win FW state via NFP2: enabled ( trusted )
22:53:49.0055 0x0970 ============================================================
22:53:49.0055 0x0970 Scan finished
22:53:49.0055 0x0970 ============================================================
22:53:49.0075 0x18f0 Detected object count: 0
22:53:49.0075 0x18f0 Actual detected object count: 0
|
|
23.05.2017, 19:30
| #7 |
| /// TB-Ausbilder | Problem mit launchpage.org Servus, FRST bitte nochmal ausführen und die beiden Logdateien posten. |
|
24.05.2017, 15:41
| #8 |
| | Problem mit launchpage.orgFRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-05-2017
durchgeführt von user (Administrator) auf USER-PC (24-05-2017 16:38:49)
Gestartet von C:\Users\user\Desktop
Geladene Profile: user (Verfügbare Profile: user)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Flux Software LLC) C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTStackServer.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Farbar) C:\Users\user\Desktop\FRST64(1).exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916592 2014-07-28] (Synaptics Incorporated)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant systems, Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [113656 2013-07-02] (Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [Dolby Home Theater v4] => "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [f.lux] => C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat - Schnellstart.lnk [2017-03-04]
ShortcutTarget: Adobe Acrobat - Schnellstart.lnk -> C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk [2017-03-04]
ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2017-05-16]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2017-01-27]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E08C96DE-4F95-4B54-A2EF-BF05D5BFBB9F}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022017-A6B219395BABB4E59ADF&form=CONBDF&conlogo=CT3332005&q={searchTerms}
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022017-A6B219395BABB4E59ADF&form=CONBDF&conlogo=CT3332005&q={searchTerms}
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-16] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2017-05-16] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-16] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-16] (Microsoft Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: rqo5cz6m.default-1495531728194
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194 [2017-05-24]
FF Homepage: Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194 -> about:home
FF Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-23]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3801280 2017-05-04] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (Lenovo.)
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2017-03-04] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R2 LPlatSvc; C:\Windows\system32\LPlatSvc.exe [711248 2017-04-01] (Lenovo.)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-05-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB)
S3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2017-02-11] (REALiX(tm))
S3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB)
S3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation)
S3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation)
S3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation)
S3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated)
S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [17280 2017-01-29] (Scott)
S3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-24 16:38 - 2017-05-24 16:38 - 00019753 _____ C:\Users\user\Desktop\FRST.txt
2017-05-24 16:38 - 2017-05-24 16:37 - 02429952 _____ (Farbar) C:\Users\user\Desktop\FRST64(1).exe
2017-05-24 16:37 - 2017-05-24 16:37 - 02429952 _____ (Farbar) C:\Users\user\Downloads\FRST64(1).exe
2017-05-24 15:18 - 2017-05-24 15:18 - 00200363 _____ C:\Users\user\Downloads\Untermietvertrag1.pdf
2017-05-23 22:27 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2017-05-23 22:27 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-05-23 22:27 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-05-23 22:27 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2017-05-23 22:27 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2017-05-23 22:27 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-05-23 22:27 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-05-23 22:27 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2017-05-23 22:27 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2017-05-23 22:27 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2017-05-23 22:27 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-05-23 22:27 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-05-23 22:27 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-05-23 22:27 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-05-23 22:27 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2017-05-23 22:27 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-05-23 22:27 - 2013-10-01 22:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-05-23 22:27 - 2013-10-01 22:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-05-23 22:24 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-05-23 22:24 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-05-23 22:24 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2017-05-23 22:24 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-05-23 22:24 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2017-05-23 22:24 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2017-05-23 22:24 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-05-23 22:22 - 2017-04-28 00:50 - 03550208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 03165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-05-23 22:22 - 2017-04-17 17:35 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-05-23 22:22 - 2017-04-17 17:23 - 02651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-05-23 22:22 - 2017-04-17 17:22 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-05-23 22:22 - 2017-04-17 17:21 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-05-23 22:22 - 2017-04-17 17:21 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-05-23 22:22 - 2017-04-17 17:12 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2017-05-23 22:22 - 2017-04-17 17:01 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2017-05-23 22:22 - 2017-04-12 15:05 - 04296704 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-05-23 22:22 - 2015-08-05 19:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-05-23 22:22 - 2015-08-05 19:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2017-05-23 22:21 - 2015-12-16 20:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2017-05-23 22:21 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2017-05-23 22:21 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2017-05-23 22:09 - 2017-05-23 22:06 - 00004074 _____ C:\Users\user\Desktop\108040512437164.ics
2017-05-23 22:05 - 2017-05-23 22:06 - 00004074 _____ C:\Users\user\Downloads\108040512437164.ics
2017-05-23 21:39 - 2017-05-23 21:39 - 01632216 _____ (Skype Technologies S.A.) C:\Users\user\Downloads\SkypeSetup(1).exe
2017-05-23 14:23 - 2017-05-23 15:46 - 01019818 _____ C:\Users\user\Downloads\Denken5_2017(2).pdf
2017-05-23 13:17 - 2017-05-23 13:17 - 01601210 _____ C:\Users\user\Downloads\2017-05-16_Wiss_Schreiben_(6).pdf
2017-05-23 12:30 - 2017-05-23 12:31 - 00390365 _____ C:\Users\user\Downloads\Gottwald (2016). Thesis_chapter-1.pdf
2017-05-23 11:41 - 2017-05-23 22:22 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2017-05-23 11:28 - 2017-05-23 11:28 - 00000000 ____D C:\Users\user\Desktop\Alte Firefox-Daten
2017-05-23 10:50 - 2017-05-23 10:50 - 46853008 _____ (Mozilla) C:\Users\user\Downloads\firefox_setup_53.0.exe
2017-05-23 10:41 - 2017-05-23 10:41 - 13166816 _____ (Microsoft Corporation) C:\Users\user\Downloads\Silverlight_x64.exe
2017-05-23 02:08 - 2017-05-23 02:08 - 27778871 _____ C:\Users\user\Downloads\X-Codec-Pack_2.7.4.exe
2017-05-23 02:08 - 2017-05-23 02:08 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4
2017-05-22 11:57 - 2017-05-22 11:57 - 01569141 _____ C:\Users\user\Downloads\5.Sozialer Wandel von Partnerschaft.pdf
2017-05-22 11:53 - 2017-05-22 11:53 - 01072609 _____ C:\Users\user\Downloads\4.Elternschaft in der Moderne.pdf
2017-05-22 11:48 - 2017-05-22 11:48 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(3).pdf
2017-05-22 11:40 - 2017-05-22 11:40 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(2).pdf
2017-05-22 11:25 - 2017-05-22 11:25 - 00179241 _____ C:\Users\user\Downloads\3.Liebe_PsychologiederPartnerwahl.pdf
2017-05-21 02:28 - 2017-05-21 02:29 - 00375170 _____ C:\Users\user\Downloads\Stenek_2007_AA_339(1).pdf
2017-05-19 15:44 - 2017-05-19 15:40 - 03239068 _____ C:\Users\user\Desktop\Michael_Heinrich_Die_Wissenschaft_vom_Wert_Die_Marxsche_Kritik_der_politischen_Ökonomie_zwischen_wissenschaftlicher_Revolution_und_klassischer_Tradition__.pdf
2017-05-19 15:40 - 2017-05-19 15:40 - 03239068 _____ C:\Users\user\Downloads\Michael_Heinrich_Die_Wissenschaft_vom_Wert_Die_Marxsche_Kritik_der_politischen_Ökonomie_zwischen_wissenschaftlicher_Revolution_und_klassischer_Tradition__.pdf
2017-05-19 02:02 - 2017-05-19 02:02 - 65659968 _____ (Oracle Corporation) C:\Users\user\Downloads\jre-8u131-windows-x64.exe
2017-05-19 01:12 - 2017-05-19 01:12 - 00115573 _____ C:\Users\user\Downloads\Artikel_Mentalisierung.pdf
2017-05-17 22:52 - 2017-05-17 23:46 - 00217562 _____ C:\TDSSKiller.3.1.0.15_17.05.2017_22.52.22_log.txt
2017-05-17 22:51 - 2017-05-17 22:50 - 04922400 _____ (AO Kaspersky Lab) C:\Users\user\Desktop\tdsskiller.exe
2017-05-17 22:50 - 2017-05-17 22:51 - 00216842 _____ C:\TDSSKiller.3.1.0.15_17.05.2017_22.50.21_log.txt
2017-05-17 22:50 - 2017-05-17 22:50 - 04922400 _____ (AO Kaspersky Lab) C:\Users\user\Downloads\tdsskiller.exe
2017-05-17 22:39 - 2017-05-24 16:38 - 00000000 ____D C:\FRST
2017-05-17 22:39 - 2017-05-17 22:40 - 00097052 _____ C:\Users\user\Downloads\FRST.txt
2017-05-17 22:39 - 2017-05-17 22:40 - 00036513 _____ C:\Users\user\Downloads\Addition.txt
2017-05-17 22:38 - 2017-05-17 22:38 - 02429952 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2017-05-17 22:35 - 2017-05-17 22:35 - 00265970 _____ C:\Users\user\Downloads\Against_narrativity_final_2008_version.pdf
2017-05-17 22:31 - 2017-05-17 22:31 - 00141475 _____ C:\Users\user\Downloads\Stellenausschreibung Projektassistenz elhana Lernpaten e.V..pdf
2017-05-17 21:46 - 2017-05-17 22:09 - 00000000 ____D C:\Users\user\Desktop\Statistik II
2017-05-17 20:57 - 2017-05-17 20:58 - 00000000 ____D C:\Users\user\Desktop\Lernen
2017-05-17 20:45 - 2017-05-17 20:45 - 00000000 ____D C:\Users\user\Documents\Benutzerdefinierte Office-Vorlagen
2017-05-17 19:28 - 2017-05-17 19:28 - 00122917 _____ C:\Users\user\Downloads\2016_10_fb3_flyer.pdf
2017-05-17 18:54 - 2017-05-17 18:57 - 00000000 ____D C:\AdwCleaner
2017-05-17 18:54 - 2017-05-17 18:55 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046(3).exe
2017-05-17 18:49 - 2017-05-17 18:49 - 00015390 _____ C:\Users\user\Downloads\hijackthis 17.05.17
2017-05-17 18:22 - 2017-05-17 18:22 - 00003126 _____ C:\Windows\System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C}
2017-05-17 18:19 - 2017-05-17 18:20 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(2).exe
2017-05-17 18:19 - 2017-05-17 18:19 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(1).exe
2017-05-17 17:03 - 2017-05-17 17:03 - 00005719 _____ C:\Users\user\Documents\.RData
2017-05-17 14:29 - 2017-05-17 14:29 - 00000000 ____D C:\Users\user\Documents\rkurs
2017-05-17 14:12 - 2017-05-17 14:12 - 00000000 ____D C:\Users\user\Documents\R
2017-05-17 10:47 - 2017-05-17 10:47 - 00000085 _____ C:\Windows\wininit.ini
2017-05-17 10:39 - 2017-05-17 10:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-17 10:38 - 2017-05-17 10:39 - 63035592 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.1.2.1733.exe
2017-05-17 10:37 - 2017-05-23 22:36 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2017-05-17 10:36 - 2017-05-17 10:36 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046(2).exe
2017-05-17 10:21 - 2017-05-17 10:24 - 00000000 ____D C:\Users\user\AppData\Local\NPE
2017-05-17 10:21 - 2017-05-17 10:21 - 03435768 _____ (Symantec Corporation) C:\Users\user\Downloads\NPE.exe
2017-05-17 10:21 - 2017-05-17 10:21 - 00000000 ____D C:\ProgramData\Norton
2017-05-17 03:06 - 2017-05-17 10:48 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-05-17 03:06 - 2017-05-17 10:47 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-05-17 03:06 - 2017-05-17 03:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\user\Downloads\spybot-2.4.exe
2017-05-17 03:06 - 2017-05-17 03:06 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2017-05-17 02:57 - 2017-05-17 02:57 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046(1).exe
2017-05-17 02:54 - 2017-05-17 02:54 - 04102600 _____ C:\Users\user\Downloads\adwcleaner_6.046.exe
2017-05-17 02:54 - 2017-05-17 02:54 - 04015056 _____ C:\Users\user\Downloads\adwcleaner_6.043.exe
2017-05-17 01:59 - 2017-05-17 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-16 23:49 - 2017-05-16 23:49 - 00000000 ____D C:\Users\user\Documents\OneNote-Notizbücher
2017-05-16 23:39 - 2017-05-16 23:40 - 00000000 ____D C:\Users\user\Desktop\Wahrnehmung
2017-05-16 23:38 - 2017-05-16 23:39 - 00000000 ____D C:\Users\user\Desktop\Referat Borderline
2017-05-16 23:34 - 2017-05-16 23:34 - 54199488 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\Documents\Bluetooth-Exchange-Ordner
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Local\Broadcom
2017-05-16 23:06 - 2012-12-04 04:38 - 00598808 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2017-05-16 23:04 - 2012-05-02 07:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2017-05-16 23:04 - 2011-09-18 01:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2017-05-16 23:03 - 2017-05-16 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-05-16 23:02 - 2017-05-16 23:25 - 00000000 ____D C:\Program Files\ThinkPad
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____D C:\Program Files\CONEXANT
2017-05-16 23:02 - 2017-04-01 02:44 - 00711248 _____ (Lenovo.) C:\Windows\system32\LPlatSvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00187984 _____ (Lenovo.) C:\Windows\system32\ibmpmsvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00082816 _____ (Lenovo.) C:\Windows\system32\Drivers\ibmpmdrv.sys
2017-05-16 23:02 - 2017-04-01 02:44 - 00058448 _____ (Lenovo.) C:\Windows\system32\tpinspm.dll
2017-05-16 23:02 - 2012-08-06 14:30 - 01780384 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64AP73.dll
2017-05-16 23:02 - 2012-06-05 18:40 - 01580704 _____ (Conexant Systems Inc.) C:\Windows\system32\Drivers\CHDRT64.sys
2017-05-16 23:02 - 2012-05-31 15:03 - 00568992 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI64A90.dll
2017-05-16 23:02 - 2012-05-01 11:18 - 00002013 _____ C:\Windows\system32\VoipUpdate.ini
2017-05-16 23:02 - 2011-05-11 14:25 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll
2017-05-16 23:02 - 2011-02-17 15:16 - 02075712 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-05-16 23:02 - 2011-01-18 08:35 - 00030893 _____ C:\Windows\system32\Drivers\Mixer.ini
2017-05-16 23:02 - 2011-01-04 19:22 - 00001976 ____N C:\Windows\system32\Drivers\SamSfPa.dat
2017-05-16 23:02 - 2010-12-17 04:18 - 00198784 ____N (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe
2017-05-16 23:02 - 2010-11-23 13:30 - 00050304 _____ (Conexant Systems Inc.) C:\Windows\system32\CxPageMaster64.dll
2017-05-16 23:02 - 2010-11-18 13:47 - 00446592 ____N (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
2017-05-16 23:02 - 2010-10-28 10:27 - 00001816 _____ C:\Windows\system32\Drivers\Altmixer.ini
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.QtWebEngineProcess
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.LSC
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\SWTOOLS
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Program Files (x86)\Integrated Camera Driver
2017-05-16 23:01 - 2017-04-01 02:44 - 00088144 _____ (Lenovo.) C:\Windows\system32\ibmpmctl.exe
2017-05-16 23:01 - 2013-11-15 15:40 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\2C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C04
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0816
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0804
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0424
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041F
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0419
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0416
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0415
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0414
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0413
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0412
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0411
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0410
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040C
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0409
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0408
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0406
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0405
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0404
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0401
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2017-05-16 23:00 - 2011-03-07 17:07 - 00126976 _____ (Ricoh co.,Ltd.) C:\Windows\SysWOW64\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:06 - 00142848 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:05 - 00123392 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.dll
2017-05-16 23:00 - 2011-03-04 18:18 - 00166016 _____ (Ricoh co.,Ltd.) C:\Windows\system32\Drivers\5U877.sys
2017-05-16 22:53 - 2017-05-16 22:53 - 02724352 _____ (Lenovo ) C:\Users\user\Downloads\LSBSetup.exe
2017-05-16 20:38 - 2017-05-16 20:38 - 00268108 _____ C:\Users\user\Downloads\schwermut-als-objekt.pdf
2017-05-16 20:29 - 2017-05-16 20:29 - 03900001 _____ C:\Users\user\Downloads\ASISM04_fertig_web.pdf
2017-05-16 17:16 - 2017-05-17 17:00 - 00000000 ____D C:\Users\user\Desktop\rkurs
2017-05-16 16:25 - 2017-05-16 16:25 - 00000000 ____D C:\Users\user\Documents\Updater5
2017-05-16 16:15 - 2017-05-23 14:05 - 00000000 ____D C:\Users\user\Desktop\Wissenschaftliches Schreiben
2017-05-16 15:02 - 2017-05-16 15:02 - 00000000 ____D C:\Users\user\Desktop\Gecshichte der Psychologie
2017-05-16 14:57 - 2017-05-16 20:39 - 00000000 ____D C:\Users\user\Desktop\Ktitik
2017-05-16 14:56 - 2017-05-16 14:56 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(2).pdf
2017-05-16 14:50 - 2017-05-16 14:50 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017(1).pdf
2017-05-16 14:49 - 2017-05-16 14:57 - 00000000 ____D C:\Users\user\Desktop\Denken und Spracheverarbeitung
2017-05-16 14:49 - 2017-05-16 14:49 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(1).pdf
2017-05-16 14:48 - 2017-05-16 14:48 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017.pdf
2017-05-16 02:15 - 2017-05-16 02:15 - 00742528 _____ C:\Users\user\Downloads\Training.htm
2017-05-15 22:34 - 2017-05-15 22:41 - 00021911 ____H C:\Users\user\Desktop\~WRL1464.tmp
2017-05-15 21:54 - 2017-05-15 21:54 - 00000000 ____D C:\Users\user\Desktop\Zeitschrift für Sozialforschung
2017-05-15 21:26 - 2017-05-15 21:26 - 36441940 _____ C:\Users\user\Downloads\Zeitschrift_fuer_Sozialforschung_6_1937.pdf
2017-05-15 21:03 - 2017-05-15 21:03 - 00000000 ____D C:\Users\user\Desktop\01. Lehrbuch für klinische Psychologie - Psychotherapie
2017-05-15 19:56 - 2017-05-15 20:59 - 02965941 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org)(1).pdf
2017-05-15 12:54 - 2017-05-16 15:24 - 01607874 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3.pdf
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Windows\System32\Tasks\Avira
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Users\user\AppData\Local\Avira
2017-05-14 21:09 - 2017-05-14 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-05-14 21:06 - 2017-05-23 22:21 - 00000000 ____D C:\ProgramData\Avira
2017-05-14 21:06 - 2017-05-14 21:10 - 00000000 ____D C:\Program Files (x86)\Avira
2017-05-14 20:53 - 2017-05-14 21:05 - 04793032 _____ (Avira Operations GmbH & Co. KG) C:\Users\user\Downloads\avira_de_av_5918a787ebd94__ws.exe
2017-05-14 18:31 - 2017-05-14 18:31 - 02863178 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org).pdf
2017-05-14 18:27 - 2017-05-14 18:27 - 00253035 _____ C:\Users\user\Downloads\[]_Psychologie_Psychiatrie_Auszug._Der_Psychothera(bookzz.org).pdf
2017-05-14 18:14 - 2015-04-15 15:36 - 11254212 _____ C:\Users\user\Desktop\[Robert_L._Solso]_Kognitive_Psychologie(BookZZ.org).pdf
2017-05-12 16:17 - 2017-05-12 16:18 - 01053047 _____ C:\Users\user\Downloads\the%20aftermath%20of%20the%20allied%20triumph%20over%20germany.pdf
2017-05-11 17:31 - 2017-05-11 17:31 - 00519236 _____ C:\Users\user\Downloads\Israel Flag.php
2017-05-11 14:22 - 2017-05-11 14:22 - 00821845 _____ C:\Users\user\Downloads\StatTut2_3.pdf
2017-05-10 12:50 - 2017-04-28 03:14 - 05547240 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 03:14 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-05-10 12:50 - 2017-04-28 03:14 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-05-10 12:50 - 2017-04-28 03:11 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:36 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-05-10 12:50 - 2017-04-28 02:36 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 02:34 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:19 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-05-10 12:50 - 2017-04-28 02:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-05-10 12:50 - 2017-04-28 02:19 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-05-10 12:50 - 2017-04-28 02:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-05-10 12:50 - 2017-04-28 02:14 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-05-10 12:50 - 2017-04-28 02:12 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 02:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-05-10 12:50 - 2017-04-28 02:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-26 16:59 - 03220992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-10 12:50 - 2017-04-21 17:34 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-05-10 12:50 - 2017-04-21 17:15 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-05-10 12:50 - 2017-04-20 02:00 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-10 12:50 - 2017-04-20 01:16 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 02065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00876544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 01417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-05-10 12:50 - 2017-04-17 16:54 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-05-10 12:50 - 2017-04-16 11:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 11:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-05-10 12:50 - 2017-04-16 10:57 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:55 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-05-10 12:50 - 2017-04-16 10:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-10 12:50 - 2017-04-16 10:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 10:43 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-05-10 12:50 - 2017-04-16 10:38 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-05-10 12:50 - 2017-04-16 10:37 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-10 12:50 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-10 12:50 - 2017-04-16 10:36 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-10 12:50 - 2017-04-16 10:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-05-10 12:50 - 2017-04-16 10:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 10:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-10 12:50 - 2017-04-16 10:11 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-10 12:50 - 2017-04-16 10:09 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-05-10 12:50 - 2017-04-16 10:04 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-05-10 12:50 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 10:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-05-10 12:50 - 2017-04-16 10:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 09:57 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-05-10 12:50 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-05-10 12:50 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-10 12:50 - 2017-04-16 09:48 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 09:46 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-10 12:50 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:35 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 09:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-10 12:50 - 2017-04-16 09:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-05-10 12:50 - 2017-04-16 09:25 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-05-10 12:50 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 09:20 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-05-10 12:50 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-10 12:50 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-10 12:50 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-05-10 12:50 - 2017-04-12 17:26 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2017-05-10 12:50 - 2017-04-07 17:34 - 00986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-10 12:50 - 2017-04-07 17:34 - 00265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-10 12:50 - 2017-04-07 17:30 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-10 12:50 - 2017-04-07 17:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-05-10 12:50 - 2017-04-07 17:22 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-10 12:50 - 2017-04-05 16:55 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 01895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-05-10 12:50 - 2017-04-04 16:53 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-05-10 12:50 - 2017-04-04 16:53 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-05-10 12:50 - 2017-03-10 18:32 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-05-10 12:50 - 2017-03-10 18:32 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2017-05-10 12:50 - 2017-03-10 17:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-05-10 12:50 - 2017-03-10 17:55 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-05-10 12:50 - 2017-03-10 17:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-05-10 12:50 - 2017-03-09 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-05-10 12:50 - 2017-03-09 18:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-05-10 12:37 - 2017-05-10 20:48 - 11836434 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017(1).pdf
2017-05-09 17:06 - 2017-05-09 17:06 - 00118216 _____ C:\Users\user\Downloads\Laplanche-Inzest.pdf
2017-05-09 15:09 - 2017-05-09 15:10 - 00028355 _____ C:\Users\user\Downloads\Haseloff_KulturthFreud.pdf
2017-05-09 14:20 - 2017-05-09 14:20 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017.pdf
2017-05-09 12:37 - 2017-05-16 15:42 - 01993430 _____ C:\Users\user\Downloads\2017-05-09_Wiss_Schreiben_(5).pdf
2017-05-08 18:11 - 2017-05-08 18:11 - 00506237 _____ C:\Users\user\Downloads\Geburtstag.php
2017-05-08 16:50 - 2017-05-08 16:50 - 06694898 _____ C:\Users\user\Downloads\BuehrmannReader.pdf
2017-05-08 16:32 - 2017-05-08 16:33 - 00347930 _____ C:\Users\user\Downloads\Flyer Einladung Museumsfest 2017.pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(4).pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(4).pdf
2017-05-06 23:43 - 2017-05-16 23:35 - 00000000 ____D C:\Users\user\Desktop\Allgmeine Psychologie
2017-05-06 20:31 - 2017-05-06 23:39 - 00000000 ____D C:\Ordner Desktop
2017-05-06 20:30 - 2017-05-21 20:24 - 00000000 ____D C:\Users\user\Desktop\docs pdf
2017-05-06 16:34 - 2017-05-06 16:34 - 00099291 _____ C:\Users\user\Downloads\sobre-la-parejas-del-ayer-la-pareja-humana-su-psicologia-sus-conflictos-su-tratamiento.pdf
2017-05-06 16:25 - 2017-05-06 16:25 - 00213738 _____ C:\Users\user\Downloads\El poder y sus conflictos en la pareja humana.pdf
2017-05-06 16:20 - 2017-05-06 16:20 - 00038612 _____ C:\Users\user\Downloads\14_UO_RBY_UAH.pdf
2017-05-05 23:49 - 2017-05-05 23:49 - 01552534 _____ C:\Users\user\Downloads\Brainhat_Elsevier_left_right.pdf
2017-05-05 23:48 - 2017-05-05 23:48 - 01630036 _____ C:\Users\user\Downloads\brain facts.pdf
2017-05-04 14:11 - 2017-05-04 14:11 - 00789044 _____ C:\Users\user\Downloads\StatTut2_2.pdf
2017-05-04 12:32 - 2017-05-04 12:32 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(1).pdf
2017-05-04 12:30 - 2017-05-04 12:30 - 12188880 _____ C:\Users\user\Downloads\Berk_2011_S.641-649_Liebe.pdf
2017-05-04 01:09 - 2017-05-04 01:09 - 08457076 _____ C:\Users\user\Downloads\SK 04 KM_3617050319190.pdf
2017-05-03 21:03 - 2017-05-03 21:03 - 11816779 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017.pdf
2017-05-02 23:04 - 2017-05-02 23:04 - 00020456 _____ C:\Users\user\Downloads\20161102_wohnungsgeberbestaetigung.pdf
2017-05-02 20:09 - 2017-05-02 20:09 - 01172583 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-2.pdf
2017-05-02 19:58 - 2017-05-02 19:58 - 01587063 _____ C:\Users\user\Downloads\Zielgruppen_Vortrag-Krull_Soziale-Phobie.pdf
2017-05-02 19:51 - 2017-05-02 19:52 - 22790583 _____ C:\Users\user\Downloads\Wahrnehmungseigenschaften + Allgemeine Sinnesphysiologie_2017(1).pdf
2017-05-02 19:51 - 2017-05-02 19:51 - 00260927 _____ C:\Users\user\Downloads\Überblick_Wahrnehmung+Handlung_2017(2).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(3).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(2).pdf
2017-05-02 19:19 - 2017-05-02 19:19 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(3).pdf
2017-05-02 19:11 - 2017-05-02 19:11 - 01886645 _____ C:\Users\user\Downloads\10 tips for writing a truly terrible journal article(1).pdf
2017-05-02 19:04 - 2017-05-02 19:04 - 08935575 _____ C:\Users\user\Downloads\APA_Chp-3_writing_clearly.pdf
2017-05-02 18:58 - 2017-05-02 18:58 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style(1).pdf
2017-05-02 18:54 - 2017-05-02 18:54 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen(1).pdf
2017-05-02 18:47 - 2017-05-02 18:47 - 04046470 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.6-Abbildungen.pdf
2017-05-02 18:43 - 2017-05-02 18:43 - 01960181 _____ C:\Users\user\Downloads\2017-05-02_Wiss_Schreiben_(4).pdf
2017-05-02 18:39 - 2017-05-02 18:39 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3)(1).pdf
2017-05-02 18:23 - 2017-05-02 18:23 - 05153453 _____ C:\Users\user\Downloads\2017-04-18_Wiss_Schreiben_(2).pdf
2017-05-02 18:20 - 2017-05-02 18:20 - 00013036 _____ C:\Users\user\Downloads\Semesterplan_Wiss_Schreiben_Gottwald(1).pdf
2017-05-02 18:06 - 2017-05-02 18:06 - 01612828 _____ C:\Users\user\Downloads\2017-04-11_Wiss_Schreiben_(1)(1).pdf
2017-05-02 14:26 - 2017-05-02 14:26 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(1).pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style.pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen.pdf
2017-05-02 12:59 - 2017-05-02 13:00 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3).pdf
2017-05-02 12:59 - 2017-05-02 12:59 - 01722272 _____ C:\Users\user\Downloads\Writing_without_bullshit_ch-1.pdf
2017-05-02 11:52 - 2017-05-02 11:53 - 04800083 _____ C:\Users\user\Downloads\folien14_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b.pdf
2017-05-02 11:48 - 2017-05-02 11:48 - 03917253 _____ C:\Users\user\Downloads\folien13_lernengedächtnis_ws201617_gedächtnissysteme_episodisch.pdf
2017-05-02 11:45 - 2017-05-02 11:45 - 02417602 _____ C:\Users\user\Downloads\folien12_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b_small.pdf
2017-05-02 11:43 - 2017-05-02 11:43 - 02122202 _____ C:\Users\user\Downloads\folien11_lernengedächtnis_ws201617_gedächtnissysteme_b.pdf
2017-05-02 11:28 - 2017-05-02 11:28 - 02349950 _____ C:\Users\user\Downloads\folien08_lernengedächtnis_ws201617_beobachtung.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme(1).pdf
2017-05-01 23:31 - 2017-05-01 23:31 - 00382638 _____ C:\Users\user\Downloads\dieo.pdf
2017-05-01 20:53 - 2017-05-01 20:53 - 00371721 _____ C:\Users\user\Downloads\Sem2_2017_stationäres_teilstationäres_setting.pptx (Schreibgeschützt).pdf
2017-05-01 20:51 - 2017-05-01 20:51 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017(1).pdf
2017-05-01 20:48 - 2017-05-01 20:48 - 00212904 _____ C:\Users\user\Downloads\pflichthofer_rahmen.pdf
2017-05-01 20:47 - 2017-05-01 20:47 - 00064145 _____ C:\Users\user\Downloads\SoSe2017_Seminarübersicht_LS_Settings-2.pdf
2017-05-01 20:28 - 2017-05-01 20:28 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG(1).pdf
2017-04-30 15:04 - 2017-04-30 15:04 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis.exe
2017-04-30 15:03 - 2017-04-30 15:03 - 01496584 _____ C:\Users\user\Downloads\HijackThis - CHIP-Installer.exe
2017-04-29 21:22 - 2017-04-29 21:22 - 00057829 _____ C:\Users\user\Downloads\Icke Rockabilly.jpeg
2017-04-29 21:21 - 2017-04-29 21:21 - 00061756 _____ C:\Users\user\Downloads\Icke mütze.jpeg
2017-04-28 14:52 - 2017-04-28 14:52 - 00153137 _____ C:\Users\user\Downloads\Hogh_Zweite_Natur._Kritische_und_affirmative_Lesarten_bei_John_McDowell_und_Theodor_W._Adorno.pdf
2017-04-28 14:46 - 2017-04-28 14:47 - 00098824 _____ C:\Users\user\Downloads\phase_zwei_org_hefte_artikel_die_verdinglichung_der_natur_25.pdf
2017-04-28 14:31 - 2017-04-28 14:32 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur(2).pdf
2017-04-28 14:31 - 2017-04-28 14:31 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur.pdf
2017-04-28 14:31 - 2017-04-28 14:31 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur(1).pdf
2017-04-27 14:08 - 2017-04-27 14:08 - 00910910 _____ C:\Users\user\Downloads\StatTut2_1.pdf
2017-04-27 13:39 - 2017-04-27 13:39 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(2).pdf
2017-04-27 13:36 - 2017-05-06 23:53 - 00000000 ____D C:\Users\user\Desktop\Entwicklungspsychologie II
2017-04-27 12:23 - 2017-04-28 14:53 - 01104861 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 04263520 _____ C:\Users\user\Downloads\Seiffge-Krenke_Jugend_2014_ S.380-403.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 01227687 _____ C:\Users\user\Downloads\Seiffge-Krenke_2012_S.10-40_Lebensphasen in Bewegung_Identität.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 00051206 _____ C:\Users\user\Downloads\Vorlesungsplan_Psych.II.SoSe17.pdf
2017-04-27 08:30 - 2017-04-27 08:30 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017.pdf
2017-04-27 08:30 - 2017-04-27 08:30 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG.pdf
2017-04-26 23:49 - 2017-04-26 23:49 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory(2).pdf
2017-04-26 23:49 - 2017-04-26 23:49 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory(1).pdf
2017-04-26 23:46 - 2017-04-26 23:46 - 00504359 _____ C:\Users\user\Downloads\What is psychoanalysis_.pdf
2017-04-26 23:42 - 2017-04-26 23:42 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory.pdf
2017-04-26 23:42 - 2017-04-26 23:42 - 00045803 _____ C:\Users\user\Downloads\vl_lernen_gedaechtnis_semesterplan(2).pdf
2017-04-26 23:38 - 2017-04-26 23:38 - 03241045 _____ C:\Users\user\Downloads\Bischof-Koehler_2011 S.414-445 Moralentwicklung(1).pdf
2017-04-26 23:11 - 2017-04-26 23:11 - 02308074 _____ C:\Users\user\Downloads\Mietzel_2002-S.293-317_Grundschulalter(1).pdf
2017-04-26 23:08 - 2017-04-26 23:08 - 10993815 _____ C:\Users\user\Downloads\16.Moralentwicklung(1).pdf
2017-04-26 23:06 - 2017-04-26 23:06 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral(2).pdf
2017-04-26 23:02 - 2017-04-26 23:02 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung(2).pdf
2017-04-26 23:02 - 2017-04-26 23:02 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild(2).pdf
2017-04-26 23:01 - 2017-04-26 23:01 - 01461706 _____ C:\Users\user\Downloads\15. Mentalisierung(1).pdf
2017-04-26 23:01 - 2017-04-26 23:01 - 00914576 _____ C:\Users\user\Downloads\Sodian_ 2003 _Theory of Mind(1).pdf
2017-04-26 22:58 - 2017-04-26 22:58 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung(1).pdf
2017-04-26 22:57 - 2017-04-26 22:57 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild(1).pdf
2017-04-26 22:53 - 2017-04-26 22:53 - 00447278 _____ C:\Users\user\Downloads\h97-1-psych.kv1.2jennifere.pdf
2017-04-26 22:47 - 2017-04-26 22:47 - 01373395 _____ C:\Users\user\Downloads\Diplomarbeit_M_Holzapfel.pdf
2017-04-26 22:40 - 2017-04-30 02:23 - 00013186 ____H C:\Users\user\Desktop\~WRL0005.tmp
2017-04-26 22:40 - 2017-04-26 22:40 - 00000000 ____H C:\Users\user\Desktop\~WRL3072.tmp
2017-04-26 21:48 - 2017-04-26 21:49 - 00000000 ____D C:\Users\user\Downloads\Cassandre
2017-04-26 11:15 - 2017-04-26 11:15 - 00522298 _____ C:\Users\user\Downloads\Der Kommende Aufstand.pdf
2017-04-25 16:32 - 2017-04-25 16:32 - 03560856 _____ C:\Users\user\Downloads\03. Hegel Werke 10 - Die Phänomenologie des Geistes. Das Bewusstsein.pdf
2017-04-25 16:32 - 2017-04-25 16:32 - 01683137 _____ C:\Users\user\Downloads\01. Platon - Sonnen-, Linien- und Höhlengleichnis.pdf
2017-04-25 14:32 - 2017-04-25 14:32 - 01094393 _____ C:\Users\user\Downloads\Denken2_2017(2).pdf
2017-04-25 14:31 - 2017-04-25 14:31 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017.pdf
2017-04-25 14:29 - 2017-04-25 16:19 - 01702894 _____ C:\Users\user\Downloads\10a. Popper - Die Logik der Sozialwissenschaften.pdf
2017-04-24 22:41 - 2017-04-24 22:41 - 02732169 _____ C:\Users\user\Downloads\Max Horkheimer (1937) - Traditionelle und kritische Theorie.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 10993815 _____ C:\Users\user\Downloads\16.Moralentwicklung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 03241045 _____ C:\Users\user\Downloads\Bischof-Koehler_2011 S.414-445 Moralentwicklung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 02308074 _____ C:\Users\user\Downloads\Mietzel_2002-S.293-317_Grundschulalter.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral(1).pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01461706 _____ C:\Users\user\Downloads\15. Mentalisierung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 01344522 _____ C:\Users\user\Downloads\13.2Spracherwerb_ Dialog_OhneBild.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00914576 _____ C:\Users\user\Downloads\Sodian_ 2003 _Theory of Mind.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00876096 _____ C:\Users\user\Downloads\14.Affektspiegelung.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00530732 _____ C:\Users\user\Downloads\Stern_1995._klinischeAspkInteraktion.pdf
2017-04-24 20:34 - 2017-04-24 20:34 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 32909874 _____ C:\Users\user\Downloads\Rauh_Vorgeburtliche Entwicklung und frühe Kindheit_2008.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 04454224 _____ C:\Users\user\Downloads\Hedervari_2011_S.28-56_Entwicklungsprozesse.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 02372279 _____ C:\Users\user\Downloads\8.a.Bindung.GrundlagenIPU_pdf Kopie.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 02093022 _____ C:\Users\user\Downloads\ZIMMERMANN_SPANGLER_Bindung.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01687819 _____ C:\Users\user\Downloads\11.Neugeborenenzeit.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01525150 _____ C:\Users\user\Downloads\Hedervari_2011_S.57-77_Bindungstheorie.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01470620 _____ C:\Users\user\Downloads\Dornes_1993_79-105_Selbstentwickl.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 01460017 _____ C:\Users\user\Downloads\13.Selbstentw.Stern .pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 00854472 _____ C:\Users\user\Downloads\10.Pränatale Entwicklung und Frühgeburt_neu.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 00739536 _____ C:\Users\user\Downloads\09.Experimentelle Methoden der Säuglingsforschung.pdf
2017-04-24 20:33 - 2017-04-24 20:33 - 00597158 _____ C:\Users\user\Downloads\12.KlinischeAspInteraktion Kopie 2.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 23239256 _____ C:\Users\user\Downloads\3Theorien menschlEntw_2.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 03177534 _____ C:\Users\user\Downloads\Berk_2011_S.31-46_Methode.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01855165 _____ C:\Users\user\Downloads\Mietzel_2002_Piaget_2_S_181-195.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01721802 _____ C:\Users\user\Downloads\3Theorien menschlEnt_1 PDF.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01587523 _____ C:\Users\user\Downloads\Mietzel_2002_Piaget_3_S_251-259.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01097136 _____ C:\Users\user\Downloads\Mietzel_2002_Piaget_1_S.141-148.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 01020743 _____ C:\Users\user\Downloads\Kienbaum_2010_S_147-162_Piaget.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 00990015 _____ C:\Users\user\Downloads\7a.Piaget _pdf.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 00868735 _____ C:\Users\user\Downloads\Dornes_1993_34-49_kompetenter Säugling.pdf
2017-04-24 20:32 - 2017-04-24 20:32 - 00701726 _____ C:\Users\user\Downloads\7b.Objektpermanenz.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 23017029 _____ C:\Users\user\Downloads\1 Einführung_Grundlagen(2).pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 14519025 _____ C:\Users\user\Downloads\Mietzel_2002_S_1-43_Grundlage.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 14519025 _____ C:\Users\user\Downloads\Mietzel_2002_S_1-43_Grundlage(1).pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 04307521 _____ C:\Users\user\Downloads\Berk_ 2011_S.4-31.Grundlagen.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 02710003 _____ C:\Users\user\Downloads\Kienbaum_2010_S_12-23_Grundlage.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 02397074 _____ C:\Users\user\Downloads\2.Kindbilder_neu.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 01396666 _____ C:\Users\user\Downloads\Kienbaum_2010_S_33-46_Methode.pdf
2017-04-24 20:31 - 2017-04-24 20:31 - 00776094 _____ C:\Users\user\Downloads\Hedervari_2011_S14_28 .Kindbilder_Resilienz.pdf
2017-04-24 20:30 - 2017-04-24 20:30 - 23017029 _____ C:\Users\user\Downloads\1 Einführung_Grundlagen(1).pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 03685058 _____ C:\Users\user\Downloads\Grossmann-Grossmann-2004-ab S.101-113.pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 02093022 _____ C:\Users\user\Downloads\ZIMMERMANN_SPANGLER_Bindung_2008.pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 01093913 _____ C:\Users\user\Downloads\Hedervari_2011_Bindung_Erwachsene_S_71-75.pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 01093913 _____ C:\Users\user\Downloads\Hedervari_2011_Bindung_Erwachsene_S_71-75(1).pdf
2017-04-24 13:37 - 2017-04-24 13:37 - 00942909 _____ C:\Users\user\Downloads\Hedervari_Bindungsqualität_1995 S. 75-83.pdf
2017-04-24 13:36 - 2017-04-24 13:37 - 18809376 _____ C:\Users\user\Downloads\Grossmann_et_al._1997_Die_Bindungstheorie.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 02030640 _____ C:\Users\user\Downloads\Berk Bindung.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 01978287 _____ C:\Users\user\Downloads\7.Buchheim_BindungundPsychopathologieim Erwachsenenalter Kopie(1).pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 01101220 _____ C:\Users\user\Downloads\Bowlby 1988_1995_-Elternbindung und Persoenlichkeitsentwicklung-S.113-127.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 00920157 _____ C:\Users\user\Downloads\Dornes_2000_S.58-73 _Bindung.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 00800428 _____ C:\Users\user\Downloads\George_Kaplan_Main_2012_AAI_Fragen.S.419-439.pdf
2017-04-24 13:36 - 2017-04-24 13:36 - 00354143 _____ C:\Users\user\Downloads\Ainsworth_ 1977_Feinfühligkeit_lang(1).pdf
2017-04-24 13:33 - 2017-04-24 13:33 - 01561458 _____ C:\Users\user\Downloads\5.B.Bindung und Entwicklung von Geburt bis ins Erwachsenenalter.pdf
2017-04-24 13:30 - 2017-04-24 13:30 - 00968640 _____ C:\Users\user\Downloads\4.B.Attachment & Psychoanalysis in Childhood;Gruppe.pdf
2017-04-24 13:25 - 2017-04-24 13:25 - 00000000 ____D C:\Users\user\AppData\Local\PDF24
2017-04-24 13:18 - 2017-04-24 13:18 - 20749528 _____ (Geek Software GmbH ) C:\Users\user\Downloads\pdf24-creator-8.1.4.exe
2017-04-24 13:11 - 2017-04-24 13:11 - 01476044 _____ C:\Users\user\Downloads\4.BindungErwachsEinf_1.pdf .pdf
2017-04-24 13:10 - 2017-04-24 13:10 - 00000000 ____D C:\Users\user\Downloads\Metadata
2017-04-24 13:10 - 2017-04-24 13:10 - 00000000 ____D C:\Users\user\Downloads\Index
2017-04-24 13:10 - 2017-04-24 13:10 - 00000000 ____D C:\Users\user\Downloads\Data
2017-04-24 13:09 - 2017-04-24 13:09 - 00000000 ____D C:\Users\user\AppData\Roaming\Notepad++
2017-04-24 13:09 - 2017-04-24 13:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-04-24 13:09 - 2017-04-24 13:09 - 00000000 ____D C:\Program Files\Notepad++
2017-04-24 13:08 - 2017-04-24 13:08 - 02851328 _____ C:\Users\user\Downloads\npp.7.3.installer.x64.exe
2017-04-24 13:05 - 2017-04-24 13:05 - 00000000 ____D C:\Users\user\Downloads\SAT_GruppeB2
2017-04-24 13:04 - 2017-04-24 13:04 - 05744174 _____ C:\Users\user\Downloads\SAT_GruppeB2.key
2017-04-24 13:01 - 2017-04-24 13:01 - 00832411 _____ C:\Users\user\Downloads\ASCT_erweitert_B.1.pdf
2017-04-24 13:00 - 2017-04-24 13:00 - 00539794 _____ C:\Users\user\Downloads\2.BindungArbeitsmodIPU.pdf
2017-04-24 12:53 - 2017-04-24 12:53 - 02365124 _____ C:\Users\user\Downloads\1.Bindung.GrundlagenIPU.pdf
2017-04-24 12:53 - 2017-04-24 12:53 - 01017571 _____ C:\Users\user\Downloads\1.Bretherton_Kißgen_2009_S.107-120 Kopie(1).pdf
2017-04-24 12:49 - 2017-04-24 12:49 - 00045803 _____ C:\Users\user\Downloads\vl_lernen_gedaechtnis_semesterplan(1).pdf
2017-04-24 12:44 - 2017-04-24 12:44 - 22790583 _____ C:\Users\user\Downloads\Wahrnehmungseigenschaften + Allgemeine Sinnesphysiologie_2017.pdf
2017-04-24 12:40 - 2017-04-24 12:40 - 00260927 _____ C:\Users\user\Downloads\Überblick_Wahrnehmung+Handlung_2017(1).pdf
2017-04-24 12:13 - 2017-04-24 12:13 - 01094393 _____ C:\Users\user\Downloads\Denken2_2017(1).pdf
2017-04-24 12:04 - 2017-04-24 12:04 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(2).pdf
2017-04-24 10:39 - 2017-04-24 10:39 - 00177388 _____ C:\Users\user\Downloads\wochenkalender-2017-querformat-zeitplaner.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-24 16:22 - 2017-04-10 20:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2017-05-24 16:00 - 2017-01-24 00:55 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-05-24 15:24 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-24 15:24 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-24 15:21 - 2010-11-21 08:50 - 00703018 _____ C:\Windows\system32\perfh007.dat
2017-05-24 15:21 - 2010-11-21 08:50 - 00150570 _____ C:\Windows\system32\perfc007.dat
2017-05-24 15:21 - 2009-07-14 07:13 - 01628056 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-24 15:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-24 15:15 - 2017-01-24 00:55 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-05-24 15:15 - 2017-01-24 00:44 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2017-05-24 15:15 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-23 22:45 - 2009-07-14 06:45 - 00424888 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-23 22:28 - 2016-03-03 10:27 - 01602336 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-05-23 22:28 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-23 22:22 - 2017-01-27 01:10 - 00000000 ____D C:\Users\user\AppData\LocalLow\Adobe
2017-05-23 22:21 - 2017-04-10 20:44 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-23 22:21 - 2017-02-20 22:08 - 00000000 ____D C:\Windows\system32\appmgmt
2017-05-23 22:20 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-23 22:20 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-23 22:18 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-05-23 21:40 - 2017-04-10 21:27 - 00000000 ____D C:\Program Files (x86)\Skype
2017-05-23 21:40 - 2017-04-10 20:45 - 00000000 ____D C:\ProgramData\Skype
2017-05-23 14:21 - 2017-02-22 15:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-23 14:21 - 2017-01-24 00:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-23 11:41 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2017-05-23 11:19 - 2017-01-27 00:42 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2017-05-23 10:51 - 2017-01-24 00:44 - 00000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-23 10:51 - 2017-01-24 00:44 - 00000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-05-23 02:19 - 2017-01-23 19:54 - 00000000 ____D C:\Windows\system32\MRT
2017-05-23 02:18 - 2017-01-23 19:54 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-19 10:37 - 2017-01-24 00:55 - 00000000 ____D C:\Users\user\AppData\Local\Dropbox
2017-05-17 22:37 - 2017-01-29 16:25 - 00000000 ____D C:\Users\user\Desktop\Kripu
2017-05-17 18:20 - 2016-03-03 09:39 - 00000000 ____D C:\Users\user\AppData\Local\VirtualStore
2017-05-17 17:03 - 2017-04-12 16:07 - 00002220 _____ C:\Users\user\Documents\.Rhistory
2017-05-17 17:03 - 2017-04-12 16:07 - 00000000 ____D C:\Users\user\AppData\Roaming\RStudio
2017-05-17 17:03 - 2017-04-12 15:53 - 00045056 _____ C:\Users\user\AppData\Local\WebpageIcons.db
2017-05-17 17:03 - 2017-04-12 15:53 - 00000000 ____D C:\Users\user\AppData\Local\RStudio-Desktop
2017-05-17 03:42 - 2017-03-25 01:34 - 00000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics
2017-05-17 01:59 - 2017-01-24 00:55 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-16 23:46 - 2016-03-03 10:34 - 00000000 ____D C:\Program Files\Lenovo
2017-05-16 23:40 - 2017-03-13 12:52 - 00000000 ____D C:\Users\user\Desktop\Lernen und Gedächtnis B
2017-05-16 23:26 - 2016-03-03 10:28 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-05-16 23:25 - 2016-03-03 10:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-16 23:25 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2017-05-16 23:23 - 2016-03-03 10:28 - 00000000 ____D C:\ProgramData\Lenovo
2017-05-16 23:13 - 2016-03-03 10:30 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-05-16 23:13 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\TVT
2017-05-16 23:01 - 2016-03-03 10:36 - 00000000 ____D C:\Users\user\AppData\Local\Lenovo
2017-05-16 23:01 - 2016-03-03 10:33 - 00000000 ____D C:\Program Files (x86)\Intel
2017-05-16 23:01 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\Downloaded Installations
2017-05-16 23:00 - 2010-11-21 08:49 - 00000000 ____D C:\Windows\system32\0407
2017-05-16 22:45 - 2017-01-27 00:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 22:44 - 2017-01-26 22:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-05-15 20:59 - 2017-03-13 16:46 - 00000000 ____D C:\Users\user\Desktop\Klinische Psychologie
2017-05-14 21:10 - 2016-03-03 10:30 - 00112136 _____ C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-13 22:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2017-05-13 20:20 - 2017-01-30 13:08 - 00000000 ____D C:\Users\user\Desktop\Bücher
2017-05-02 23:02 - 2017-01-24 01:24 - 00000000 ___RD C:\Users\user\Dropbox
2017-04-30 16:24 - 2017-03-30 12:21 - 00000000 ____D C:\Users\user\Desktop\Psychoanalyse
2017-04-27 01:19 - 2016-03-03 09:39 - 00001623 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-04-24 11:41 - 2017-04-23 17:19 - 21989119 _____ C:\Users\user\Downloads\T.-Kunstreich-Willkommensmob-und-Lynchkultur.pdf
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-04-12 15:53 - 2017-05-17 17:03 - 0045056 _____ () C:\Users\user\AppData\Local\WebpageIcons.db
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-24 16:14
==================== Ende von FRST.txt ============================
[/CODE] |
|
24.05.2017, 15:44
| #9 |
| | Problem mit launchpage.orgCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-05-2017
durchgeführt von user (24-05-2017 16:39:12)
Gestartet von C:\Users\user\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-03-03 07:39:15)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-254914080-1563877497-1754063145-500 - Administrator - Disabled)
Gast (S-1-5-21-254914080-1563877497-1754063145-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-254914080-1563877497-1754063145-1002 - Limited - Enabled)
user (S-1-5-21-254914080-1563877497-1754063145-1000 - Administrator - Enabled) => C:\Users\user
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat 8 Professional - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 8 Professional - English, Français, Deutsch) (Version: 8.0.0 - Adobe Systems)
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Conexant 20672 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.23.5 - Conexant)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.4 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Energie-Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
f.lux (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Flux) (Version: - )
HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
HWiNFO64 Version 5.44 (HKLM\...\HWiNFO64_is1) (Version: 5.44 - Martin Malík - REALiX)
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (HKLM-x32\...\{B2CA6F37-1602-4823-81B5-0384B6888AA6}) (Version: 1.1.0.1147 - RICOH)
Integrated Camera TWAIN (HKLM-x32\...\{9CA0DEE4-E84B-466F-9B96-FC255F3A929F}) (Version: 1.0.11.1223 - Chicony Electronics Co.,Ltd.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Identity Protection Technology 1.2.32.0 (HKLM-x32\...\{2D793E41-F598-1014-9984-F3B169A93F79}) (Version: 1.2.32.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.80.1211 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (Version: 1.67.12.24 - Lenovo) Hidden
Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - )
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0053 - Lenovo)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7967.2161 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM-x32\...\{EA9640BE-414E-4195-B53B-7905BF1A5A09}) (Version: 6.5.1.5 - Ericsson AB)
Mozilla Firefox 53.0.3 (x64 de) (HKLM\...\Mozilla Firefox 53.0.3 (x64 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
R for Windows 3.3.3 (HKLM\...\R for Windows 3.3.3_is1) (Version: 3.3.3 - R Core Team)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
RICOH_Media_Driver_v2.14.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.14.18.01 - RICOH)
RStudio (HKLM-x32\...\RStudio) (Version: 1.0.136 - RStudio)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4500 - Broadcom Corporation)
ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.42 - )
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo)
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version: - (c) 2006-2011, Tom Thielicke IT Solutions)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-254914080-1563877497-1754063145-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0C7D9716-89A8-4D67-9E8A-18E2DC9F2405} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {0FCB81DA-1EDE-46B9-8E45-603E916649DC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-16] (Microsoft Corporation)
Task: {2061D355-ADB3-4C10-8CFF-7392DE14B781} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {21075B5D-47A9-42C3-9C09-F7A12B5E3A94} - System32\Tasks\{02509E97-4B3B-4CAA-A395-DCA643927681} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional\Setup.exe" -d "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional"
Task: {22F4607C-E139-45EF-9DA8-68F09964F091} - System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C} => pcalua.exe -a C:\Users\user\Downloads\hijackthis(1).exe -d C:\Users\user\Downloads
Task: {419C784D-7B85-4A76-B4BD-BD13A8911F0E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-05-16] (Microsoft Corporation)
Task: {4963F5E8-79C4-4D87-AB02-F761137738E8} - System32\Tasks\{3B4B5D56-F47D-4642-AEEC-E9ADCB95385E} => pcalua.exe -a C:\Users\user\Downloads\APRO23_Win_ESD1_WWEFG.exe -d C:\Users\user\Downloads
Task: {7C00507B-742B-48A7-89B3-E84244B7816B} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2016-04-14] (Lenovo Group Limited)
Task: {7FA5844D-8A50-4C0C-922B-69B8877BEECC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
Task: {89C28CEB-CCB1-481D-8836-DA56981EB603} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {8CA0E647-3345-4B46-B9CE-02029F0EDDE1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {B7A580AE-DAB7-42B1-85CF-70E7412AEC87} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {BA249E61-4942-46AC-B611-5A68375889D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-16] (Microsoft Corporation)
Task: {C7813E8D-74FD-4B19-A75B-DE09C4917BA3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {FBDC8C13-B2D0-4E5B-9085-81EDFDC39305} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\Download Codecs & Tools.lnk -> hxxp://www.codecs.com
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\Talk about Codecs.lnk -> hxxp://codecs.com/foru
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\X Codec Pack homepage.lnk -> hxxp://www.xpcodecpack.com
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-01-27 00:12 - 2017-01-27 00:12 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-03-03 10:34 - 2016-04-14 07:08 - 00119808 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2017-03-08 04:42 - 2017-03-08 04:42 - 00230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2017-05-16 23:02 - 2010-10-26 10:40 - 00049056 ____N () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2016-03-03 10:32 - 2016-03-02 00:52 - 00102904 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-05-16 23:13 - 2017-05-09 18:55 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2016-03-04 10:53 - 2011-05-26 18:17 - 00065576 ____R () C:\Program Files (x86)\Mobile Broadband drivers\WMCore\MBMDebug.dll
2017-04-26 15:19 - 2017-04-26 15:19 - 02005976 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-01-27 00:12 - 2017-01-27 00:12 - 00679624 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 00871744 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-01-24 00:55 - 2017-04-26 02:38 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-05-17 01:59 - 2017-04-26 02:39 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-01-24 00:55 - 2017-04-26 02:40 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-05-17 01:59 - 2017-04-26 02:40 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-05-15 19:41 - 2017-05-16 23:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-02-28 11:24 - 2017-05-16 23:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-05-17 01:59 - 2017-04-26 02:34 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-05-17 01:59 - 2017-05-16 23:00 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-01-24 00:55 - 2017-05-16 23:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-05-17 01:59 - 2017-04-26 02:43 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-05-17 01:59 - 2017-04-26 02:43 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-04-07 22:56 - 2017-05-16 23:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-02-02 22:40 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{464EFF20-6DA4-491E-A676-DC91AB3E5DC7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{23FA464B-BD41-4859-8A00-377F02FB2CEB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E4DEAB5E-3CBB-4BE3-BEEA-4CA53038ABE6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{9A1E926F-FBCD-4C5C-990A-32FEABFB922C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{06568ED1-A696-418A-BC68-DB576A534041}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{E9607340-1FCC-4C9B-8ED3-08F02EE28C30}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{64761C94-D618-4290-B0BD-E45A7A654529}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{4712F1FE-2D7C-46BB-933B-86880D1905BA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{E52F5D10-090E-45B2-BDB1-975EF78C4C49}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{8D698AFE-C969-4B26-9A9C-6BF13AC2D9CC}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{D01FF73C-36DB-4B1A-8B93-FE443D7FBCAD}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
23-05-2017 00:58:52 Windows Update
23-05-2017 02:18:27 Windows Update
23-05-2017 22:17:45 Windows Update
23-05-2017 22:21:40 Removed Java 8 Update 131 (64-bit)
23-05-2017 22:22:02 Removed Java 8 Update 131 (64-bit)
23-05-2017 22:22:46 Windows Update
23-05-2017 22:22:47 Removed Java 8 Update 131
23-05-2017 22:23:51 Removed Microsoft Silverlight
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: USB Device(VID_1f3a_PID_efe8)
Description: USB Device(VID_1f3a_PID_efe8)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: USB Devices
Service: usbUDisc
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/24/2017 03:21:27 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files\r\r-3.3.3\tcl\bin64\tk85.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files\r\r-3.3.3\tcl\bin64\tk85.dll" in Zeile 9.
Der Wert "x64" des "processorArchitecture"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (05/24/2017 03:19:42 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/24/2017 03:17:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/23/2017 10:47:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/23/2017 10:38:49 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/23/2017 10:38:49 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/23/2017 10:31:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/23/2017 09:38:59 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/23/2017 09:38:52 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/23/2017 09:38:52 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Systemfehler:
=============
Error: (05/24/2017 03:15:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "risdpcie" wurde aufgrund folgenden Fehlers nicht gestartet:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/23/2017 10:55:34 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/23/2017 10:45:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "risdpcie" wurde aufgrund folgenden Fehlers nicht gestartet:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/23/2017 10:39:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/23/2017 10:29:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "risdpcie" wurde aufgrund folgenden Fehlers nicht gestartet:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/23/2017 10:28:49 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/23/2017 02:22:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "risdpcie" wurde aufgrund folgenden Fehlers nicht gestartet:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/23/2017 01:10:18 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "USER-PC :20" konnte nicht auf der Schnittstelle mit IP-Adresse 10.228.2.20
registriert werden. Der Computer mit IP-Adresse 10.228.1.46 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (05/23/2017 01:10:18 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "USER-PC :0" konnte nicht auf der Schnittstelle mit IP-Adresse 10.228.2.20
registriert werden. Der Computer mit IP-Adresse 10.228.1.46 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (05/23/2017 01:10:18 PM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{E08C96DE-4F95-4B54-A2EF-BF05D5BFBB9F} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 8070.23 MB
Verfügbarer physikalischer RAM: 5431.54 MB
Summe virtueller Speicher: 16138.65 MB
Verfügbarer virtueller Speicher: 13403.14 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:45.17 GB) NTFS
Drive d: (18 08 2006 BURO) (CDROM) (Total:4.31 GB) (Free:0 GB) CDFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: C230CF92)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
 |
|
25.05.2017, 10:19
| #10 |
| /// TB-Ausbilder | Problem mit launchpage.org Servus, Schritt 1 Downloade Dir bitte AdwCleaner auf deinen Desktop.
Schritt 2 Downloade Dir bitte Malwarebytes Anti-Malware 3
Schritt 3
Bitte poste mit deiner nächsten Antwort
|
|
26.05.2017, 13:12
| #11 |
| | Problem mit launchpage.org AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v6.047 - Bericht erstellt am 26/05/2017 um 13:58:09
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-05-26.5 [Server]
# Betriebssystem : Windows 7 Professional Service Pack 1 (X64)
# Benutzername : user - USER-PC
# Gestartet von : C:\Users\user\Desktop\adwcleaner_6.047.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
[-] Datei gelöscht: C:\Windows\SysNative\LavasoftTcpService64.dll
[-] Datei gelöscht: C:\Windows\SysNative\LavasoftTcpServiceOff.ini
[-] Datei gelöscht: C:\Windows\SysWOW64\lavasofttcpservice.dll
[-] Datei gelöscht: C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
[-] Verknüpfung desinfiziert: C:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[-] Verknüpfung desinfiziert: C:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
[-] Verknüpfung desinfiziert: C:\users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[-] Verknüpfung desinfiziert: C:\users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
[-] Verknüpfung desinfiziert: C:\users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{0015CAC9-FC30-4CD0-BFAA-7412CC2C4DD9}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{26C7AFDB-3690-449E-B979-B0AF5CC56DD4}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{3A5A5381-DAAF-4C0D-B032-2C66B3EE4A8D}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{472EF1D2-4AAE-470D-AE85-6AF8177916FD}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{8F010D54-C023-457F-AF03-497EACB6D519}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{9A754403-27B1-4ED7-96D7-588F07888EBF}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{CB31FF8F-BF80-4D2B-ADBE-12C6F5347890}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{FCAA532B-E807-4027-940C-BA16B9D50105}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Lavasoft\Web Companion
[-] Schlüssel gelöscht: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Daten wiederhergestellt: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Daten wiederhergestellt: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Daten wiederhergestellt: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\staticimgfarm.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ttdetect.staticimgfarm.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\staticimgfarm.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ttdetect.staticimgfarm.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\LavasoftTcpService.exe
***** [ Browser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Image File Execution Options" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Firewall Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [7639 Bytes] - [26/05/2017 13:58:09]
C:\AdwCleaner\AdwCleaner[S0].txt - [7799 Bytes] - [17/05/2017 18:57:22]
C:\AdwCleaner\AdwCleaner[S1].txt - [7646 Bytes] - [26/05/2017 13:57:43]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7858 Bytes] ##########
[/CODE] Super, vielen Dank, mitlerweile gab es eine Neue Version vom Adw Cleaner, beim letzten Versuch konnte er die Datein nicht löschen und hat abgebrochen.. Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 26.05.17
Scan-Zeit: 14:05
Protokolldatei: Report MB Premium.txt
Administrator: Ja
-Softwaredaten-
Version: 3.1.2.1733
Komponentenversion: 1.0.122
Version des Aktualisierungspakets: 1.0.2026
Lizenz: Testversion
-Systemdaten-
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: user-PC\user
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Ergebnis: Abgeschlossen
Gescannte Objekte: 319629
Erkannte Bedrohungen: 0
(keine bösartigen Elemente erkannt)
In die Quarantäne verschobene Bedrohungen: 0
(keine bösartigen Elemente erkannt)
Abgelaufene Zeit: 1 Min., 16 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-05-2017
durchgeführt von user (26-05-2017 14:11:06)
Gestartet von C:\Users\user\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-03-03 07:39:15)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-254914080-1563877497-1754063145-500 - Administrator - Disabled)
Gast (S-1-5-21-254914080-1563877497-1754063145-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-254914080-1563877497-1754063145-1002 - Limited - Enabled)
user (S-1-5-21-254914080-1563877497-1754063145-1000 - Administrator - Enabled) => C:\Users\user
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat 8 Professional - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 8 Professional - English, Français, Deutsch) (Version: 8.0.0 - Adobe Systems)
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Conexant 20672 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.23.5 - Conexant)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.4 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Energie-Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
f.lux (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Flux) (Version: - )
HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
HWiNFO64 Version 5.44 (HKLM\...\HWiNFO64_is1) (Version: 5.44 - Martin Malík - REALiX)
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (HKLM-x32\...\{B2CA6F37-1602-4823-81B5-0384B6888AA6}) (Version: 1.1.0.1147 - RICOH)
Integrated Camera TWAIN (HKLM-x32\...\{9CA0DEE4-E84B-466F-9B96-FC255F3A929F}) (Version: 1.0.11.1223 - Chicony Electronics Co.,Ltd.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Identity Protection Technology 1.2.32.0 (HKLM-x32\...\{2D793E41-F598-1014-9984-F3B169A93F79}) (Version: 1.2.32.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.80.1211 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (Version: 1.67.12.24 - Lenovo) Hidden
Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - )
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0053 - Lenovo)
Malwarebytes Version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7967.2161 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM-x32\...\{EA9640BE-414E-4195-B53B-7905BF1A5A09}) (Version: 6.5.1.5 - Ericsson AB)
Mozilla Firefox 53.0.3 (x64 de) (HKLM\...\Mozilla Firefox 53.0.3 (x64 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7967.2161 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
R for Windows 3.3.3 (HKLM\...\R for Windows 3.3.3_is1) (Version: 3.3.3 - R Core Team)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
RICOH_Media_Driver_v2.14.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.14.18.01 - RICOH)
RStudio (HKLM-x32\...\RStudio) (Version: 1.0.136 - RStudio)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4500 - Broadcom Corporation)
ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.42 - )
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo)
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version: - (c) 2006-2011, Tom Thielicke IT Solutions)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-254914080-1563877497-1754063145-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0C7D9716-89A8-4D67-9E8A-18E2DC9F2405} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {0FCB81DA-1EDE-46B9-8E45-603E916649DC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-16] (Microsoft Corporation)
Task: {2061D355-ADB3-4C10-8CFF-7392DE14B781} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {21075B5D-47A9-42C3-9C09-F7A12B5E3A94} - System32\Tasks\{02509E97-4B3B-4CAA-A395-DCA643927681} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional\Setup.exe" -d "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional"
Task: {22F4607C-E139-45EF-9DA8-68F09964F091} - System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C} => pcalua.exe -a C:\Users\user\Downloads\hijackthis(1).exe -d C:\Users\user\Downloads
Task: {419C784D-7B85-4A76-B4BD-BD13A8911F0E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-05-16] (Microsoft Corporation)
Task: {4963F5E8-79C4-4D87-AB02-F761137738E8} - System32\Tasks\{3B4B5D56-F47D-4642-AEEC-E9ADCB95385E} => pcalua.exe -a C:\Users\user\Downloads\APRO23_Win_ESD1_WWEFG.exe -d C:\Users\user\Downloads
Task: {7C00507B-742B-48A7-89B3-E84244B7816B} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2016-04-14] (Lenovo Group Limited)
Task: {7FA5844D-8A50-4C0C-922B-69B8877BEECC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
Task: {89C28CEB-CCB1-481D-8836-DA56981EB603} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {8CA0E647-3345-4B46-B9CE-02029F0EDDE1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {B7A580AE-DAB7-42B1-85CF-70E7412AEC87} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {BA249E61-4942-46AC-B611-5A68375889D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-16] (Microsoft Corporation)
Task: {C7813E8D-74FD-4B19-A75B-DE09C4917BA3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-04] (Microsoft Corporation)
Task: {FBDC8C13-B2D0-4E5B-9085-81EDFDC39305} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\Download Codecs & Tools.lnk -> hxxp://www.codecs.com
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\Talk about Codecs.lnk -> hxxp://codecs.com/foru
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\X Codec Pack homepage.lnk -> hxxp://www.xpcodecpack.com
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-01-27 00:12 - 2017-01-27 00:12 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-03-03 10:34 - 2016-04-14 07:08 - 00119808 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2017-03-08 04:42 - 2017-03-08 04:42 - 00230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2017-05-16 23:02 - 2010-10-26 10:40 - 00049056 ____N () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2016-03-03 10:32 - 2016-03-02 00:52 - 00102904 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-05-16 23:13 - 2017-05-09 18:55 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2017-05-26 14:04 - 2017-05-09 16:38 - 02270672 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-03-04 10:53 - 2011-05-26 18:17 - 00065576 ____R () C:\Program Files (x86)\Mobile Broadband drivers\WMCore\MBMDebug.dll
2017-04-26 15:19 - 2017-04-26 15:19 - 02005976 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-01-27 00:12 - 2017-01-27 00:12 - 00679624 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 00871744 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-01-24 00:55 - 2017-04-26 02:38 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-05-17 01:59 - 2017-04-26 02:39 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-01-24 00:55 - 2017-04-26 02:40 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-05-17 01:59 - 2017-04-26 02:40 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-05-15 19:41 - 2017-05-16 23:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-02-28 11:24 - 2017-05-16 23:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-05-17 01:59 - 2017-04-26 02:34 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-05-17 01:59 - 2017-05-16 23:00 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-01-24 00:55 - 2017-05-16 23:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-05-17 01:59 - 2017-04-26 02:43 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-05-17 01:59 - 2017-04-26 02:43 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-04-07 22:56 - 2017-05-16 23:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-02-02 22:40 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{1AA28E10-C7D8-482F-900F-864248CD7E19}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{772D7558-1C7E-448F-B184-7938ED200FAF}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{65B668D3-C38A-4A87-8F02-A97F15C01B9B}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{3C5B016C-0C4A-415B-BFCC-89319F414AB3}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
==================== Wiederherstellungspunkte =========================
23-05-2017 00:58:52 Windows Update
23-05-2017 02:18:27 Windows Update
23-05-2017 22:17:45 Windows Update
23-05-2017 22:21:40 Removed Java 8 Update 131 (64-bit)
23-05-2017 22:22:02 Removed Java 8 Update 131 (64-bit)
23-05-2017 22:22:46 Windows Update
23-05-2017 22:22:47 Removed Java 8 Update 131
23-05-2017 22:23:51 Removed Microsoft Silverlight
26-05-2017 11:45:23 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: USB Device(VID_1f3a_PID_efe8)
Description: USB Device(VID_1f3a_PID_efe8)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: USB Devices
Service: usbUDisc
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/26/2017 02:01:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/26/2017 01:51:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/26/2017 11:45:24 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80004005).
Error: (05/26/2017 11:45:23 AM) (Source: VSS) (EventID: 12289) (User: )
Description: Volumeschattenkopie-Dienstfehler: Unerwarteter Fehler "DeviceIoControl(\\?\Volume{b14de046-e112-11e5-a8d1-806e6f6e6963} - 000000000000012C,0x0053c008,00000000002F7FB0,0,00000000002F8FC0,4096,[0])". hr = 0x80070079, Das Zeitlimit für die Semaphore wurde erreicht.
.
Vorgang:
EndPrepareSnapshots wird verarbeitet
Kontext:
Ausführungskontext: System Provider
Error: (05/26/2017 11:45:12 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Fehler = 0x81000101).
Error: (05/26/2017 08:22:05 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/25/2017 06:29:42 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80004005).
Error: (05/25/2017 05:48:47 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files\r\r-3.3.3\tcl\bin64\tk85.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files\r\r-3.3.3\tcl\bin64\tk85.dll" in Zeile 9.
Der Wert "x64" des "processorArchitecture"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (05/25/2017 05:45:47 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (05/25/2017 05:44:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (05/26/2017 01:59:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "risdpcie" wurde aufgrund folgenden Fehlers nicht gestartet:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/26/2017 01:58:25 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (05/26/2017 01:57:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/26/2017 01:57:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "System Update" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/26/2017 01:57:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/26/2017 01:57:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "FLEXnet Licensing Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/26/2017 01:57:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "BrYNSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/26/2017 01:57:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/26/2017 01:57:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Mobile Broadband Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/26/2017 01:57:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Conexant SmartAudio service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 31%
Installierter physikalischer RAM: 8070.23 MB
Verfügbarer physikalischer RAM: 5529.58 MB
Summe virtueller Speicher: 16138.65 MB
Verfügbarer virtueller Speicher: 13502.73 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:50.87 GB) NTFS
Drive d: (18 08 2006 BURO) (CDROM) (Total:4.31 GB) (Free:0 GB) CDFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: C230CF92)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
26.05.2017, 13:13
| #12 |
| | Problem mit launchpage.orgFRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-05-2017
durchgeführt von user (Administrator) auf USER-PC (26-05-2017 14:10:44)
Gestartet von C:\Users\user\Desktop
Geladene Profile: user (Verfügbare Profile: user)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Flux Software LLC) C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Farbar) C:\Users\user\Desktop\FRST64(1).exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916592 2014-07-28] (Synaptics Incorporated)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant systems, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [113656 2013-07-02] (Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [Dolby Home Theater v4] => "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [f.lux] => C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat - Schnellstart.lnk [2017-03-04]
ShortcutTarget: Adobe Acrobat - Schnellstart.lnk -> C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk [2017-03-04]
ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2017-05-16]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2017-01-27]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E08C96DE-4F95-4B54-A2EF-BF05D5BFBB9F}: [DhcpNameServer] 192.168.1.1
ManualProxies:
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-16] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2017-05-16] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-16] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2017-05-16] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-16] (Microsoft Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-16] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: rqo5cz6m.default-1495531728194
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194 [2017-05-26]
FF Homepage: Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194 -> about:home
FF Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3801280 2017-05-04] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (Lenovo.)
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2017-03-04] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R2 LPlatSvc; C:\Windows\system32\LPlatSvc.exe [711248 2017-04-01] (Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-05-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB)
S3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2017-02-11] (REALiX(tm))
S3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-05-26] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-05-26] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-05-26] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251832 2017-05-26] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-05-26] (Malwarebytes)
S3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation)
S3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation)
S3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation)
S3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated)
S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [17280 2017-01-29] (Scott)
S3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-26 14:08 - 2017-05-26 14:08 - 00001408 _____ C:\Users\user\Desktop\Report MBAM Premium.txt
2017-05-26 14:05 - 2017-05-26 14:05 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-26 14:05 - 2017-05-26 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-26 14:04 - 2017-05-26 14:04 - 63364552 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.122-1.0.1976.exe
2017-05-26 14:04 - 2017-05-26 14:04 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-26 14:04 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-05-26 13:54 - 2017-05-26 13:54 - 04110280 _____ C:\Users\user\Downloads\adwcleaner_6.047.exe
2017-05-26 13:54 - 2017-05-26 13:54 - 04110280 _____ C:\Users\user\Desktop\adwcleaner_6.047.exe
2017-05-26 00:38 - 2017-05-26 00:38 - 06360681 _____ C:\Users\user\Documents\Klinische Psychologie Lehrbuch.pdf
2017-05-25 17:47 - 2014-08-29 04:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-05-25 17:47 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-05-24 18:07 - 2017-05-25 00:45 - 00636244 _____ C:\Users\user\Desktop\Stenek_2007_AA_339 Hysterie Existenzanalyse.pdf
2017-05-24 18:06 - 2017-05-24 18:06 - 00375170 _____ C:\Users\user\Downloads\Stenek_2007_AA_339(2).pdf
2017-05-24 16:38 - 2017-05-26 14:10 - 00020516 _____ C:\Users\user\Desktop\FRST.txt
2017-05-24 16:38 - 2017-05-24 16:37 - 02429952 _____ (Farbar) C:\Users\user\Desktop\FRST64(1).exe
2017-05-24 16:37 - 2017-05-24 16:37 - 02429952 _____ (Farbar) C:\Users\user\Downloads\FRST64(1).exe
2017-05-24 15:18 - 2017-05-24 15:18 - 00200363 _____ C:\Users\user\Downloads\Untermietvertrag1.pdf
2017-05-23 22:27 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2017-05-23 22:27 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-05-23 22:27 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-05-23 22:27 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2017-05-23 22:27 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2017-05-23 22:27 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-05-23 22:27 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-05-23 22:27 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2017-05-23 22:27 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2017-05-23 22:27 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2017-05-23 22:27 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-05-23 22:27 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-05-23 22:27 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-05-23 22:27 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-05-23 22:27 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2017-05-23 22:27 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-05-23 22:27 - 2013-10-01 22:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-05-23 22:27 - 2013-10-01 22:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-05-23 22:24 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-05-23 22:24 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-05-23 22:24 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2017-05-23 22:24 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2017-05-23 22:24 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2017-05-23 22:22 - 2017-04-28 00:50 - 03550208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 03165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-05-23 22:22 - 2017-04-17 17:35 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-05-23 22:22 - 2017-04-17 17:23 - 02651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-05-23 22:22 - 2017-04-17 17:22 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-05-23 22:22 - 2017-04-17 17:21 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-05-23 22:22 - 2017-04-17 17:21 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-05-23 22:22 - 2017-04-17 17:12 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2017-05-23 22:22 - 2017-04-17 17:01 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2017-05-23 22:22 - 2017-04-12 15:05 - 04296704 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-05-23 22:22 - 2015-08-05 19:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-05-23 22:22 - 2015-08-05 19:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2017-05-23 22:21 - 2015-12-16 20:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2017-05-23 22:21 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2017-05-23 22:21 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2017-05-23 22:09 - 2017-05-23 22:06 - 00004074 _____ C:\Users\user\Desktop\108040512437164.ics
2017-05-23 22:05 - 2017-05-23 22:06 - 00004074 _____ C:\Users\user\Downloads\108040512437164.ics
2017-05-23 21:39 - 2017-05-23 21:39 - 01632216 _____ (Skype Technologies S.A.) C:\Users\user\Downloads\SkypeSetup(1).exe
2017-05-23 14:23 - 2017-05-23 15:46 - 01019818 _____ C:\Users\user\Downloads\Denken5_2017(2).pdf
2017-05-23 13:17 - 2017-05-23 13:17 - 01601210 _____ C:\Users\user\Downloads\2017-05-16_Wiss_Schreiben_(6).pdf
2017-05-23 12:30 - 2017-05-23 12:31 - 00390365 _____ C:\Users\user\Downloads\Gottwald (2016). Thesis_chapter-1.pdf
2017-05-23 11:41 - 2017-05-23 22:22 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2017-05-23 10:50 - 2017-05-23 10:50 - 46853008 _____ (Mozilla) C:\Users\user\Downloads\firefox_setup_53.0.exe
2017-05-23 10:41 - 2017-05-23 10:41 - 13166816 _____ (Microsoft Corporation) C:\Users\user\Downloads\Silverlight_x64.exe
2017-05-23 02:08 - 2017-05-23 02:08 - 27778871 _____ C:\Users\user\Downloads\X-Codec-Pack_2.7.4.exe
2017-05-23 02:08 - 2017-05-23 02:08 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4
2017-05-22 11:57 - 2017-05-22 11:57 - 01569141 _____ C:\Users\user\Downloads\5.Sozialer Wandel von Partnerschaft.pdf
2017-05-22 11:53 - 2017-05-22 11:53 - 01072609 _____ C:\Users\user\Downloads\4.Elternschaft in der Moderne.pdf
2017-05-22 11:48 - 2017-05-22 11:48 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(3).pdf
2017-05-22 11:40 - 2017-05-22 11:40 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(2).pdf
2017-05-22 11:25 - 2017-05-22 11:25 - 00179241 _____ C:\Users\user\Downloads\3.Liebe_PsychologiederPartnerwahl.pdf
2017-05-21 02:28 - 2017-05-21 02:29 - 00375170 _____ C:\Users\user\Downloads\Stenek_2007_AA_339(1).pdf
2017-05-19 15:44 - 2017-05-19 15:40 - 03239068 _____ C:\Users\user\Desktop\Michael_Heinrich_Die_Wissenschaft_vom_Wert_Die_Marxsche_Kritik_der_politischen_Ökonomie_zwischen_wissenschaftlicher_Revolution_und_klassischer_Tradition__.pdf
2017-05-19 15:40 - 2017-05-19 15:40 - 03239068 _____ C:\Users\user\Downloads\Michael_Heinrich_Die_Wissenschaft_vom_Wert_Die_Marxsche_Kritik_der_politischen_Ökonomie_zwischen_wissenschaftlicher_Revolution_und_klassischer_Tradition__.pdf
2017-05-19 02:02 - 2017-05-19 02:02 - 65659968 _____ (Oracle Corporation) C:\Users\user\Downloads\jre-8u131-windows-x64.exe
2017-05-19 01:12 - 2017-05-19 01:12 - 00115573 _____ C:\Users\user\Downloads\Artikel_Mentalisierung.pdf
2017-05-17 22:52 - 2017-05-17 23:46 - 00217562 _____ C:\TDSSKiller.3.1.0.15_17.05.2017_22.52.22_log.txt
2017-05-17 22:51 - 2017-05-17 22:50 - 04922400 _____ (AO Kaspersky Lab) C:\Users\user\Desktop\tdsskiller.exe
2017-05-17 22:50 - 2017-05-17 22:51 - 00216842 _____ C:\TDSSKiller.3.1.0.15_17.05.2017_22.50.21_log.txt
2017-05-17 22:50 - 2017-05-17 22:50 - 04922400 _____ (AO Kaspersky Lab) C:\Users\user\Downloads\tdsskiller.exe
2017-05-17 22:39 - 2017-05-26 14:10 - 00000000 ____D C:\FRST
2017-05-17 22:39 - 2017-05-17 22:40 - 00097052 _____ C:\Users\user\Downloads\FRST.txt
2017-05-17 22:39 - 2017-05-17 22:40 - 00036513 _____ C:\Users\user\Downloads\Addition.txt
2017-05-17 22:38 - 2017-05-17 22:38 - 02429952 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2017-05-17 22:35 - 2017-05-17 22:35 - 00265970 _____ C:\Users\user\Downloads\Against_narrativity_final_2008_version.pdf
2017-05-17 22:31 - 2017-05-17 22:31 - 00141475 _____ C:\Users\user\Downloads\Stellenausschreibung Projektassistenz elhana Lernpaten e.V..pdf
2017-05-17 21:46 - 2017-05-17 22:09 - 00000000 ____D C:\Users\user\Desktop\Statistik II
2017-05-17 20:57 - 2017-05-17 20:58 - 00000000 ____D C:\Users\user\Desktop\Lernen
2017-05-17 20:45 - 2017-05-17 20:45 - 00000000 ____D C:\Users\user\Documents\Benutzerdefinierte Office-Vorlagen
2017-05-17 19:28 - 2017-05-17 19:28 - 00122917 _____ C:\Users\user\Downloads\2016_10_fb3_flyer.pdf
2017-05-17 18:54 - 2017-05-26 13:58 - 00000000 ____D C:\AdwCleaner
2017-05-17 18:49 - 2017-05-17 18:49 - 00015390 _____ C:\Users\user\Downloads\hijackthis 17.05.17
2017-05-17 18:22 - 2017-05-17 18:22 - 00003126 _____ C:\Windows\System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C}
2017-05-17 18:19 - 2017-05-17 18:20 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(2).exe
2017-05-17 18:19 - 2017-05-17 18:19 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(1).exe
2017-05-17 17:03 - 2017-05-17 17:03 - 00005719 _____ C:\Users\user\Documents\.RData
2017-05-17 14:29 - 2017-05-17 14:29 - 00000000 ____D C:\Users\user\Documents\rkurs
2017-05-17 14:12 - 2017-05-17 14:12 - 00000000 ____D C:\Users\user\Documents\R
2017-05-17 10:47 - 2017-05-17 10:47 - 00000085 _____ C:\Windows\wininit.ini
2017-05-17 10:39 - 2017-05-17 10:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-17 10:38 - 2017-05-17 10:39 - 63035592 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.1.2.1733.exe
2017-05-17 10:37 - 2017-05-23 22:36 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2017-05-17 10:21 - 2017-05-17 10:24 - 00000000 ____D C:\Users\user\AppData\Local\NPE
2017-05-17 10:21 - 2017-05-17 10:21 - 03435768 _____ (Symantec Corporation) C:\Users\user\Downloads\NPE.exe
2017-05-17 10:21 - 2017-05-17 10:21 - 00000000 ____D C:\ProgramData\Norton
2017-05-17 03:06 - 2017-05-17 10:48 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-05-17 03:06 - 2017-05-17 10:47 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-05-17 03:06 - 2017-05-17 03:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\user\Downloads\spybot-2.4.exe
2017-05-17 03:06 - 2017-05-17 03:06 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2017-05-17 01:59 - 2017-05-17 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-16 23:49 - 2017-05-16 23:49 - 00000000 ____D C:\Users\user\Documents\OneNote-Notizbücher
2017-05-16 23:39 - 2017-05-16 23:40 - 00000000 ____D C:\Users\user\Desktop\Wahrnehmung
2017-05-16 23:38 - 2017-05-16 23:39 - 00000000 ____D C:\Users\user\Desktop\Referat Borderline
2017-05-16 23:34 - 2017-05-16 23:34 - 54199488 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\Documents\Bluetooth-Exchange-Ordner
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Local\Broadcom
2017-05-16 23:06 - 2012-12-04 04:38 - 00598808 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2017-05-16 23:04 - 2012-05-02 07:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2017-05-16 23:04 - 2011-09-18 01:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2017-05-16 23:03 - 2017-05-16 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-05-16 23:02 - 2017-05-16 23:25 - 00000000 ____D C:\Program Files\ThinkPad
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____D C:\Program Files\CONEXANT
2017-05-16 23:02 - 2017-04-01 02:44 - 00711248 _____ (Lenovo.) C:\Windows\system32\LPlatSvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00187984 _____ (Lenovo.) C:\Windows\system32\ibmpmsvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00082816 _____ (Lenovo.) C:\Windows\system32\Drivers\ibmpmdrv.sys
2017-05-16 23:02 - 2017-04-01 02:44 - 00058448 _____ (Lenovo.) C:\Windows\system32\tpinspm.dll
2017-05-16 23:02 - 2012-08-06 14:30 - 01780384 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64AP73.dll
2017-05-16 23:02 - 2012-06-05 18:40 - 01580704 _____ (Conexant Systems Inc.) C:\Windows\system32\Drivers\CHDRT64.sys
2017-05-16 23:02 - 2012-05-31 15:03 - 00568992 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI64A90.dll
2017-05-16 23:02 - 2012-05-01 11:18 - 00002013 _____ C:\Windows\system32\VoipUpdate.ini
2017-05-16 23:02 - 2011-05-11 14:25 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll
2017-05-16 23:02 - 2011-02-17 15:16 - 02075712 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-05-16 23:02 - 2011-01-18 08:35 - 00030893 _____ C:\Windows\system32\Drivers\Mixer.ini
2017-05-16 23:02 - 2011-01-04 19:22 - 00001976 ____N C:\Windows\system32\Drivers\SamSfPa.dat
2017-05-16 23:02 - 2010-12-17 04:18 - 00198784 ____N (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe
2017-05-16 23:02 - 2010-11-23 13:30 - 00050304 _____ (Conexant Systems Inc.) C:\Windows\system32\CxPageMaster64.dll
2017-05-16 23:02 - 2010-11-18 13:47 - 00446592 ____N (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
2017-05-16 23:02 - 2010-10-28 10:27 - 00001816 _____ C:\Windows\system32\Drivers\Altmixer.ini
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.QtWebEngineProcess
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.LSC
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\SWTOOLS
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Program Files (x86)\Integrated Camera Driver
2017-05-16 23:01 - 2017-04-01 02:44 - 00088144 _____ (Lenovo.) C:\Windows\system32\ibmpmctl.exe
2017-05-16 23:01 - 2013-11-15 15:40 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\2C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C04
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0816
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0804
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0424
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041F
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0419
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0416
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0415
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0414
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0413
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0412
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0411
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0410
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040C
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0409
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0408
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0406
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0405
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0404
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0401
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2017-05-16 23:00 - 2011-03-07 17:07 - 00126976 _____ (Ricoh co.,Ltd.) C:\Windows\SysWOW64\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:06 - 00142848 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:05 - 00123392 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.dll
2017-05-16 23:00 - 2011-03-04 18:18 - 00166016 _____ (Ricoh co.,Ltd.) C:\Windows\system32\Drivers\5U877.sys
2017-05-16 22:53 - 2017-05-16 22:53 - 02724352 _____ (Lenovo ) C:\Users\user\Downloads\LSBSetup.exe
2017-05-16 20:38 - 2017-05-16 20:38 - 00268108 _____ C:\Users\user\Downloads\schwermut-als-objekt.pdf
2017-05-16 20:29 - 2017-05-16 20:29 - 03900001 _____ C:\Users\user\Downloads\ASISM04_fertig_web.pdf
2017-05-16 17:16 - 2017-05-17 17:00 - 00000000 ____D C:\Users\user\Desktop\rkurs
2017-05-16 16:25 - 2017-05-16 16:25 - 00000000 ____D C:\Users\user\Documents\Updater5
2017-05-16 16:15 - 2017-05-23 14:05 - 00000000 ____D C:\Users\user\Desktop\Wissenschaftliches Schreiben
2017-05-16 15:02 - 2017-05-16 15:02 - 00000000 ____D C:\Users\user\Desktop\Gecshichte der Psychologie
2017-05-16 14:57 - 2017-05-16 20:39 - 00000000 ____D C:\Users\user\Desktop\Ktitik
2017-05-16 14:56 - 2017-05-16 14:56 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(2).pdf
2017-05-16 14:50 - 2017-05-16 14:50 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017(1).pdf
2017-05-16 14:49 - 2017-05-16 14:57 - 00000000 ____D C:\Users\user\Desktop\Denken und Spracheverarbeitung
2017-05-16 14:49 - 2017-05-16 14:49 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(1).pdf
2017-05-16 14:48 - 2017-05-16 14:48 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017.pdf
2017-05-16 02:15 - 2017-05-16 02:15 - 00742528 _____ C:\Users\user\Downloads\Training.htm
2017-05-15 22:34 - 2017-05-15 22:41 - 00021911 ____H C:\Users\user\Desktop\~WRL1464.tmp
2017-05-15 21:54 - 2017-05-15 21:54 - 00000000 ____D C:\Users\user\Desktop\Zeitschrift für Sozialforschung
2017-05-15 21:26 - 2017-05-15 21:26 - 36441940 _____ C:\Users\user\Downloads\Zeitschrift_fuer_Sozialforschung_6_1937.pdf
2017-05-15 21:03 - 2017-05-26 01:11 - 00000000 ____D C:\Users\user\Desktop\Lehrbuch für klinische Psychologie - Psychotherapie
2017-05-15 19:56 - 2017-05-15 20:59 - 02965941 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org)(1).pdf
2017-05-15 12:54 - 2017-05-16 15:24 - 01607874 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3.pdf
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Windows\System32\Tasks\Avira
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Users\user\AppData\Local\Avira
2017-05-14 21:09 - 2017-05-14 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-05-14 21:06 - 2017-05-23 22:29 - 00000000 ____D C:\Program Files (x86)\Avira
2017-05-14 21:06 - 2017-05-23 22:21 - 00000000 ____D C:\ProgramData\Avira
2017-05-14 20:53 - 2017-05-14 21:05 - 04793032 _____ (Avira Operations GmbH & Co. KG) C:\Users\user\Downloads\avira_de_av_5918a787ebd94__ws.exe
2017-05-14 18:31 - 2017-05-14 18:31 - 02863178 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org).pdf
2017-05-14 18:27 - 2017-05-14 18:27 - 00253035 _____ C:\Users\user\Downloads\[]_Psychologie_Psychiatrie_Auszug._Der_Psychothera(bookzz.org).pdf
2017-05-14 18:14 - 2015-04-15 15:36 - 11254212 _____ C:\Users\user\Desktop\[Robert_L._Solso]_Kognitive_Psychologie(BookZZ.org).pdf
2017-05-12 16:17 - 2017-05-12 16:18 - 01053047 _____ C:\Users\user\Downloads\the%20aftermath%20of%20the%20allied%20triumph%20over%20germany.pdf
2017-05-11 17:31 - 2017-05-11 17:31 - 00519236 _____ C:\Users\user\Downloads\Israel Flag.php
2017-05-11 14:22 - 2017-05-11 14:22 - 00821845 _____ C:\Users\user\Downloads\StatTut2_3.pdf
2017-05-10 12:50 - 2017-04-28 03:14 - 05547240 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 03:14 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-05-10 12:50 - 2017-04-28 03:14 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-05-10 12:50 - 2017-04-28 03:11 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:36 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-05-10 12:50 - 2017-04-28 02:36 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 02:34 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:19 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-05-10 12:50 - 2017-04-28 02:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-05-10 12:50 - 2017-04-28 02:19 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-05-10 12:50 - 2017-04-28 02:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-05-10 12:50 - 2017-04-28 02:14 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-05-10 12:50 - 2017-04-28 02:12 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 02:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-05-10 12:50 - 2017-04-28 02:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-26 16:59 - 03220992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-10 12:50 - 2017-04-21 17:34 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-05-10 12:50 - 2017-04-21 17:15 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-05-10 12:50 - 2017-04-20 02:00 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-10 12:50 - 2017-04-20 01:16 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 02065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00876544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 01417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-05-10 12:50 - 2017-04-17 16:54 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-05-10 12:50 - 2017-04-16 11:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 11:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-05-10 12:50 - 2017-04-16 10:57 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:55 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-05-10 12:50 - 2017-04-16 10:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-10 12:50 - 2017-04-16 10:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 10:43 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-05-10 12:50 - 2017-04-16 10:38 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-05-10 12:50 - 2017-04-16 10:37 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-10 12:50 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-10 12:50 - 2017-04-16 10:36 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-10 12:50 - 2017-04-16 10:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-05-10 12:50 - 2017-04-16 10:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 10:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-10 12:50 - 2017-04-16 10:11 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-10 12:50 - 2017-04-16 10:09 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-05-10 12:50 - 2017-04-16 10:04 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-05-10 12:50 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 10:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-05-10 12:50 - 2017-04-16 10:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 09:57 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-05-10 12:50 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-05-10 12:50 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-10 12:50 - 2017-04-16 09:48 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 09:46 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-10 12:50 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:35 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 09:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-10 12:50 - 2017-04-16 09:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-05-10 12:50 - 2017-04-16 09:25 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-05-10 12:50 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 09:20 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-05-10 12:50 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-10 12:50 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-10 12:50 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-05-10 12:50 - 2017-04-12 17:26 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2017-05-10 12:50 - 2017-04-07 17:34 - 00986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-10 12:50 - 2017-04-07 17:34 - 00265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-10 12:50 - 2017-04-07 17:30 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-10 12:50 - 2017-04-07 17:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-05-10 12:50 - 2017-04-07 17:22 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-10 12:50 - 2017-04-05 16:55 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 01895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-05-10 12:50 - 2017-04-04 16:53 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-05-10 12:50 - 2017-04-04 16:53 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-05-10 12:50 - 2017-03-10 18:32 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-05-10 12:50 - 2017-03-10 18:32 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2017-05-10 12:50 - 2017-03-10 17:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-05-10 12:50 - 2017-03-10 17:55 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-05-10 12:50 - 2017-03-10 17:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-05-10 12:50 - 2017-03-09 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-05-10 12:50 - 2017-03-09 18:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-05-10 12:37 - 2017-05-10 20:48 - 11836434 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017(1).pdf
2017-05-09 17:06 - 2017-05-09 17:06 - 00118216 _____ C:\Users\user\Downloads\Laplanche-Inzest.pdf
2017-05-09 15:09 - 2017-05-09 15:10 - 00028355 _____ C:\Users\user\Downloads\Haseloff_KulturthFreud.pdf
2017-05-09 14:20 - 2017-05-09 14:20 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017.pdf
2017-05-09 12:37 - 2017-05-16 15:42 - 01993430 _____ C:\Users\user\Downloads\2017-05-09_Wiss_Schreiben_(5).pdf
2017-05-08 18:11 - 2017-05-08 18:11 - 00506237 _____ C:\Users\user\Downloads\Geburtstag.php
2017-05-08 16:50 - 2017-05-08 16:50 - 06694898 _____ C:\Users\user\Downloads\BuehrmannReader.pdf
2017-05-08 16:32 - 2017-05-08 16:33 - 00347930 _____ C:\Users\user\Downloads\Flyer Einladung Museumsfest 2017.pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(4).pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(4).pdf
2017-05-06 23:43 - 2017-05-16 23:35 - 00000000 ____D C:\Users\user\Desktop\Allgmeine Psychologie
2017-05-06 20:31 - 2017-05-06 23:39 - 00000000 ____D C:\Ordner Desktop
2017-05-06 20:30 - 2017-05-21 20:24 - 00000000 ____D C:\Users\user\Desktop\docs pdf
2017-05-06 16:34 - 2017-05-06 16:34 - 00099291 _____ C:\Users\user\Downloads\sobre-la-parejas-del-ayer-la-pareja-humana-su-psicologia-sus-conflictos-su-tratamiento.pdf
2017-05-06 16:25 - 2017-05-06 16:25 - 00213738 _____ C:\Users\user\Downloads\El poder y sus conflictos en la pareja humana.pdf
2017-05-06 16:20 - 2017-05-06 16:20 - 00038612 _____ C:\Users\user\Downloads\14_UO_RBY_UAH.pdf
2017-05-05 23:49 - 2017-05-05 23:49 - 01552534 _____ C:\Users\user\Downloads\Brainhat_Elsevier_left_right.pdf
2017-05-05 23:48 - 2017-05-05 23:48 - 01630036 _____ C:\Users\user\Downloads\brain facts.pdf
2017-05-04 14:11 - 2017-05-04 14:11 - 00789044 _____ C:\Users\user\Downloads\StatTut2_2.pdf
2017-05-04 12:32 - 2017-05-04 12:32 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(1).pdf
2017-05-04 12:30 - 2017-05-04 12:30 - 12188880 _____ C:\Users\user\Downloads\Berk_2011_S.641-649_Liebe.pdf
2017-05-04 01:09 - 2017-05-04 01:09 - 08457076 _____ C:\Users\user\Downloads\SK 04 KM_3617050319190.pdf
2017-05-03 21:03 - 2017-05-03 21:03 - 11816779 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017.pdf
2017-05-02 23:04 - 2017-05-02 23:04 - 00020456 _____ C:\Users\user\Downloads\20161102_wohnungsgeberbestaetigung.pdf
2017-05-02 20:09 - 2017-05-02 20:09 - 01172583 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-2.pdf
2017-05-02 19:58 - 2017-05-02 19:58 - 01587063 _____ C:\Users\user\Downloads\Zielgruppen_Vortrag-Krull_Soziale-Phobie.pdf
2017-05-02 19:51 - 2017-05-02 19:52 - 22790583 _____ C:\Users\user\Downloads\Wahrnehmungseigenschaften + Allgemeine Sinnesphysiologie_2017(1).pdf
2017-05-02 19:51 - 2017-05-02 19:51 - 00260927 _____ C:\Users\user\Downloads\Überblick_Wahrnehmung+Handlung_2017(2).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(3).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(2).pdf
2017-05-02 19:19 - 2017-05-02 19:19 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(3).pdf
2017-05-02 19:11 - 2017-05-02 19:11 - 01886645 _____ C:\Users\user\Downloads\10 tips for writing a truly terrible journal article(1).pdf
2017-05-02 19:04 - 2017-05-02 19:04 - 08935575 _____ C:\Users\user\Downloads\APA_Chp-3_writing_clearly.pdf
2017-05-02 18:58 - 2017-05-02 18:58 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style(1).pdf
2017-05-02 18:54 - 2017-05-02 18:54 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen(1).pdf
2017-05-02 18:47 - 2017-05-02 18:47 - 04046470 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.6-Abbildungen.pdf
2017-05-02 18:43 - 2017-05-02 18:43 - 01960181 _____ C:\Users\user\Downloads\2017-05-02_Wiss_Schreiben_(4).pdf
2017-05-02 18:39 - 2017-05-02 18:39 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3)(1).pdf
2017-05-02 18:23 - 2017-05-02 18:23 - 05153453 _____ C:\Users\user\Downloads\2017-04-18_Wiss_Schreiben_(2).pdf
2017-05-02 18:20 - 2017-05-02 18:20 - 00013036 _____ C:\Users\user\Downloads\Semesterplan_Wiss_Schreiben_Gottwald(1).pdf
2017-05-02 18:06 - 2017-05-02 18:06 - 01612828 _____ C:\Users\user\Downloads\2017-04-11_Wiss_Schreiben_(1)(1).pdf
2017-05-02 14:26 - 2017-05-02 14:26 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(1).pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style.pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen.pdf
2017-05-02 12:59 - 2017-05-02 13:00 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3).pdf
2017-05-02 12:59 - 2017-05-02 12:59 - 01722272 _____ C:\Users\user\Downloads\Writing_without_bullshit_ch-1.pdf
2017-05-02 11:52 - 2017-05-02 11:53 - 04800083 _____ C:\Users\user\Downloads\folien14_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b.pdf
2017-05-02 11:48 - 2017-05-02 11:48 - 03917253 _____ C:\Users\user\Downloads\folien13_lernengedächtnis_ws201617_gedächtnissysteme_episodisch.pdf
2017-05-02 11:45 - 2017-05-02 11:45 - 02417602 _____ C:\Users\user\Downloads\folien12_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b_small.pdf
2017-05-02 11:43 - 2017-05-02 11:43 - 02122202 _____ C:\Users\user\Downloads\folien11_lernengedächtnis_ws201617_gedächtnissysteme_b.pdf
2017-05-02 11:28 - 2017-05-02 11:28 - 02349950 _____ C:\Users\user\Downloads\folien08_lernengedächtnis_ws201617_beobachtung.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme(1).pdf
2017-05-01 23:31 - 2017-05-01 23:31 - 00382638 _____ C:\Users\user\Downloads\dieo.pdf
2017-05-01 20:53 - 2017-05-01 20:53 - 00371721 _____ C:\Users\user\Downloads\Sem2_2017_stationäres_teilstationäres_setting.pptx (Schreibgeschützt).pdf
2017-05-01 20:51 - 2017-05-01 20:51 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017(1).pdf
2017-05-01 20:48 - 2017-05-01 20:48 - 00212904 _____ C:\Users\user\Downloads\pflichthofer_rahmen.pdf
2017-05-01 20:47 - 2017-05-01 20:47 - 00064145 _____ C:\Users\user\Downloads\SoSe2017_Seminarübersicht_LS_Settings-2.pdf
2017-05-01 20:28 - 2017-05-01 20:28 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG(1).pdf
2017-04-30 15:04 - 2017-04-30 15:04 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis.exe
2017-04-30 15:03 - 2017-04-30 15:03 - 01496584 _____ C:\Users\user\Downloads\HijackThis - CHIP-Installer.exe
2017-04-29 21:22 - 2017-04-29 21:22 - 00057829 _____ C:\Users\user\Downloads\Icke Rockabilly.jpeg
2017-04-29 21:21 - 2017-04-29 21:21 - 00061756 _____ C:\Users\user\Downloads\Icke mütze.jpeg
2017-04-28 14:52 - 2017-04-28 14:52 - 00153137 _____ C:\Users\user\Downloads\Hogh_Zweite_Natur._Kritische_und_affirmative_Lesarten_bei_John_McDowell_und_Theodor_W._Adorno.pdf
2017-04-28 14:46 - 2017-04-28 14:47 - 00098824 _____ C:\Users\user\Downloads\phase_zwei_org_hefte_artikel_die_verdinglichung_der_natur_25.pdf
2017-04-28 14:31 - 2017-04-28 14:32 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur(2).pdf
2017-04-28 14:31 - 2017-04-28 14:31 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur.pdf
2017-04-28 14:31 - 2017-04-28 14:31 - 00271176 _____ C:\Users\user\Downloads\Sigmund_Freud_Das_Unbehagen_in_der_Kultur(1).pdf
2017-04-27 14:08 - 2017-04-27 14:08 - 00910910 _____ C:\Users\user\Downloads\StatTut2_1.pdf
2017-04-27 13:39 - 2017-04-27 13:39 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(2).pdf
2017-04-27 13:36 - 2017-05-06 23:53 - 00000000 ____D C:\Users\user\Desktop\Entwicklungspsychologie II
2017-04-27 12:23 - 2017-04-28 14:53 - 01104861 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 04263520 _____ C:\Users\user\Downloads\Seiffge-Krenke_Jugend_2014_ S.380-403.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 01227687 _____ C:\Users\user\Downloads\Seiffge-Krenke_2012_S.10-40_Lebensphasen in Bewegung_Identität.pdf
2017-04-27 12:22 - 2017-04-27 12:22 - 00051206 _____ C:\Users\user\Downloads\Vorlesungsplan_Psych.II.SoSe17.pdf
2017-04-27 08:30 - 2017-04-27 08:30 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017.pdf
2017-04-27 08:30 - 2017-04-27 08:30 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG.pdf
2017-04-26 23:49 - 2017-04-26 23:49 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory(2).pdf
2017-04-26 23:49 - 2017-04-26 23:49 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory(1).pdf
2017-04-26 23:46 - 2017-04-26 23:46 - 00504359 _____ C:\Users\user\Downloads\What is psychoanalysis_.pdf
2017-04-26 23:42 - 2017-04-26 23:42 - 01843952 _____ C:\Users\user\Downloads\Basic elements of Freud's theory.pdf
2017-04-26 23:42 - 2017-04-26 23:42 - 00045803 _____ C:\Users\user\Downloads\vl_lernen_gedaechtnis_semesterplan(2).pdf
2017-04-26 23:38 - 2017-04-26 23:38 - 03241045 _____ C:\Users\user\Downloads\Bischof-Koehler_2011 S.414-445 Moralentwicklung(1).pdf
2017-04-26 23:11 - 2017-04-26 23:11 - 02308074 _____ C:\Users\user\Downloads\Mietzel_2002-S.293-317_Grundschulalter(1).pdf
2017-04-26 23:08 - 2017-04-26 23:08 - 10993815 _____ C:\Users\user\Downloads\16.Moralentwicklung(1).pdf
2017-04-26 23:06 - 2017-04-26 23:06 - 01513539 _____ C:\Users\user\Downloads\Mietzel_2002_ S.277-291_Moral(2).pdf
2017-04-26 23:02 - 2017-04-26 23:02 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung(2).pdf
2017-04-26 23:02 - 2017-04-26 23:02 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild(2).pdf
2017-04-26 23:01 - 2017-04-26 23:01 - 01461706 _____ C:\Users\user\Downloads\15. Mentalisierung(1).pdf
2017-04-26 23:01 - 2017-04-26 23:01 - 00914576 _____ C:\Users\user\Downloads\Sodian_ 2003 _Theory of Mind(1).pdf
2017-04-26 22:58 - 2017-04-26 22:58 - 03136777 _____ C:\Users\user\Downloads\Hedervari_2011_S_41-51_Menatalisierung(1).pdf
2017-04-26 22:57 - 2017-04-26 22:57 - 00441175 _____ C:\Users\user\Downloads\17.Grundschulalter_OhneBild(1).pdf
2017-04-26 22:53 - 2017-04-26 22:53 - 00447278 _____ C:\Users\user\Downloads\h97-1-psych.kv1.2jennifere.pdf
2017-04-26 22:47 - 2017-04-26 22:47 - 01373395 _____ C:\Users\user\Downloads\Diplomarbeit_M_Holzapfel.pdf
2017-04-26 22:40 - 2017-04-30 02:23 - 00013186 ____H C:\Users\user\Desktop\~WRL0005.tmp
2017-04-26 22:40 - 2017-04-26 22:40 - 00000000 ____H C:\Users\user\Desktop\~WRL3072.tmp
2017-04-26 21:48 - 2017-04-26 21:49 - 00000000 ____D C:\Users\user\Downloads\Cassandre
2017-04-26 11:15 - 2017-04-26 11:15 - 00522298 _____ C:\Users\user\Downloads\Der Kommende Aufstand.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-26 14:07 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-26 14:07 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-26 14:03 - 2010-11-21 08:50 - 00703018 _____ C:\Windows\system32\perfh007.dat
2017-05-26 14:03 - 2010-11-21 08:50 - 00150570 _____ C:\Windows\system32\perfc007.dat
2017-05-26 14:03 - 2009-07-14 07:13 - 01628056 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-26 14:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-26 14:00 - 2017-04-10 20:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2017-05-26 14:00 - 2017-01-24 00:55 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-05-26 14:00 - 2017-01-24 00:44 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2017-05-26 13:59 - 2017-01-24 00:55 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-05-26 13:59 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-26 13:57 - 2016-03-03 09:39 - 00000993 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-26 01:12 - 2017-03-13 12:52 - 00000000 ____D C:\Users\user\Desktop\Lernen und Gedächtnis
2017-05-24 23:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2017-05-23 22:45 - 2009-07-14 06:45 - 00424888 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-23 22:28 - 2016-03-03 10:27 - 01602336 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-05-23 22:28 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-23 22:22 - 2017-01-27 01:10 - 00000000 ____D C:\Users\user\AppData\LocalLow\Adobe
2017-05-23 22:21 - 2017-04-10 20:44 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-23 22:21 - 2017-02-20 22:08 - 00000000 ____D C:\Windows\system32\appmgmt
2017-05-23 22:20 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-23 22:20 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-23 22:18 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-05-23 21:40 - 2017-04-10 21:27 - 00000000 ____D C:\Program Files (x86)\Skype
2017-05-23 21:40 - 2017-04-10 20:45 - 00000000 ____D C:\ProgramData\Skype
2017-05-23 14:21 - 2017-02-22 15:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-23 14:21 - 2017-01-24 00:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-23 11:41 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2017-05-23 11:19 - 2017-01-27 00:42 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2017-05-23 10:51 - 2017-01-24 00:44 - 00000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-23 10:51 - 2017-01-24 00:44 - 00000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-05-23 02:19 - 2017-01-23 19:54 - 00000000 ____D C:\Windows\system32\MRT
2017-05-23 02:18 - 2017-01-23 19:54 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-19 10:37 - 2017-01-24 00:55 - 00000000 ____D C:\Users\user\AppData\Local\Dropbox
2017-05-17 22:37 - 2017-01-29 16:25 - 00000000 ____D C:\Users\user\Desktop\Kripu
2017-05-17 18:20 - 2016-03-03 09:39 - 00000000 ____D C:\Users\user\AppData\Local\VirtualStore
2017-05-17 17:03 - 2017-04-12 16:07 - 00002220 _____ C:\Users\user\Documents\.Rhistory
2017-05-17 17:03 - 2017-04-12 16:07 - 00000000 ____D C:\Users\user\AppData\Roaming\RStudio
2017-05-17 17:03 - 2017-04-12 15:53 - 00045056 _____ C:\Users\user\AppData\Local\WebpageIcons.db
2017-05-17 17:03 - 2017-04-12 15:53 - 00000000 ____D C:\Users\user\AppData\Local\RStudio-Desktop
2017-05-17 03:42 - 2017-03-25 01:34 - 00000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics
2017-05-17 01:59 - 2017-01-24 00:55 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-16 23:46 - 2016-03-03 10:34 - 00000000 ____D C:\Program Files\Lenovo
2017-05-16 23:26 - 2016-03-03 10:28 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-05-16 23:25 - 2016-03-03 10:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-16 23:25 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2017-05-16 23:23 - 2016-03-03 10:28 - 00000000 ____D C:\ProgramData\Lenovo
2017-05-16 23:13 - 2016-03-03 10:30 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-05-16 23:13 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\TVT
2017-05-16 23:01 - 2016-03-03 10:36 - 00000000 ____D C:\Users\user\AppData\Local\Lenovo
2017-05-16 23:01 - 2016-03-03 10:33 - 00000000 ____D C:\Program Files (x86)\Intel
2017-05-16 23:01 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\Downloaded Installations
2017-05-16 23:00 - 2010-11-21 08:49 - 00000000 ____D C:\Windows\system32\0407
2017-05-16 22:45 - 2017-01-27 00:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-16 22:44 - 2017-01-26 22:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-05-15 20:59 - 2017-03-13 16:46 - 00000000 ____D C:\Users\user\Desktop\Klinische Psychologie
2017-05-14 21:10 - 2016-03-03 10:30 - 00112136 _____ C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-13 20:20 - 2017-01-30 13:08 - 00000000 ____D C:\Users\user\Desktop\Bücher
2017-05-02 23:02 - 2017-01-24 01:24 - 00000000 ___RD C:\Users\user\Dropbox
2017-04-30 16:24 - 2017-03-30 12:21 - 00000000 ____D C:\Users\user\Desktop\Psychoanalyse
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-04-12 15:53 - 2017-05-17 17:03 - 0045056 _____ () C:\Users\user\AppData\Local\WebpageIcons.db
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-24 16:14
==================== Ende von FRST.txt ============================
|
|
26.05.2017, 20:54
| #13 |
| /// TB-Ausbilder | Problem mit launchpage.org Servus, wir entfernen noch ein bisschen was und kontrollieren nochmal alles. Hinweis: Der Suchlauf mit ESET kann länger dauern. Schritt 1
Schritt 2 Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
Schritt 3 ESET Online Scanner
Schritt 4
Gibt es jetzt noch Probleme mit dem PC oder mit deinen Internet Browsern? Wenn ja, welche?Bitte poste mit deiner nächsten Antwort
|
|
29.05.2017, 11:55
| #14 |
| | Problem mit launchpage.orgCode:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von user (29-05-2017 10:39:21) Run:2
Gestartet von C:\Users\user\Desktop\FRST
Geladene Profile: user (Verfügbare Profile: user)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
Task: {22F4607C-E139-45EF-9DA8-68F09964F091} - System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C} => pcalua.exe -a C:\Users\user\Downloads\hijackthis(1).exe -d C:\Users\user\Downloads
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
*****************
Prozesse erfolgreich geschlossen.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{22F4607C-E139-45EF-9DA8-68F09964F091} => Schlüssel nicht gefunden.
C:\Windows\System32\Tasks\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C} => nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3FE2F5BD-13E1-4C6D-8CF1-8153740A456C} => Schlüssel nicht gefunden.
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.
========= Ende von CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3455807 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 11064 B
Edge => 0 B
Chrome => 0 B
Firefox => 3304625 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
user => 2621539 B
RecycleBin => 0 B
EmptyTemp: => 17 MB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 10:39:23 ====
Code:
ATTFilter
Code:
ATTFilter
FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
durchgeführt von user (Administrator) auf USER-PC (29-05-2017 12:53:16)
Gestartet von C:\Users\user\Desktop
Geladene Profile: user (Verfügbare Profile: user)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Ericsson AB) C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Flux Software LLC) C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\Bluetooth Headset Helper.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Farbar) C:\Users\user\Desktop\FRST64(1).exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916592 2014-07-28] (Synaptics Incorporated)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant systems, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [113656 2013-07-02] (Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [Dolby Home Theater v4] => "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [f.lux] => C:\Users\user\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkPad\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat - Schnellstart.lnk [2017-03-04]
ShortcutTarget: Adobe Acrobat - Schnellstart.lnk -> C:\Windows\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk [2017-03-04]
ShortcutTarget: Adobe Reader Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2017-05-16]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2017-01-27]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E08C96DE-4F95-4B54-A2EF-BF05D5BFBB9F}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-254914080-1563877497-1754063145-1000 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.de/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-27] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2017-05-27] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-27] (Microsoft Corporation)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-27] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2017-05-27] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-27] (Microsoft Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: rqo5cz6m.default-1495531728194
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194 [2017-05-29]
FF Homepage: Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194 -> about:home
FF Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\rqo5cz6m.default-1495531728194\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIIPT.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Services\IPT\npIntelWebAPIUpdater.dll [2014-07-09] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-27] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-27] (Microsoft Corporation)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-24] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [326160 2016-04-14] (Lenovo.)
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2017-03-04] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R2 LPlatSvc; C:\Windows\system32\LPlatSvc.exe [711248 2017-04-01] (Lenovo.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-05-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [648744 2011-08-12] (Ericsson AB)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-06-13] (Ericsson AB)
S3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [30248 2011-06-13] (Ericsson AB)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2017-02-11] (REALiX(tm))
S3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [101416 2011-07-01] (Ericsson AB)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-05-26] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-05-29] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-05-29] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251832 2017-05-29] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-05-29] (Malwarebytes)
S3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [419400 2011-04-29] (MCCI Corporation)
S3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [430664 2011-04-29] (MCCI Corporation)
S3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [19528 2011-04-29] (MCCI Corporation)
S3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [483400 2011-04-29] (MCCI Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated)
S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [17280 2017-01-29] (Scott)
S3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [268840 2011-08-12] (Ericsson AB)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-29 10:47 - 2017-05-29 10:48 - 02870984 _____ (ESET) C:\Users\user\Downloads\esetsmartinstaller_deu.exe
2017-05-29 10:43 - 2017-05-29 10:46 - 00000000 ____D C:\ProgramData\HitmanPro
2017-05-29 10:43 - 2017-05-29 10:43 - 11584088 _____ (SurfRight B.V.) C:\Users\user\Downloads\HitmanPro_x64.exe
2017-05-29 10:37 - 2017-05-29 10:39 - 00000000 ____D C:\Users\user\Desktop\FRST
2017-05-29 10:36 - 2017-05-29 10:36 - 00000000 ____D C:\Users\user\Downloads\FRST-OlderVersion
2017-05-29 10:33 - 2017-05-29 10:33 - 00003247 _____ C:\Users\user\Desktop\Fixlog.txt
2017-05-29 10:33 - 2017-05-29 10:33 - 00000000 ____D C:\Users\user\Desktop\FRST-OlderVersion
2017-05-27 16:21 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-05-27 16:21 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2017-05-27 16:21 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-05-27 16:21 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-05-27 16:21 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2017-05-27 16:21 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-05-27 16:21 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-05-27 16:18 - 2017-05-27 16:18 - 09551280 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup530.exe
2017-05-26 15:25 - 2017-05-26 15:25 - 01606137 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3(1).pdf
2017-05-26 15:19 - 2017-05-26 15:19 - 01172583 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-2(1).pdf
2017-05-26 15:14 - 2017-05-26 15:14 - 01106984 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-1(2).pdf
2017-05-26 15:14 - 2017-05-26 15:14 - 01106984 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-1(1).pdf
2017-05-26 14:11 - 2017-05-26 14:11 - 00035187 _____ C:\Users\user\Desktop\Addition.txt
2017-05-26 14:08 - 2017-05-26 14:08 - 00001408 _____ C:\Users\user\Desktop\Report MBAM Premium.txt
2017-05-26 14:05 - 2017-05-29 12:47 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-26 14:05 - 2017-05-29 10:40 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-26 14:05 - 2017-05-29 10:40 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-26 14:05 - 2017-05-29 10:40 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-26 14:05 - 2017-05-26 14:05 - 00001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-26 14:05 - 2017-05-26 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-26 14:04 - 2017-05-26 14:04 - 63364552 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.122-1.0.1976.exe
2017-05-26 14:04 - 2017-05-26 14:04 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-26 14:04 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-05-26 13:55 - 2015-12-20 20:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-05-26 13:55 - 2015-12-20 20:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-05-26 13:55 - 2015-12-20 16:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-05-26 13:55 - 2014-12-11 19:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-05-26 13:54 - 2017-05-26 13:54 - 04110280 _____ C:\Users\user\Downloads\adwcleaner_6.047.exe
2017-05-26 13:54 - 2017-05-26 13:54 - 04110280 _____ C:\Users\user\Desktop\adwcleaner_6.047.exe
2017-05-26 00:38 - 2017-05-26 00:38 - 06360681 _____ C:\Users\user\Documents\Klinische Psychologie Lehrbuch.pdf
2017-05-24 18:07 - 2017-05-25 00:45 - 00636244 _____ C:\Users\user\Desktop\Stenek_2007_AA_339 Hysterie Existenzanalyse.pdf
2017-05-24 18:06 - 2017-05-24 18:06 - 00375170 _____ C:\Users\user\Downloads\Stenek_2007_AA_339(2).pdf
2017-05-24 16:38 - 2017-05-29 12:53 - 00020207 _____ C:\Users\user\Desktop\FRST.txt
2017-05-24 16:38 - 2017-05-29 10:33 - 02429952 _____ (Farbar) C:\Users\user\Desktop\FRST64(1).exe
2017-05-24 15:18 - 2017-05-24 15:18 - 00200363 _____ C:\Users\user\Downloads\Untermietvertrag1.pdf
2017-05-23 22:27 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2017-05-23 22:27 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-05-23 22:27 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-05-23 22:27 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2017-05-23 22:27 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2017-05-23 22:27 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-05-23 22:27 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2017-05-23 22:27 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2017-05-23 22:27 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-05-23 22:27 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-05-23 22:24 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-05-23 22:24 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2017-05-23 22:24 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2017-05-23 22:24 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2017-05-23 22:22 - 2017-04-28 00:50 - 03550208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 03165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-05-23 22:22 - 2017-04-17 17:37 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-05-23 22:22 - 2017-04-17 17:35 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-05-23 22:22 - 2017-04-17 17:23 - 02651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-05-23 22:22 - 2017-04-17 17:22 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-05-23 22:22 - 2017-04-17 17:21 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-05-23 22:22 - 2017-04-17 17:21 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-05-23 22:22 - 2017-04-17 17:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2017-05-23 22:22 - 2017-04-17 17:12 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2017-05-23 22:22 - 2017-04-17 17:01 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2017-05-23 22:22 - 2017-04-17 17:01 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2017-05-23 22:22 - 2017-04-12 15:05 - 04296704 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-05-23 22:22 - 2015-08-05 19:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-05-23 22:22 - 2015-08-05 19:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2017-05-23 22:21 - 2015-12-16 20:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2017-05-23 22:21 - 2015-12-16 20:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2017-05-23 22:21 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2017-05-23 22:21 - 2015-12-16 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2017-05-23 22:09 - 2017-05-23 22:06 - 00004074 _____ C:\Users\user\Desktop\108040512437164.ics
2017-05-23 22:05 - 2017-05-23 22:06 - 00004074 _____ C:\Users\user\Downloads\108040512437164.ics
2017-05-23 21:39 - 2017-05-23 21:39 - 01632216 _____ (Skype Technologies S.A.) C:\Users\user\Downloads\SkypeSetup(1).exe
2017-05-23 14:23 - 2017-05-23 15:46 - 01019818 _____ C:\Users\user\Downloads\Denken5_2017(2).pdf
2017-05-23 13:17 - 2017-05-23 13:17 - 01601210 _____ C:\Users\user\Downloads\2017-05-16_Wiss_Schreiben_(6).pdf
2017-05-23 12:30 - 2017-05-23 12:31 - 00390365 _____ C:\Users\user\Downloads\Gottwald (2016). Thesis_chapter-1.pdf
2017-05-23 11:41 - 2017-05-23 22:22 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2017-05-23 10:50 - 2017-05-23 10:50 - 46853008 _____ (Mozilla) C:\Users\user\Downloads\firefox_setup_53.0.exe
2017-05-23 10:41 - 2017-05-23 10:41 - 13166816 _____ (Microsoft Corporation) C:\Users\user\Downloads\Silverlight_x64.exe
2017-05-23 02:08 - 2017-05-23 02:08 - 27778871 _____ C:\Users\user\Downloads\X-Codec-Pack_2.7.4.exe
2017-05-23 02:08 - 2017-05-23 02:08 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4
2017-05-22 11:57 - 2017-05-22 11:57 - 01569141 _____ C:\Users\user\Downloads\5.Sozialer Wandel von Partnerschaft.pdf
2017-05-22 11:53 - 2017-05-22 11:53 - 01072609 _____ C:\Users\user\Downloads\4.Elternschaft in der Moderne.pdf
2017-05-22 11:48 - 2017-05-22 11:48 - 01610218 _____ C:\Users\user\Downloads\1.Jugendalter_IPU_EHH_ohneBilder(3).pdf
2017-05-22 11:40 - 2017-05-22 11:40 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(2).pdf
2017-05-22 11:25 - 2017-05-22 11:25 - 00179241 _____ C:\Users\user\Downloads\3.Liebe_PsychologiederPartnerwahl.pdf
2017-05-21 02:28 - 2017-05-21 02:29 - 00375170 _____ C:\Users\user\Downloads\Stenek_2007_AA_339(1).pdf
2017-05-19 15:44 - 2017-05-19 15:40 - 03239068 _____ C:\Users\user\Desktop\Michael_Heinrich_Die_Wissenschaft_vom_Wert_Die_Marxsche_Kritik_der_politischen_Ökonomie_zwischen_wissenschaftlicher_Revolution_und_klassischer_Tradition__.pdf
2017-05-19 15:40 - 2017-05-19 15:40 - 03239068 _____ C:\Users\user\Downloads\Michael_Heinrich_Die_Wissenschaft_vom_Wert_Die_Marxsche_Kritik_der_politischen_Ökonomie_zwischen_wissenschaftlicher_Revolution_und_klassischer_Tradition__.pdf
2017-05-19 02:02 - 2017-05-19 02:02 - 65659968 _____ (Oracle Corporation) C:\Users\user\Downloads\jre-8u131-windows-x64.exe
2017-05-19 01:12 - 2017-05-19 01:12 - 00115573 _____ C:\Users\user\Downloads\Artikel_Mentalisierung.pdf
2017-05-17 22:52 - 2017-05-17 23:46 - 00217562 _____ C:\TDSSKiller.3.1.0.15_17.05.2017_22.52.22_log.txt
2017-05-17 22:51 - 2017-05-17 22:50 - 04922400 _____ (AO Kaspersky Lab) C:\Users\user\Desktop\tdsskiller.exe
2017-05-17 22:50 - 2017-05-17 22:51 - 00216842 _____ C:\TDSSKiller.3.1.0.15_17.05.2017_22.50.21_log.txt
2017-05-17 22:50 - 2017-05-17 22:50 - 04922400 _____ (AO Kaspersky Lab) C:\Users\user\Downloads\tdsskiller.exe
2017-05-17 22:39 - 2017-05-29 12:53 - 00000000 ____D C:\FRST
2017-05-17 22:39 - 2017-05-17 22:40 - 00097052 _____ C:\Users\user\Downloads\FRST.txt
2017-05-17 22:39 - 2017-05-17 22:40 - 00036513 _____ C:\Users\user\Downloads\Addition.txt
2017-05-17 22:38 - 2017-05-29 10:36 - 02429952 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2017-05-17 22:35 - 2017-05-17 22:35 - 00265970 _____ C:\Users\user\Downloads\Against_narrativity_final_2008_version.pdf
2017-05-17 22:31 - 2017-05-17 22:31 - 00141475 _____ C:\Users\user\Downloads\Stellenausschreibung Projektassistenz elhana Lernpaten e.V..pdf
2017-05-17 21:46 - 2017-05-28 12:46 - 00000000 ____D C:\Users\user\Desktop\Statistik II
2017-05-17 20:57 - 2017-05-17 20:58 - 00000000 ____D C:\Users\user\Desktop\Lernen
2017-05-17 20:45 - 2017-05-17 20:45 - 00000000 ____D C:\Users\user\Documents\Benutzerdefinierte Office-Vorlagen
2017-05-17 19:28 - 2017-05-17 19:28 - 00122917 _____ C:\Users\user\Downloads\2016_10_fb3_flyer.pdf
2017-05-17 18:54 - 2017-05-26 13:58 - 00000000 ____D C:\AdwCleaner
2017-05-17 18:49 - 2017-05-17 18:49 - 00015390 _____ C:\Users\user\Downloads\hijackthis 17.05.17
2017-05-17 18:19 - 2017-05-17 18:20 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(2).exe
2017-05-17 18:19 - 2017-05-17 18:19 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis(1).exe
2017-05-17 17:03 - 2017-05-17 17:03 - 00005719 _____ C:\Users\user\Documents\.RData
2017-05-17 14:29 - 2017-05-17 14:29 - 00000000 ____D C:\Users\user\Documents\rkurs
2017-05-17 14:12 - 2017-05-17 14:12 - 00000000 ____D C:\Users\user\Documents\R
2017-05-17 10:47 - 2017-05-17 10:47 - 00000085 _____ C:\Windows\wininit.ini
2017-05-17 10:39 - 2017-05-17 10:39 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-17 10:38 - 2017-05-17 10:39 - 63035592 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.1.2.1733.exe
2017-05-17 10:37 - 2017-05-23 22:36 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps
2017-05-17 10:21 - 2017-05-17 10:24 - 00000000 ____D C:\Users\user\AppData\Local\NPE
2017-05-17 10:21 - 2017-05-17 10:21 - 03435768 _____ (Symantec Corporation) C:\Users\user\Downloads\NPE.exe
2017-05-17 10:21 - 2017-05-17 10:21 - 00000000 ____D C:\ProgramData\Norton
2017-05-17 03:06 - 2017-05-17 10:48 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-05-17 03:06 - 2017-05-17 10:47 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-05-17 03:06 - 2017-05-17 03:06 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\user\Downloads\spybot-2.4.exe
2017-05-17 03:06 - 2017-05-17 03:06 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2017-05-17 01:59 - 2017-05-17 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-16 23:49 - 2017-05-16 23:49 - 00000000 ____D C:\Users\user\Documents\OneNote-Notizbücher
2017-05-16 23:39 - 2017-05-16 23:40 - 00000000 ____D C:\Users\user\Desktop\Wahrnehmung
2017-05-16 23:38 - 2017-05-16 23:39 - 00000000 ____D C:\Users\user\Desktop\Referat Borderline
2017-05-16 23:34 - 2017-05-16 23:34 - 54199488 _____ (Malwarebytes ) C:\Users\user\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\Documents\Bluetooth-Exchange-Ordner
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2017-05-16 23:07 - 2017-05-16 23:07 - 00000000 ____D C:\Users\user\AppData\Local\Broadcom
2017-05-16 23:06 - 2012-12-04 04:38 - 00598808 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2017-05-16 23:04 - 2012-05-02 07:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2017-05-16 23:04 - 2012-03-06 12:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2017-05-16 23:04 - 2011-09-18 01:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2017-05-16 23:03 - 2017-05-16 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-05-16 23:02 - 2017-05-16 23:25 - 00000000 ____D C:\Program Files\ThinkPad
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2017-05-16 23:02 - 2017-05-16 23:02 - 00000000 ____D C:\Program Files\CONEXANT
2017-05-16 23:02 - 2017-04-01 02:44 - 00711248 _____ (Lenovo.) C:\Windows\system32\LPlatSvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00187984 _____ (Lenovo.) C:\Windows\system32\ibmpmsvc.exe
2017-05-16 23:02 - 2017-04-01 02:44 - 00082816 _____ (Lenovo.) C:\Windows\system32\Drivers\ibmpmdrv.sys
2017-05-16 23:02 - 2017-04-01 02:44 - 00058448 _____ (Lenovo.) C:\Windows\system32\tpinspm.dll
2017-05-16 23:02 - 2012-08-06 14:30 - 01780384 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64AP73.dll
2017-05-16 23:02 - 2012-06-05 18:40 - 01580704 _____ (Conexant Systems Inc.) C:\Windows\system32\Drivers\CHDRT64.sys
2017-05-16 23:02 - 2012-05-31 15:03 - 00568992 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI64A90.dll
2017-05-16 23:02 - 2012-05-01 11:18 - 00002013 _____ C:\Windows\system32\VoipUpdate.ini
2017-05-16 23:02 - 2011-05-11 14:25 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll
2017-05-16 23:02 - 2011-05-11 14:25 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll
2017-05-16 23:02 - 2011-02-17 15:16 - 02075712 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-05-16 23:02 - 2011-01-18 08:35 - 00030893 _____ C:\Windows\system32\Drivers\Mixer.ini
2017-05-16 23:02 - 2011-01-04 19:22 - 00001976 ____N C:\Windows\system32\Drivers\SamSfPa.dat
2017-05-16 23:02 - 2010-12-17 04:18 - 00198784 ____N (Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe
2017-05-16 23:02 - 2010-11-23 13:30 - 00050304 _____ (Conexant Systems Inc.) C:\Windows\system32\CxPageMaster64.dll
2017-05-16 23:02 - 2010-11-18 13:47 - 00446592 ____N (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
2017-05-16 23:02 - 2010-10-28 10:27 - 00001816 _____ C:\Windows\system32\Drivers\Altmixer.ini
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.QtWebEngineProcess
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Users\user\.LSC
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\SWTOOLS
2017-05-16 23:01 - 2017-05-16 23:01 - 00000000 ____D C:\Program Files (x86)\Integrated Camera Driver
2017-05-16 23:01 - 2017-04-01 02:44 - 00088144 _____ (Lenovo.) C:\Windows\system32\ibmpmctl.exe
2017-05-16 23:01 - 2013-11-15 15:40 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\2C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C0A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0C04
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0816
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0804
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0424
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041F
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\041B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0419
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0416
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0415
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0414
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0413
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0412
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0411
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0410
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040E
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040D
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040C
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040B
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\040A
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0409
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0408
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0406
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0405
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0404
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Windows\system32\0401
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
2017-05-16 23:00 - 2017-05-16 23:00 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2017-05-16 23:00 - 2011-03-07 17:07 - 00126976 _____ (Ricoh co.,Ltd.) C:\Windows\SysWOW64\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:06 - 00142848 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.ax
2017-05-16 23:00 - 2011-03-07 17:05 - 00123392 _____ (Ricoh co.,Ltd.) C:\Windows\system32\5U877.dll
2017-05-16 23:00 - 2011-03-04 18:18 - 00166016 _____ (Ricoh co.,Ltd.) C:\Windows\system32\Drivers\5U877.sys
2017-05-16 22:53 - 2017-05-16 22:53 - 02724352 _____ (Lenovo ) C:\Users\user\Downloads\LSBSetup.exe
2017-05-16 20:38 - 2017-05-16 20:38 - 00268108 _____ C:\Users\user\Downloads\schwermut-als-objekt.pdf
2017-05-16 20:29 - 2017-05-16 20:29 - 03900001 _____ C:\Users\user\Downloads\ASISM04_fertig_web.pdf
2017-05-16 17:16 - 2017-05-17 17:00 - 00000000 ____D C:\Users\user\Desktop\rkurs
2017-05-16 16:25 - 2017-05-16 16:25 - 00000000 ____D C:\Users\user\Documents\Updater5
2017-05-16 16:15 - 2017-05-23 14:05 - 00000000 ____D C:\Users\user\Desktop\Wissenschaftliches Schreiben
2017-05-16 15:02 - 2017-05-16 15:02 - 00000000 ____D C:\Users\user\Desktop\Gecshichte der Psychologie
2017-05-16 14:57 - 2017-05-16 20:39 - 00000000 ____D C:\Users\user\Desktop\Ktitik
2017-05-16 14:56 - 2017-05-16 14:56 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(2).pdf
2017-05-16 14:50 - 2017-05-16 14:50 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017(1).pdf
2017-05-16 14:49 - 2017-05-16 14:57 - 00000000 ____D C:\Users\user\Desktop\Denken und Spracheverarbeitung
2017-05-16 14:49 - 2017-05-16 14:49 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017(1).pdf
2017-05-16 14:48 - 2017-05-16 14:48 - 00973556 _____ C:\Users\user\Downloads\Denken5_2017.pdf
2017-05-16 02:15 - 2017-05-16 02:15 - 00742528 _____ C:\Users\user\Downloads\Training.htm
2017-05-15 22:34 - 2017-05-15 22:41 - 00021911 ____H C:\Users\user\Desktop\~WRL1464.tmp
2017-05-15 21:54 - 2017-05-15 21:54 - 00000000 ____D C:\Users\user\Desktop\Zeitschrift für Sozialforschung
2017-05-15 21:26 - 2017-05-15 21:26 - 36441940 _____ C:\Users\user\Downloads\Zeitschrift_fuer_Sozialforschung_6_1937.pdf
2017-05-15 21:03 - 2017-05-26 01:11 - 00000000 ____D C:\Users\user\Desktop\Lehrbuch für klinische Psychologie - Psychotherapie
2017-05-15 19:56 - 2017-05-15 20:59 - 02965941 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org)(1).pdf
2017-05-15 12:54 - 2017-05-16 15:24 - 01607874 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-3.pdf
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Windows\System32\Tasks\Avira
2017-05-14 21:10 - 2017-05-14 21:10 - 00000000 ____D C:\Users\user\AppData\Local\Avira
2017-05-14 21:09 - 2017-05-14 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2017-05-14 21:06 - 2017-05-23 22:29 - 00000000 ____D C:\Program Files (x86)\Avira
2017-05-14 21:06 - 2017-05-23 22:21 - 00000000 ____D C:\ProgramData\Avira
2017-05-14 20:53 - 2017-05-14 21:05 - 04793032 _____ (Avira Operations GmbH & Co. KG) C:\Users\user\Downloads\avira_de_av_5918a787ebd94__ws.exe
2017-05-14 18:31 - 2017-05-14 18:31 - 02863178 _____ C:\Users\user\Downloads\[Hans_Reinecker]_Fallbuch_der_Klinischen_Psycholog(bookzz.org).pdf
2017-05-14 18:27 - 2017-05-14 18:27 - 00253035 _____ C:\Users\user\Downloads\[]_Psychologie_Psychiatrie_Auszug._Der_Psychothera(bookzz.org).pdf
2017-05-14 18:14 - 2015-04-15 15:36 - 11254212 _____ C:\Users\user\Desktop\[Robert_L._Solso]_Kognitive_Psychologie(BookZZ.org).pdf
2017-05-12 16:17 - 2017-05-12 16:18 - 01053047 _____ C:\Users\user\Downloads\the%20aftermath%20of%20the%20allied%20triumph%20over%20germany.pdf
2017-05-11 17:31 - 2017-05-11 17:31 - 00519236 _____ C:\Users\user\Downloads\Israel Flag.php
2017-05-11 14:22 - 2017-05-11 14:22 - 00821845 _____ C:\Users\user\Downloads\StatTut2_3.pdf
2017-05-10 12:50 - 2017-04-28 03:14 - 05547240 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 03:14 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-05-10 12:50 - 2017-04-28 03:14 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-05-10 12:50 - 2017-04-28 03:14 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-05-10 12:50 - 2017-04-28 03:11 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 03:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 03:09 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:36 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2017-05-10 12:50 - 2017-04-28 02:36 - 03945192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2017-05-10 12:50 - 2017-04-28 02:34 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:19 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-05-10 12:50 - 2017-04-28 02:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-05-10 12:50 - 2017-04-28 02:19 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-05-10 12:50 - 2017-04-28 02:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-05-10 12:50 - 2017-04-28 02:14 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-05-10 12:50 - 2017-04-28 02:12 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-10 12:50 - 2017-04-28 02:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-05-10 12:50 - 2017-04-28 02:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2017-05-10 12:50 - 2017-04-28 02:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2017-05-10 12:50 - 2017-04-28 02:08 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2017-05-10 12:50 - 2017-04-28 02:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-05-10 12:50 - 2017-04-28 02:07 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2017-05-10 12:50 - 2017-04-26 16:59 - 03220992 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-10 12:50 - 2017-04-21 17:34 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2017-05-10 12:50 - 2017-04-21 17:15 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2017-05-10 12:50 - 2017-04-20 02:00 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-10 12:50 - 2017-04-20 01:16 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 02065408 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00876544 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-05-10 12:50 - 2017-04-17 17:37 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 01417728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-10 12:50 - 2017-04-17 17:12 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2017-05-10 12:50 - 2017-04-17 16:54 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2017-05-10 12:50 - 2017-04-16 11:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 11:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-05-10 12:50 - 2017-04-16 10:57 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:55 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-05-10 12:50 - 2017-04-16 10:55 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-10 12:50 - 2017-04-16 10:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 10:43 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-05-10 12:50 - 2017-04-16 10:38 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-05-10 12:50 - 2017-04-16 10:37 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-10 12:50 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-10 12:50 - 2017-04-16 10:36 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-10 12:50 - 2017-04-16 10:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-05-10 12:50 - 2017-04-16 10:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 10:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-05-10 12:50 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-10 12:50 - 2017-04-16 10:11 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-10 12:50 - 2017-04-16 10:09 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-05-10 12:50 - 2017-04-16 10:04 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-05-10 12:50 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 10:02 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-10 12:50 - 2017-04-16 10:01 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-05-10 12:50 - 2017-04-16 10:01 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-05-10 12:50 - 2017-04-16 09:57 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-05-10 12:50 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-05-10 12:50 - 2017-04-16 09:52 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-05-10 12:50 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-10 12:50 - 2017-04-16 09:48 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-05-10 12:50 - 2017-04-16 09:47 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-05-10 12:50 - 2017-04-16 09:46 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-05-10 12:50 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-10 12:50 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:35 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-05-10 12:50 - 2017-04-16 09:30 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-05-10 12:50 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-10 12:50 - 2017-04-16 09:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-05-10 12:50 - 2017-04-16 09:25 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-05-10 12:50 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-10 12:50 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-10 12:50 - 2017-04-16 09:20 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-05-10 12:50 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-10 12:50 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-10 12:50 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-10 12:50 - 2017-04-16 09:08 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-05-10 12:50 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-10 12:50 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-10 12:50 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-10 12:50 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 01483776 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:32 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2017-05-10 12:50 - 2017-04-12 17:26 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2017-05-10 12:50 - 2017-04-12 17:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2017-05-10 12:50 - 2017-04-07 17:34 - 00986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-10 12:50 - 2017-04-07 17:34 - 00265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-10 12:50 - 2017-04-07 17:30 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-10 12:50 - 2017-04-07 17:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2017-05-10 12:50 - 2017-04-07 17:22 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-10 12:50 - 2017-04-05 16:55 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-10 12:50 - 2017-04-05 16:55 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 01895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-05-10 12:50 - 2017-04-04 17:34 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-05-10 12:50 - 2017-04-04 16:53 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-05-10 12:50 - 2017-04-04 16:53 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-05-10 12:50 - 2017-03-10 18:32 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2017-05-10 12:50 - 2017-03-10 18:32 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 01508352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2017-05-10 12:50 - 2017-03-10 18:20 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll
2017-05-10 12:50 - 2017-03-10 17:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\plasrv.exe
2017-05-10 12:50 - 2017-03-10 17:55 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-05-10 12:50 - 2017-03-10 17:55 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2017-05-10 12:50 - 2017-03-09 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-05-10 12:50 - 2017-03-09 18:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-05-10 12:37 - 2017-05-10 20:48 - 11836434 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017(1).pdf
2017-05-09 17:06 - 2017-05-09 17:06 - 00118216 _____ C:\Users\user\Downloads\Laplanche-Inzest.pdf
2017-05-09 15:09 - 2017-05-09 15:10 - 00028355 _____ C:\Users\user\Downloads\Haseloff_KulturthFreud.pdf
2017-05-09 14:20 - 2017-05-09 14:20 - 01197403 _____ C:\Users\user\Downloads\Denken4_2017.pdf
2017-05-09 12:37 - 2017-05-16 15:42 - 01993430 _____ C:\Users\user\Downloads\2017-05-09_Wiss_Schreiben_(5).pdf
2017-05-08 18:11 - 2017-05-08 18:11 - 00506237 _____ C:\Users\user\Downloads\Geburtstag.php
2017-05-08 16:50 - 2017-05-08 16:50 - 06694898 _____ C:\Users\user\Downloads\BuehrmannReader.pdf
2017-05-08 16:32 - 2017-05-08 16:33 - 00347930 _____ C:\Users\user\Downloads\Flyer Einladung Museumsfest 2017.pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(4).pdf
2017-05-07 16:15 - 2017-05-07 16:15 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(4).pdf
2017-05-06 23:43 - 2017-05-16 23:35 - 00000000 ____D C:\Users\user\Desktop\Allgmeine Psychologie
2017-05-06 20:31 - 2017-05-06 23:39 - 00000000 ____D C:\Ordner Desktop
2017-05-06 20:30 - 2017-05-21 20:24 - 00000000 ____D C:\Users\user\Desktop\docs pdf
2017-05-06 16:34 - 2017-05-06 16:34 - 00099291 _____ C:\Users\user\Downloads\sobre-la-parejas-del-ayer-la-pareja-humana-su-psicologia-sus-conflictos-su-tratamiento.pdf
2017-05-06 16:25 - 2017-05-06 16:25 - 00213738 _____ C:\Users\user\Downloads\El poder y sus conflictos en la pareja humana.pdf
2017-05-06 16:20 - 2017-05-06 16:20 - 00038612 _____ C:\Users\user\Downloads\14_UO_RBY_UAH.pdf
2017-05-05 23:49 - 2017-05-05 23:49 - 01552534 _____ C:\Users\user\Downloads\Brainhat_Elsevier_left_right.pdf
2017-05-05 23:48 - 2017-05-05 23:48 - 01630036 _____ C:\Users\user\Downloads\brain facts.pdf
2017-05-04 14:11 - 2017-05-04 14:11 - 00789044 _____ C:\Users\user\Downloads\StatTut2_2.pdf
2017-05-04 12:32 - 2017-05-04 12:32 - 00557531 _____ C:\Users\user\Downloads\2.Phasen des Erwachsenwerdens(1).pdf
2017-05-04 12:30 - 2017-05-04 12:30 - 12188880 _____ C:\Users\user\Downloads\Berk_2011_S.641-649_Liebe.pdf
2017-05-04 01:09 - 2017-05-04 01:09 - 08457076 _____ C:\Users\user\Downloads\SK 04 KM_3617050319190.pdf
2017-05-03 21:03 - 2017-05-03 21:03 - 11816779 _____ C:\Users\user\Downloads\Somatosensorik+Schmerz_2017.pdf
2017-05-02 23:04 - 2017-05-02 23:04 - 00020456 _____ C:\Users\user\Downloads\20161102_wohnungsgeberbestaetigung.pdf
2017-05-02 20:09 - 2017-05-02 20:09 - 01172583 _____ C:\Users\user\Downloads\vl-statistik-II-ipu-17-2.pdf
2017-05-02 19:58 - 2017-05-02 19:58 - 01587063 _____ C:\Users\user\Downloads\Zielgruppen_Vortrag-Krull_Soziale-Phobie.pdf
2017-05-02 19:51 - 2017-05-02 19:52 - 22790583 _____ C:\Users\user\Downloads\Wahrnehmungseigenschaften + Allgemeine Sinnesphysiologie_2017(1).pdf
2017-05-02 19:51 - 2017-05-02 19:51 - 00260927 _____ C:\Users\user\Downloads\Überblick_Wahrnehmung+Handlung_2017(2).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(3).pdf
2017-05-02 19:44 - 2017-05-02 19:44 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(2).pdf
2017-05-02 19:19 - 2017-05-02 19:19 - 01409387 _____ C:\Users\user\Downloads\Denken1_2017(3).pdf
2017-05-02 19:11 - 2017-05-02 19:11 - 01886645 _____ C:\Users\user\Downloads\10 tips for writing a truly terrible journal article(1).pdf
2017-05-02 19:04 - 2017-05-02 19:04 - 08935575 _____ C:\Users\user\Downloads\APA_Chp-3_writing_clearly.pdf
2017-05-02 18:58 - 2017-05-02 18:58 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style(1).pdf
2017-05-02 18:54 - 2017-05-02 18:54 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen(1).pdf
2017-05-02 18:47 - 2017-05-02 18:47 - 04046470 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.6-Abbildungen.pdf
2017-05-02 18:43 - 2017-05-02 18:43 - 01960181 _____ C:\Users\user\Downloads\2017-05-02_Wiss_Schreiben_(4).pdf
2017-05-02 18:39 - 2017-05-02 18:39 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3)(1).pdf
2017-05-02 18:23 - 2017-05-02 18:23 - 05153453 _____ C:\Users\user\Downloads\2017-04-18_Wiss_Schreiben_(2).pdf
2017-05-02 18:20 - 2017-05-02 18:20 - 00013036 _____ C:\Users\user\Downloads\Semesterplan_Wiss_Schreiben_Gottwald(1).pdf
2017-05-02 18:06 - 2017-05-02 18:06 - 01612828 _____ C:\Users\user\Downloads\2017-04-11_Wiss_Schreiben_(1)(1).pdf
2017-05-02 14:26 - 2017-05-02 14:26 - 01118483 _____ C:\Users\user\Downloads\Denken3_2017(1).pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 10468371 _____ C:\Users\user\Downloads\APA_Chp-4_mechanics_of_style.pdf
2017-05-02 13:00 - 2017-05-02 13:00 - 03967901 _____ C:\Users\user\Downloads\DGP-Richtlinien_Kap.5-Tabellen.pdf
2017-05-02 12:59 - 2017-05-02 13:00 - 14147847 _____ C:\Users\user\Downloads\2017-04-25_Wiss_Schreiben_(3).pdf
2017-05-02 12:59 - 2017-05-02 12:59 - 01722272 _____ C:\Users\user\Downloads\Writing_without_bullshit_ch-1.pdf
2017-05-02 11:52 - 2017-05-02 11:53 - 04800083 _____ C:\Users\user\Downloads\folien14_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b.pdf
2017-05-02 11:48 - 2017-05-02 11:48 - 03917253 _____ C:\Users\user\Downloads\folien13_lernengedächtnis_ws201617_gedächtnissysteme_episodisch.pdf
2017-05-02 11:45 - 2017-05-02 11:45 - 02417602 _____ C:\Users\user\Downloads\folien12_lernengedächtnis_ws201617_gedächtnissysteme_episodisch_b_small.pdf
2017-05-02 11:43 - 2017-05-02 11:43 - 02122202 _____ C:\Users\user\Downloads\folien11_lernengedächtnis_ws201617_gedächtnissysteme_b.pdf
2017-05-02 11:28 - 2017-05-02 11:28 - 02349950 _____ C:\Users\user\Downloads\folien08_lernengedächtnis_ws201617_beobachtung.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme.pdf
2017-05-02 11:24 - 2017-05-02 11:24 - 02255161 _____ C:\Users\user\Downloads\folien09_lernengedächtnis_ws201617_gedächtnissysteme(1).pdf
2017-05-01 23:31 - 2017-05-01 23:31 - 00382638 _____ C:\Users\user\Downloads\dieo.pdf
2017-05-01 20:53 - 2017-05-01 20:53 - 00371721 _____ C:\Users\user\Downloads\Sem2_2017_stationäres_teilstationäres_setting.pptx (Schreibgeschützt).pdf
2017-05-01 20:51 - 2017-05-01 20:51 - 01034846 _____ C:\Users\user\Downloads\IPU_Sem1_SoSe2017(1).pdf
2017-05-01 20:48 - 2017-05-01 20:48 - 00212904 _____ C:\Users\user\Downloads\pflichthofer_rahmen.pdf
2017-05-01 20:47 - 2017-05-01 20:47 - 00064145 _____ C:\Users\user\Downloads\SoSe2017_Seminarübersicht_LS_Settings-2.pdf
2017-05-01 20:28 - 2017-05-01 20:28 - 00238777 _____ C:\Users\user\Downloads\Freud_ZUR EINLEITUNG DER BEHANDLUNG(1).pdf
2017-04-30 15:04 - 2017-04-30 15:04 - 00388608 _____ (Trend Micro Inc.) C:\Users\user\Downloads\hijackthis.exe
2017-04-29 21:22 - 2017-04-29 21:22 - 00057829 _____ C:\Users\user\Downloads\Icke Rockabilly.jpeg
2017-04-29 21:21 - 2017-04-29 21:21 - 00061756 _____ C:\Users\user\Downloads\Icke mütze.jpeg
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-29 12:46 - 2017-04-10 20:45 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype
2017-05-29 12:46 - 2017-01-24 00:55 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-05-29 10:47 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-29 10:47 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-29 10:46 - 2010-11-21 08:50 - 00703018 _____ C:\Windows\system32\perfh007.dat
2017-05-29 10:46 - 2010-11-21 08:50 - 00150570 _____ C:\Windows\system32\perfc007.dat
2017-05-29 10:46 - 2009-07-14 07:13 - 01628056 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-29 10:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-29 10:42 - 2017-01-24 00:44 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2017-05-29 10:40 - 2017-01-24 00:55 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-05-29 10:40 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-28 00:23 - 2017-01-27 00:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-28 00:21 - 2017-01-26 22:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-05-27 16:19 - 2017-02-23 16:32 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-05-26 13:57 - 2016-03-03 09:39 - 00000993 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-26 01:12 - 2017-03-13 12:52 - 00000000 ____D C:\Users\user\Desktop\Lernen und Gedächtnis
2017-05-24 23:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2017-05-23 22:45 - 2009-07-14 06:45 - 00424888 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-23 22:28 - 2016-03-03 10:27 - 01602336 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-05-23 22:28 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-23 22:22 - 2017-01-27 01:10 - 00000000 ____D C:\Users\user\AppData\LocalLow\Adobe
2017-05-23 22:21 - 2017-04-10 20:44 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-23 22:21 - 2017-02-20 22:08 - 00000000 ____D C:\Windows\system32\appmgmt
2017-05-23 22:20 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-23 22:20 - 2017-02-11 01:31 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-23 22:18 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-05-23 21:40 - 2017-04-10 21:27 - 00000000 ____D C:\Program Files (x86)\Skype
2017-05-23 21:40 - 2017-04-10 20:45 - 00000000 ____D C:\ProgramData\Skype
2017-05-23 14:21 - 2017-02-22 15:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-23 14:21 - 2017-01-24 00:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-23 11:41 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2017-05-23 11:19 - 2017-01-27 00:42 - 00000000 ____D C:\Users\user\AppData\Local\Adobe
2017-05-23 10:51 - 2017-01-24 00:44 - 00000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-23 10:51 - 2017-01-24 00:44 - 00000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-05-23 02:19 - 2017-01-23 19:54 - 00000000 ____D C:\Windows\system32\MRT
2017-05-23 02:18 - 2017-01-23 19:54 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-19 10:37 - 2017-01-24 00:55 - 00000000 ____D C:\Users\user\AppData\Local\Dropbox
2017-05-17 22:37 - 2017-01-29 16:25 - 00000000 ____D C:\Users\user\Desktop\Kripu
2017-05-17 18:20 - 2016-03-03 09:39 - 00000000 ____D C:\Users\user\AppData\Local\VirtualStore
2017-05-17 17:03 - 2017-04-12 16:07 - 00002220 _____ C:\Users\user\Documents\.Rhistory
2017-05-17 17:03 - 2017-04-12 16:07 - 00000000 ____D C:\Users\user\AppData\Roaming\RStudio
2017-05-17 17:03 - 2017-04-12 15:53 - 00045056 _____ C:\Users\user\AppData\Local\WebpageIcons.db
2017-05-17 17:03 - 2017-04-12 15:53 - 00000000 ____D C:\Users\user\AppData\Local\RStudio-Desktop
2017-05-17 03:42 - 2017-03-25 01:34 - 00000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics
2017-05-17 01:59 - 2017-01-24 00:55 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-16 23:46 - 2016-03-03 10:34 - 00000000 ____D C:\Program Files\Lenovo
2017-05-16 23:26 - 2016-03-03 10:28 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-05-16 23:25 - 2016-03-03 10:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-16 23:25 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2017-05-16 23:23 - 2016-03-03 10:28 - 00000000 ____D C:\ProgramData\Lenovo
2017-05-16 23:13 - 2016-03-03 10:30 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-05-16 23:13 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\System32\Tasks\TVT
2017-05-16 23:01 - 2016-03-03 10:36 - 00000000 ____D C:\Users\user\AppData\Local\Lenovo
2017-05-16 23:01 - 2016-03-03 10:33 - 00000000 ____D C:\Program Files (x86)\Intel
2017-05-16 23:01 - 2016-03-03 10:28 - 00000000 ____D C:\Windows\Downloaded Installations
2017-05-16 23:00 - 2010-11-21 08:49 - 00000000 ____D C:\Windows\system32\0407
2017-05-15 20:59 - 2017-03-13 16:46 - 00000000 ____D C:\Users\user\Desktop\Klinische Psychologie
2017-05-14 21:10 - 2016-03-03 10:30 - 00112136 _____ C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-13 20:20 - 2017-01-30 13:08 - 00000000 ____D C:\Users\user\Desktop\Bücher
2017-05-06 23:53 - 2017-04-27 13:36 - 00000000 ____D C:\Users\user\Desktop\Entwicklungspsychologie II
2017-05-02 23:02 - 2017-01-24 01:24 - 00000000 ___RD C:\Users\user\Dropbox
2017-04-30 16:24 - 2017-03-30 12:21 - 00000000 ____D C:\Users\user\Desktop\Psychoanalyse
2017-04-30 02:23 - 2017-04-26 22:40 - 00013186 ____H C:\Users\user\Desktop\~WRL0005.tmp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-04-12 15:53 - 2017-05-17 17:03 - 0045056 _____ () C:\Users\user\AppData\Local\WebpageIcons.db
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-24 16:14
==================== Ende von FRST.txt ============================
|
|
29.05.2017, 11:58
| #15 |
| | Problem mit launchpage.orgCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von user (29-05-2017 12:53:40)
Gestartet von C:\Users\user\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-03-03 07:39:15)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-254914080-1563877497-1754063145-500 - Administrator - Disabled)
Gast (S-1-5-21-254914080-1563877497-1754063145-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-254914080-1563877497-1754063145-1002 - Limited - Enabled)
user (S-1-5-21-254914080-1563877497-1754063145-1000 - Administrator - Enabled) => C:\Users\user
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat 8 Professional - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 8 Professional - English, Français, Deutsch) (Version: 8.0.0 - Adobe Systems)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Conexant 20672 SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.23.5 - Conexant)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.4 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Energie-Manager (HKLM-x32\...\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}) (Version: 6.68.10 - Lenovo Group Limited)
f.lux (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\Flux) (Version: - )
HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
HWiNFO64 Version 5.44 (HKLM\...\HWiNFO64_is1) (Version: 5.44 - Martin Malík - REALiX)
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (HKLM-x32\...\{B2CA6F37-1602-4823-81B5-0384B6888AA6}) (Version: 1.1.0.1147 - RICOH)
Integrated Camera TWAIN (HKLM-x32\...\{9CA0DEE4-E84B-466F-9B96-FC255F3A929F}) (Version: 1.0.11.1223 - Chicony Electronics Co.,Ltd.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Identity Protection Technology 1.2.32.0 (HKLM-x32\...\{2D793E41-F598-1014-9984-F3B169A93F79}) (Version: 1.2.32.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.1.80.1211 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden
Lenovo Patch Utility 64 bit (HKLM\...\{0369F866-2CE0-4EB9-B426-88FA122C6E82}) (Version: 1.3.0.9 - Lenovo Group Limited)
Lenovo Power Management Driver (Version: 1.67.12.24 - Lenovo) Hidden
Lenovo System Interface Driver (HKLM\...\LENOVO.SMIIF) (Version: 1.05 - )
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0053 - Lenovo)
Malwarebytes Version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.8067.2115 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM-x32\...\{EA9640BE-414E-4195-B53B-7905BF1A5A09}) (Version: 6.5.1.5 - Ericsson AB)
Mozilla Firefox 53.0.3 (x64 de) (HKLM\...\Mozilla Firefox 53.0.3 (x64 de)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7967.2073 - Microsoft Corporation) Hidden
R for Windows 3.3.3 (HKLM\...\R for Windows 3.3.3_is1) (Version: 3.3.3 - R Core Team)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
RICOH_Media_Driver_v2.14.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.14.18.01 - RICOH)
RStudio (HKLM-x32\...\RStudio) (Version: 1.0.136 - RStudio)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
ThinkPad Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4500 - Broadcom Corporation)
ThinkPad FullScreen Magnifier (HKLM\...\ThinkPad FullScreen Magnifier) (Version: 2.42 - )
ThinkPad UltraNav Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.19.14 - )
ThinkVantage Communications Utility (HKLM\...\{88C6A6D9-324C-46E8-BA87-563D14021442}_is1) (Version: 2.11.0.0 - Lenovo)
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version: - (c) 2006-2011, Tom Thielicke IT Solutions)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-254914080-1563877497-1754063145-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {1BA39388-650E-4A1B-8919-FA2417DC7A20} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
Task: {2061D355-ADB3-4C10-8CFF-7392DE14B781} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-01] (Lenovo)
Task: {21075B5D-47A9-42C3-9C09-F7A12B5E3A94} - System32\Tasks\{02509E97-4B3B-4CAA-A395-DCA643927681} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional\Setup.exe" -d "C:\Program Files (x86)\Adobe\Acrobat8\Adobe Acrobat 8 Professional"
Task: {419C784D-7B85-4A76-B4BD-BD13A8911F0E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-05-27] (Microsoft Corporation)
Task: {4963F5E8-79C4-4D87-AB02-F761137738E8} - System32\Tasks\{3B4B5D56-F47D-4642-AEEC-E9ADCB95385E} => pcalua.exe -a C:\Users\user\Downloads\APRO23_Win_ESD1_WWEFG.exe -d C:\Users\user\Downloads
Task: {6C0C3D89-2FA0-44BB-BAB1-DB3AF132BCC6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-27] ()
Task: {723F2AE2-0DAD-4A08-A909-5DC26B04C585} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-27] ()
Task: {7C00507B-742B-48A7-89B3-E84244B7816B} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [2016-04-14] (Lenovo Group Limited)
Task: {7FA5844D-8A50-4C0C-922B-69B8877BEECC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
Task: {89C28CEB-CCB1-481D-8836-DA56981EB603} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-19] (Piriform Ltd)
Task: {8CA0E647-3345-4B46-B9CE-02029F0EDDE1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {9DAD12DF-51A7-42AC-B819-6FBF86652100} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-27] (Microsoft Corporation)
Task: {A62A2AC4-8EDA-45DB-AAE8-85D9378C85B6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
Task: {B7A580AE-DAB7-42B1-85CF-70E7412AEC87} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2017-05-09] ()
Task: {B8B0DBFB-0EF2-43D6-BB97-85DD2781EDA3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-27] (Microsoft Corporation)
Task: {FBDC8C13-B2D0-4E5B-9085-81EDFDC39305} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-24] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\Download Codecs & Tools.lnk -> hxxp://www.codecs.com
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\Talk about Codecs.lnk -> hxxp://codecs.com/foru
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\X Codec Pack 2.7.4\Useful links\X Codec Pack homepage.lnk -> hxxp://www.xpcodecpack.com
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-01-27 00:12 - 2017-01-27 00:12 - 00959168 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-03-03 10:34 - 2016-04-14 07:08 - 00119808 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2017-05-26 14:04 - 2017-05-09 16:38 - 02270672 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-05-16 23:02 - 2010-10-26 10:40 - 00049056 ____N () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
2016-03-03 10:32 - 2016-03-02 00:52 - 00102904 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-05-16 23:13 - 2017-05-09 18:55 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2016-03-04 10:53 - 2011-05-26 18:17 - 00065576 ____R () C:\Program Files (x86)\Mobile Broadband drivers\WMCore\MBMDebug.dll
2017-04-26 15:19 - 2017-04-26 15:19 - 02005976 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-01-27 00:12 - 2017-01-27 00:12 - 00679624 _____ () C:\Users\user\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 00871744 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-05-17 01:59 - 2017-05-16 22:55 - 01787200 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-01-24 00:55 - 2017-04-26 02:38 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-01-24 00:55 - 2017-04-26 02:38 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01729360 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-05-17 01:59 - 2017-04-26 02:39 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-01-24 00:55 - 2017-04-26 02:40 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00060736 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-05-17 01:59 - 2017-04-26 02:38 - 00392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-05-17 01:59 - 2017-04-26 02:40 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-01-24 00:55 - 2017-05-16 23:00 - 00392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-05-15 19:41 - 2017-05-16 23:01 - 00082264 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-01-24 00:55 - 2017-04-26 02:39 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 01972024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-02-28 11:24 - 2017-05-16 23:01 - 00054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-01-24 00:55 - 2017-04-26 02:40 - 00349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-01-24 00:55 - 2017-05-16 23:01 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-05-17 01:59 - 2017-04-26 02:34 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-05-17 01:59 - 2017-05-16 23:00 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-01-24 00:55 - 2017-05-16 23:01 - 00030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-05-17 01:59 - 2017-04-26 02:43 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-05-17 01:59 - 2017-04-26 02:43 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-01-24 00:55 - 2017-05-16 23:01 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-04-07 22:56 - 2017-05-16 23:01 - 00023368 _____ () C:\Program Files (x86)\Dropbox\Client\wincrashpad.compiled._Crashpad.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-05-17 01:59 - 2017-05-16 23:00 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-02-02 22:40 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-254914080-1563877497-1754063145-1000\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-254914080-1563877497-1754063145-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{1AA28E10-C7D8-482F-900F-864248CD7E19}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{772D7558-1C7E-448F-B184-7938ED200FAF}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{65B668D3-C38A-4A87-8F02-A97F15C01B9B}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{3C5B016C-0C4A-415B-BFCC-89319F414AB3}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{A0D4CD40-CD3E-4453-BC25-FE460DC7647C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{D58D056A-C459-4195-8005-B11A55EE5A9C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{4FD2CDC5-1126-4497-9758-67D87291A232}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6815BD10-302A-4BAC-A0C7-B0B6959DF492}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{D1CAF029-B803-4139-887F-ECE594A59D31}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
==================== Wiederherstellungspunkte =========================
23-05-2017 22:23:51 Removed Microsoft Silverlight
26-05-2017 11:45:23 Windows Modules Installer
27-05-2017 16:17:06 Windows Update
28-05-2017 00:19:08 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: USB Device(VID_1f3a_PID_efe8)
Description: USB Device(VID_1f3a_PID_efe8)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: USB Devices
Service: usbUDisc
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/29/2017 12:52:57 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Ein Problem hat das Senden von Daten aus dem Programm zur Verbesserung der Benutzerfreundlichkeit an Microsoft verhindert (Fehler 80004005).
Error: (05/29/2017 12:48:30 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (05/29/2017 10:48:25 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\user\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (05/29/2017 10:48:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\user\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (05/29/2017 10:48:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\user\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (05/29/2017 10:48:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\user\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (05/29/2017 10:41:57 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/29/2017 10:39:21 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/29/2017 10:36:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (05/29/2017 09:59:42 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files\r\r-3.3.3\tcl\bin64\tk85.dll". Fehler in Manifest- oder Richtliniendatei "c:\program files\r\r-3.3.3\tcl\bin64\tk85.dll" in Zeile 9.
Der Wert "x64" des "processorArchitecture"-Attributs im assemblyIdentity-Element ist ungültig.
Systemfehler:
=============
Error: (05/29/2017 11:21:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 11:21:39 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\user\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (05/29/2017 11:21:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 11:21:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\user\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (05/29/2017 11:21:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 11:21:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\user\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (05/29/2017 11:21:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 11:21:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\user\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (05/29/2017 11:21:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 11:21:37 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\user\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 37%
Installierter physikalischer RAM: 8070.23 MB
Verfügbarer physikalischer RAM: 5031.23 MB
Summe virtueller Speicher: 16138.65 MB
Verfügbarer virtueller Speicher: 13192.85 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:49.62 GB) NTFS
Drive d: (18 08 2006 BURO) (CDROM) (Total:4.31 GB) (Free:0 GB) CDFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: C230CF92)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =========================
|
|
| Themen zu Problem mit launchpage.org |
| alten, anti, arbeit, ausführen, beitrag, chip, chip installer, einzelne, einzelnen, forum, gestalten, installer, launchpage.org, liebe, lieben, problem, schritt, ändern |
und 
und speichere die Logdatei auf Deinem Desktop.
Linear-Darstellung
