| |
| |||||||
Mülltonne: WIN7Pro Firefox Google suche ADS-WerbungWindows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne... |
13.01.2020, 03:00
| #1 |
 |  WIN7Pro Firefox Google suche ADS-Werbung Ausnahme für klein-gewerblich genutzter Rechner. Lieber Helfer, ich weis dass WIN7 bald keinen Support mehr haben wird, vielleicht bist Du trotzdem bereit mir zu helfen diesen Plagegeist zu beseitigen. Kurz nachdem ich auf meinem Lenovo P70 WIN7Pro (UEFI) neu aufgesetzt habe, habe ich den Fehler gemacht von irgendeine Webseite wie Chip, Computerbild.... oder so ähnlich ein Tool runterzuladen und beim installieren habe ich mir irgendwas ein gefangen das mir eine ADS-Werbung (ADS Werbung.jpg) vor den Suchergebnissen schaltet. Wieder etwas naiv versuche ich, diesen Plagegeist allein loszuwerden. Mit folgenden Tools (hier vom Trojaner-Bord) JRT, MBSetup, adwcleaner,sc-cleaner, esetsmartinstaller und mbam-setup (in welcher Reihenfolge weis ich nicht mehr) wollte ich dem Plagegeist loswerden. Ich habe keine ADS Werbung mehr meine Registry ist sauber alles supper Das war kurz nach Weihnachten. Nun ist die Werbung wieder da Zwischenzeitlich habe ich das Win7Pro auf Ultimate Upgrade durchgeführt. Eine Fehlermeldung RtsCM64 Code:
ATTFilter
Problemsignatur:
Problemereignisname: APPCRASH
Anwendungsname: RtsCM64.exe
Anwendungsversion: 1.0.0.91
Anwendungszeitstempel: 583d3c79
Fehlermodulname: StackHash_fc77
Fehlermodulversion: 6.1.7601.24540
Fehlermodulzeitstempel: 5ddf3f5f
Ausnahmecode: c0000374
Ausnahmeoffset: 00000000000bf232
Betriebsystemversion: 6.1.7601.2.1.0.256.1
Gebietsschema-ID: 1031
Zusatzinformation 1: fc77
Zusatzinformation 2: fc773ffb34ffff25ba6b670cb64aaff0
Zusatzinformation 3: 7a41
Zusatzinformation 4: 7a4143a2ef38095cb9054e4deaa6234b
Lesen Sie unsere Datenschutzbestimmungen online:
hxxp://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0407
Wenn die Onlinedatenschutzbestimmungen nicht verfügbar sind, lesen Sie unsere Datenschutzbestimmungen offline:
C:\windows\system32\de-DE\erofflps.txt
Eine Suche auf meinem Rechner hat eine WcInstaller.log Code:
ATTFilter
Detecting windows culture
23.12.2019 18:21:21 :-> Starting installer 4.9.2159.4024 with: .\WebCompanionInstaller.exe --partner=AE190201 --campaign=342x4478 --version=4.9.2159.4024 --prod --silent --partner=AE190201 --homepage=1 --search=1 --campaign=342x4478, Run as admin: True
Preparing for installing Web Companion
Failed to report progress in InitProgress: System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at hxxp://wc-tracking.lavasoft.com/Install.asmx that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.Net.WebException: The remote name could not be resolved: 'wc-tracking.lavasoft.com'
at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
--- End of inner exception stack trace ---
Server stack trace:
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout)
at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
Exception rethrown at [0]:
at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.Progress(ProgressInstallRequest request)
at WebCompanionInstaller.Utils.CommunicationUtils.InitProgressCounter(Int32 totalSteps, String msg)
23.12.2019 18:21:21 :-> Generating Machine and Install Id ...
23.12.2019 18:21:21 :-> Machine Id and Install Id has been generated
InstallationException failed Unknown step Exception System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at hxxp://wc-tracking.lavasoft.com/Install.asmx that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.Net.WebException: The remote name could not be resolved: 'wc-tracking.lavasoft.com'
at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
--- End of inner exception stack trace ---
Server stack trace:
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout)
at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
Exception rethrown at [0]:
at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.Progress(ProgressInstallRequest request)
at WebCompanionInstaller.Utils.CommunicationUtils.SendReport(String msg, Boolean bSendReport)
at WebCompanionInstaller.Utils.CommunicationUtils.SendReportIds(String machineId, String installId, String msg)
at WebCompanionInstaller.AppCore.GenerateInstallMachineIds.Report()
at WebCompanionInstaller.Controller.<>c__DisplayClass2e.<StepExecuter>b__2a()
at WebCompanionInstaller.Utils.InstallUtils.SafeCallInterruptable(Boolean bInterruptOnError, SafeCallFunction func)
Code:
ATTFilter
Detecting windows culture
23.12.2019 20:53:50 :-> Starting installer 4.9.2159.4024 with: .\WebCompanionInstaller.exe --partner=CH180901FF --version=4.9.2159.4024 --prod --silent --partner=CH180901FF --search=1 --homepage=1, Run as admin: True
Preparing for installing Web Companion
Failed to report progress in InitProgress: System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at hxxp://wc-tracking.lavasoft.com/Install.asmx that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.Net.WebException: The remote name could not be resolved: 'wc-tracking.lavasoft.com'
at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
--- End of inner exception stack trace ---
Server stack trace:
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout)
at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
Exception rethrown at [0]:
at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.Progress(ProgressInstallRequest request)
at WebCompanionInstaller.Utils.CommunicationUtils.InitProgressCounter(Int32 totalSteps, String msg)
23.12.2019 20:53:50 :-> Generating Machine and Install Id ...
23.12.2019 20:53:50 :-> Machine Id and Install Id has been generated
InstallationException failed Unknown step Exception System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at hxxp://wc-tracking.lavasoft.com/Install.asmx that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.Net.WebException: The remote name could not be resolved: 'wc-tracking.lavasoft.com'
at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
at System.Net.HttpWebRequest.GetRequestStream()
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
--- End of inner exception stack trace ---
Server stack trace:
at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream()
at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout)
at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs)
at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
Exception rethrown at [0]:
at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.WebCompanionInstaller.InstallTrackingService.InstallServiceSoap.Progress(ProgressRequest request)
at WebCompanionInstaller.InstallTrackingService.InstallServiceSoapClient.Progress(ProgressInstallRequest request)
at WebCompanionInstaller.Utils.CommunicationUtils.SendReport(String msg, Boolean bSendReport)
at WebCompanionInstaller.Utils.CommunicationUtils.SendReportIds(String machineId, String installId, String msg)
at WebCompanionInstaller.AppCore.GenerateInstallMachineIds.Report()
at WebCompanionInstaller.Controller.<>c__DisplayClass2e.<StepExecuter>b__2a()
at WebCompanionInstaller.Utils.InstallUtils.SafeCallInterruptable(Boolean bInterruptOnError, SafeCallFunction func)
Eine JRT.txt habe ich noch Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Ultimate x64
Ran by Lenovo (Administrator) on 26.12.2019 at 1:38:21,93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 16
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0BEYJJ07 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Z2X7P5H (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79C7H5MM (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYQQEX6P (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0BEYJJ07 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Z2X7P5H (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79C7H5MM (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYQQEX6P (Temporary Internet Files Folder)
Registry: 3
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{38ADDA57-1804-4A41-BA24-0D5A66162E01} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.12.2019 at 1:39:50,53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Ich habe jetzt nur Schritt 1: Systemscan mit FRST ausgeführt um nicht evtl. noch vorhandene andere Logdateien zu überschreiben. FRST.txt Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-01-2020
Ran by Lenovo (administrator) on LENOVO-PC (LENOVO 20ER0031MN) (12-01-2020 12:54:42)
Running from C:\Users\Lenovo\Downloads
Loaded Profiles: Lenovo (Available Profiles: Lenovo)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Englisch (USA)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(3Dconnexion SAM -> 3Dconnexion) C:\Program Files (x86)\3Dconnexion\3DxWare\3DxNLServer\bin\3dxnlserver.exe
(3Dconnexion SAM -> 3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3dxpiemenus.exe
(3Dconnexion SAM -> 3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxProfileServer.exe
(3Dconnexion SAM -> 3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxVirtualLCD.exe
(3Dconnexion SAM -> 3Dconnexion) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe
(3Dconnexion SAM -> 3Dconnexion, INC) C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe
(Allplan GmbH -> Nemetschek Allplan Systems GmbH) C:\Program Files\Nemetschek\AllplanUpdateLauncher 2015\AllplanUpdateLauncher.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Gelbe vom Ei GmbH -> ) C:\Windows\trustedlogos\TrustedLogos.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CamMute.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
(Lenovo -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\TpShocks.exe
(MagicISO, Inc.) [File not signed] C:\Program Files (x86)\MagicDisc\MagicDisc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [296648 2015-09-29] (LENOVO -> Lenovo Group Limited)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7822312 2015-09-22] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
HKLM\...\Run: [Unattend0000000001{FC32C17C-BDDD-4EC9-9C1A-9B84BE4E858A}] => C:\Windows\System32\oobe\info\SetScreenSaver.cmd [ ]
HKLM\...\Run: [Wed] => "C:\Program Files (x86)\Nobel\Overdeveloped.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKLM\...\Run: [Sluices] => "C:\Program Files (x86)\litle\Unloaders.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKLM\...\Run: [Timeworn] => "C:\Program Files (x86)\Burster\Overdeveloped.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [3DxWare Service] => C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\3DxService.exe [2482328 2019-12-05] (3Dconnexion SAM -> 3Dconnexion, INC)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178400 2015-09-05] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-07-21] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [StereoLinksInstall] => "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe" /install1
HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6422216 2015-10-19] (LENOVO -> Lenovo Group Limited)
HKLM-x32\...\Run: [Rhone] => "C:\Program Files (x86)\Nobel\Overdeveloped.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKLM-x32\...\Run: [Anan] => "C:\Program Files (x86)\litle\Unloaders.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKLM-x32\...\Run: [Turgid] => "C:\Program Files (x86)\Burster\Overdeveloped.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKU\S-1-5-21-2465389010-3666178087-1468583824-1000\...\Run: [physically] => "C:\Program Files (x86)\Nobel\Overdeveloped.exe" advawadvawadvawadva.advagadvagadvayadva.advapadvawadva/advalz2wm0wm1wadvam9wm1qp2qpadva2lz3lzwmhtadvamlc2ZVQIRKadvavRIzBgPR4badvaMA
HKU\S-1-5-21-2465389010-3666178087-1468583824-1000\...\MountPoints2: {4630119b-21f6-4e78-b5b3-6c560bc1f50d} - Q:\LenovoQDrive.cmd
HKU\S-1-5-21-2465389010-3666178087-1468583824-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\\Windows\\System32\\Ribbons.scr [241664 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-09] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{A324AC4C-2605-40C1-BF3C-926BD2A25975}] -> C:\windows\system32\SynaCP.dll [2016-12-28] (Synaptics Inc. -> Synaptics Incorporated.)
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [190176 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [165928 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Color Calibrator Tray.lnk [2019-12-20]
ShortcutTarget: Color Calibrator Tray.lnk -> C:\Program Files (x86)\X-Rite\PANTONE Color Calibrator\ColorCalibratorTray.exe (X-Rite Incorporated -> )
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2019-12-23]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07415649-E882-4011-AF72-0BFD6C392340} - System32\Tasks\fundable thabo ego => C:\Users\Lenovo\AppData\Local\Overdeveloped.exe
Task: {0D1690E5-50C3-41FB-B00C-D4B0B80CA13A} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\Thunderbolt.exe [363160 2015-11-05] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {11519E6B-A71D-430D-8E7A-2B50C54F58F1} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [340440 2016-03-22] (CyberLink Corp. -> CyberLink Corp.)
Task: {197F98A5-BA5A-4DCD-B4E7-88E5EFFAECCE} - System32\Tasks\RtsCM => C:\windows\RtsCM64.exe [225280 2017-04-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
Task: {1C37F046-E62A-4CB8-9D1B-005156324E11} - System32\Tasks\narcissism => C:\Program Files (x86)\Assen\murphey.exe
Task: {1EE85ED0-F839-4E5D-AACD-B0B90FDC7FCC} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1514784 2019-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {2007ADA9-2AE6-493E-80A1-DD70C5DAB834} - System32\Tasks\Microsoft\Internet Explorer\Frühere Versionen von Internet Explorer löschen => C:\windows\SYSTEM32\ie4uinit.EXE [728064 2019-11-19] (Microsoft Windows -> Microsoft Corporation)
Task: {2144C553-BBA7-4A61-BA8F-1FDB4DD0929E} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1579552 2016-05-26] (LENOVO -> )
Task: {272542E6-6FC3-4BBE-A083-1D7949C07221} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-03] (Google LLC -> Google LLC)
Task: {27771134-3B2D-449E-83D1-485E562222FE} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10920216 2018-09-06] (Lenovo -> Lenovo)
Task: {27B00420-3523-496F-A47D-E16AB87918AB} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\Thunderbolt.exe [363160 2015-11-05] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {2B53EF02-7ECD-430E-AF87-C41304B70DFA} - System32\Tasks\WebContent AutoUpdate 2015 => C:\Program Files\Nemetschek\Allplan\prg\NemDownloadHandler.exe [42904 2015-09-21] (Allplan GmbH -> Nemetschek Allplan Systems GmbH)
Task: {2CFC38BE-D7B5-4F45-9243-FF8D5A80E03A} - System32\Tasks\Lenovo\Lenovo PowerENGAGE Update => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {30A71CA8-4608-4B7D-9AA4-B6A8F2B256F2} - System32\Tasks\TVT\LaunchFR => C:\Program Files (x86)\Lenovo\Factory Recovery\FRReminder.exe [641024 2015-12-23] (TODO: <Company name>) [File not signed]
Task: {3A84CD16-9E11-4F35-A979-0813E3B8F07B} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {3AED59E6-2A27-439F-8D5B-FC990A2386D3} - System32\Tasks\kneedkneed => C:\Program Files (x86)\Nobel\Overdeveloped.exe
Task: {428F0A08-B160-4525-8B5F-308F076EB30E} - System32\Tasks\Opera scheduled Autoupdate 1577130537 => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe
Task: {49382AF6-F7D9-4761-A3C8-1FCD24885831} - System32\Tasks\influencing_brokeninfluencing_broken => C:\Users\Lenovo\AppData\Local\Unloaders.exe
Task: {5389F4BF-84DB-4742-BDBE-5E5406991363} - System32\Tasks\fundable thabo egofundable thabo ego => C:\Users\Lenovo\AppData\Local\Overdeveloped.exe
Task: {544E35B1-FD1D-4139-964B-F99089CE370C} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [331544 2018-09-06] (Lenovo -> )
Task: {5CAB7C6D-88EE-4D96-ADB9-C26D309E7E2E} - System32\Tasks\asserted_jardineasserted_jardine => C:\Program Files (x86)\Burster\Overdeveloped.exe
Task: {66DAD9F0-292E-49AF-B530-543C64F7CC45} - System32\Tasks\kneed => C:\Program Files (x86)\Nobel\Overdeveloped.exe
Task: {686F5A6E-5B81-453B-AEBC-2BC79F9E172A} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321240 2018-09-06] (Lenovo -> Lenovo)
Task: {6BD6142B-DCA3-4C5E-9028-EA426CE8678D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128536 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DD5ABDB-9970-4FD4-8860-49C7CC1A43BA} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2106456 2019-12-08] (NVIDIA Corporation -> )
Task: {710BCAD6-A216-468B-8E18-538CF709C7DA} - System32\Tasks\rippe-motelsrippe-motels => C:\Program Files (x86)\litle\Unloaders.exe
Task: {80BD7943-2C7E-46DB-A47C-36D72F4CB6B0} - System32\Tasks\Opera scheduled assistant Autoupdate 1577130539 => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe
Task: {83E82D9E-DA87-418D-AE03-4B443C1658E9} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo)
Task: {85363B81-C3FA-4D9D-A938-66D402EF683C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2050448 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {899E3406-517D-4B4B-AE41-7DB38215A328} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-03] (Google LLC -> Google LLC)
Task: {8C78042A-4B71-4EA1-9AFC-7AC0B7121D9B} - System32\Tasks\pripri => C:\Program Files (x86)\cashmere\cashmere.exe
Task: {8D8EEEB6-3229-45A8-B018-EE794F1A6888} - System32\Tasks\AutoUpdate Allplan 2015 => C:\Program Files\Nemetschek\Allplan\prg\NemDownloadHandler.exe [42904 2015-09-21] (Allplan GmbH -> Nemetschek Allplan Systems GmbH)
Task: {8DA823FB-C394-4B60-AEEB-8CB51424C850} - System32\Tasks\hushing piperhushing piper => C:\Program Files (x86)\Burster\Unloaders.exe
Task: {8F067F0A-F7CF-4C99-B2CC-ABE2F8E23586} - System32\Tasks\PMTask => C:\Program Files (x86)\ThinkPad\Utilities\PwmIdTsv.exe [3649736 2015-10-19] (LENOVO -> Lenovo Group Limited)
Task: {94E26DE1-EDD5-4DAF-AABA-4A4E125D23D1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24625520 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {99231BCA-3B9D-4CF6-A012-C1D614947D98} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [File not signed]
Task: {9D77D6D8-CE45-44F2-9BA2-FE14D72C2D14} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2050448 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9DCDE550-CB73-41C4-AA55-BDADCC52EFAD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB200E35-3735-45BD-BBAE-DDCBCDA305C1} - System32\Tasks\influencing_broken => C:\Users\Lenovo\AppData\Local\Unloaders.exe
Task: {AFED5A23-2E0B-4E94-ABA9-C09B44A59E58} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_pepper.exe [1453112 2020-01-10] (Adobe Inc. -> Adobe)
Task: {B1EC5D94-AB44-4622-AD5F-AE56F25F5555} - System32\Tasks\rippe-motels => C:\Program Files (x86)\litle\Unloaders.exe
Task: {B7B7A323-D504-4025-A3CC-7D08026B8357} - System32\Tasks\asserted_jardine => C:\Program Files (x86)\Burster\Overdeveloped.exe
Task: {B81E3722-C8DF-4552-9489-461D82A0FDDD} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [118552 2016-07-11] (CyberLink Corp. -> CyberLink)
Task: {BFA2ED50-AC55-466B-87DF-65F4C87D75BA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24625520 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {C02DEDEE-3378-4B77-BEF7-3902C358C839} - System32\Tasks\pri => C:\Program Files (x86)\cashmere\cashmere.exe
Task: {C465BFD1-F61C-4B66-80DD-1067C1A6DE93} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE6391A1-F182-4796-8E78-CC9C68F39542} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0861C71-53E0-4017-8BDB-56D3B03B70CA} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [1831064 2015-11-05] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {D22DA70F-D8C0-4785-91C5-37A28121C465} - System32\Tasks\hushing piper => C:\Program Files (x86)\Burster\Unloaders.exe
Task: {D76607C4-8072-49FD-9614-0461E89BAB7A} - System32\Tasks\TVT\TVSUUpdateTask_Weekly => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1579552 2016-05-26] (LENOVO -> )
Task: {D79C4323-17E1-46CA-9BA2-4F099CA92CFC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {D92C87DF-D755-4107-8F52-347A32F71BF5} - System32\Tasks\Lenovo Active Protection System => C:\windows\system32\TpShUI.exe [120424 2017-03-21] (Lenovo -> Lenovo.)
Task: {DE92CC85-9C2D-4FA4-AC28-324679E26F06} - System32\Tasks\Lenovo\Lenovo PowerENGAGE => C:\Program Files (x86)\Lenovo Registration\lenovoreg.exe [552992 2015-01-09] (Leader Technologies Inc -> Aviata Inc)
Task: {E72E75B4-565A-4015-A167-3B2B8635B745} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1514784 2019-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E754E1D0-033E-4645-8D75-6407B96A14B9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128536 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE3D8BE0-7BAC-4A65-A553-F842975F2C6E} - System32\Tasks\narcissismnarcissism => C:\Program Files (x86)\Assen\murphey.exe
Task: {EF427EA2-5C57-472F-A5B9-0637F1E0DAA2} - System32\Tasks\Color Calibrator Tray => C:/Program [Argument = Files (x86)/X-Rite/PANTONE Color Calibrator/ColorCalibratorTray.exe]
Task: {F118A9E0-F022-415D-AAD6-35416DBF10E8} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks [Argument = /run /TN "\Microsoft\Windows\Setup\gwx\refreshgwxconfig"]
Task: {FC26BE23-B381-4339-895E-DE693BA0D6DD} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2016-12-30] (CyberLink Corp. -> CyberLink Corp.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\AutoUpdate Allplan 2015.job => C:\Program Files\Nemetschek\Allplan\prg\NemDownloadHandler.exe7/f F:\Daten\Nemetschek\Allplan\Std\AllplanUpdate.inf
Task: C:\windows\Tasks\Lenovo Active Protection System.job => C:\windows\system32\TpShUI.exe
Task: C:\windows\Tasks\WebContent AutoUpdate 2015.job => C:\Program Files\Nemetschek\Allplan\prg\NemDownloadHandler.exe/f F:\Daten\Nemetschek\Allplan\Std\AllplanUpdate.inf /one hxxp:/autoupdate.allplan.com/Updates/Allplan/MyPlan/2015/WebContent.upd
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [S-1-5-21-2465389010-3666178087-1468583824-1000] => Proxy is enabled.
ProxyServer: [S-1-5-21-2465389010-3666178087-1468583824-1000] => 127.0.0.1:8003
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{559258A7-854E-4F4A-A14C-D68399E80D13}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{A46D6CFF-F6DC-4098-AD74-8032E4AEE027}: [DhcpNameServer] 192.168.178.1
ManualProxies: 1127.0.0.1:8003
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2465389010-3666178087-1468583824-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.msn.com/?pc=U453&ocid=U453DHP&osmkt=de-de
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {38ADDA57-1804-4A41-BA24-0D5A66162E01} URL =
SearchScopes: HKU\.DEFAULT -> {38ADDA57-1804-4A41-BA24-0D5A66162E01} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-11-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: f5hqpzlz.default
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\f5hqpzlz.default [2020-01-06]
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\xngzg4mf.default-release [2020-01-12]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-11-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-03] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-03] (Google LLC -> Google LLC)
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Notifications: Default -> hxxps://www.reddit.com; hxxps://www.youtube.com
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2020-01-12]
CHR Extension: (Präsentationen) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-06]
CHR Extension: (Docs) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-06]
CHR Extension: (Google Drive) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-06]
CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-06]
CHR Extension: (Tabellen) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-06]
CHR Extension: (Google Docs Offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-06]
CHR Extension: (Google Mail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-06]
CHR Extension: (Chrome Media Router) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-06]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AllplanUpdateLauncher 2015; C:\Program Files\Nemetschek\AllplanUpdateLauncher 2015\AllplanUpdateLauncher.exe [16280 2015-09-21] (Allplan GmbH -> Nemetschek Allplan Systems GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11164232 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2019-01-21] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [319536 2015-10-19] (Lenovo(Japan)Ltd. -> Lenovo.)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [164984 2016-02-13] (Intel Corporation - pGFX -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\windows\system32\igfxCUIService.exe [373760 2016-11-11] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-05] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [197320 2015-09-29] (LENOVO -> Lenovo Group Limited)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [114632 2015-07-14] (LENOVO -> Lenovo Group Limited)
S3 LenovoProdRegManager; C:\Program Files (x86)\Lenovo Registration\EngageService.exe [293416 2015-01-09] (Leader Technologies Inc -> Aviata, Inc.)
R2 LPlatSvc; C:\windows\system32\LPlatSvc.exe [774736 2017-09-05] (Lenovo -> Lenovo.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [337688 2018-09-06] (Lenovo -> Lenovo)
R2 Mgl3DCtlrRPCService; C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\Mgl3DCtlrRPCService.exe [167064 2019-12-05] (3Dconnexion SAM -> 3Dconnexion)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2016-02-08] (Intel Corporation-Wireless Connectivity Solutions -> )
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 NVWMI; C:\windows\system32\nvwmi64.exe [4777392 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [276168 2019-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736 2015-08-25] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ThunderboltService; C:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe [1831064 2015-11-05] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
R2 TrustedLogos; C:\windows\trustedlogos\TrustedLogos.exe [11328 2019-09-19] (Gelbe vom Ei GmbH -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3833248 2016-02-08] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)
S2 MBAMService; "C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe" [X]
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 3dxhid; C:\windows\System32\DRIVERS\3dxhid.sys [50032 2019-09-03] (3Dconnexion SAM -> 3Dconnexion SAM)
R3 btmaux; C:\windows\System32\DRIVERS\btmaux.sys [141800 2015-07-29] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 btmhsf; C:\windows\System32\DRIVERS\btmhsf.sys [1445688 2014-11-21] (Motorola Solutions Inc. -> Motorola Solutions, Inc.)
R3 e1dexpress; C:\windows\System32\DRIVERS\e1d62x64.sys [533496 2017-02-01] (Intel(R) INTELND1617 -> Intel Corporation)
R0 iaStorF; C:\windows\System32\drivers\iaStorF.sys [32240 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\windows\System32\DRIVERS\ibtusb.sys [309520 2016-02-10] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 KMJHidMini; C:\windows\System32\DRIVERS\3dxkmj.sys [18944 2019-09-03] (Microsoft Windows Hardware Compatibility Publisher -> 3Dconnextion Inc.)
R3 KMJShim; C:\windows\System32\DRIVERS\3dxshim.sys [7168 2019-09-03] (Microsoft Windows Hardware Compatibility Publisher -> 3Dconnextion Inc.)
R3 mcdbus; C:\windows\System32\DRIVERS\mcdbus.sys [255552 2009-02-24] (JiaPing Gan -> MagicISO, Inc.)
R3 mcdbus; C:\Windows\SysWOW64\DRIVERS\mcdbus.sys [255552 2009-02-24] (JiaPing Gan -> MagicISO, Inc.)
R3 MEIx64; C:\windows\System32\DRIVERS\TeeDriverx64.sys [179456 2015-09-01] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NETwNs64; C:\windows\System32\DRIVERS\Netwsw04.sys [3370248 2016-02-27] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R1 npcap; C:\windows\System32\DRIVERS\npcap.sys [69440 2019-11-02] (Insecure.Com LLC -> Insecure.Com LLC.)
S4 npcap_wifi; C:\windows\System32\DRIVERS\npcap.sys [69440 2019-11-02] (Insecure.Com LLC -> Insecure.Com LLC.)
R1 npf; C:\windows\System32\DRIVERS\npf.sys [69432 2019-11-02] (Insecure.Com LLC -> Insecure.Com LLC.)
R1 nvkflt; C:\windows\System32\DRIVERS\nvkflt.sys [317040 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcusbnet; C:\windows\System32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 RTSPER; C:\windows\System32\DRIVERS\RtsPer.sys [752856 2015-05-29] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\windows\System32\DRIVERS\rtsuvc.sys [3227648 2017-04-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 SGXEPC; C:\windows\System32\DRIVERS\sgx_driver.sys [56128 2018-08-06] (Intel Corporation -> Intel Corporation)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [33960 2015-08-25] (Synaptics Incorporated -> Synaptics Incorporated)
R1 SynaMetSMI; C:\windows\System32\DRIVERS\SynaSmi.sys [39736 2016-12-28] (Synaptics Inc. -> Windows (R) Win 7 DDK provider)
R3 SzCCID; C:\windows\System32\DRIVERS\SzCCID.sys [51352 2015-06-03] (AlcorMicro, Corp. -> Generic)
S3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 XtuAcpiDriver; C:\windows\System32\DRIVERS\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation -> Intel Corporation)
U4 npf_wifi; no ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-12 12:54 - 2020-01-12 12:55 - 000043634 _____ C:\Users\Lenovo\Downloads\FRST.txt
2020-01-12 12:54 - 2020-01-12 12:54 - 000000000 ____D C:\FRST
2020-01-12 12:53 - 2020-01-12 12:53 - 002573312 _____ (Farbar) C:\Users\Lenovo\Downloads\Nicht bestätigt 100404.crdownload
2020-01-12 12:52 - 2020-01-12 12:52 - 002573312 _____ (Farbar) C:\Users\Lenovo\Downloads\FRST64.exe
2020-01-10 22:38 - 2020-01-10 22:38 - 000650128 _____ C:\Users\Lenovo\Downloads\1451303039501-Electricity pylon.dwg
2020-01-10 22:09 - 2020-01-10 22:09 - 001207336 _____ (Adobe Inc) C:\Users\Lenovo\Downloads\flashplayer32pp_xa_install.exe
2020-01-10 22:09 - 2020-01-10 22:09 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2020-01-10 22:09 - 2020-01-10 22:09 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-01-10 22:09 - 2020-01-10 22:09 - 000004490 _____ C:\windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-01-10 21:26 - 2020-01-10 21:26 - 000000000 ____D C:\windows\SysWOW64\NV
2020-01-10 21:26 - 2020-01-10 21:26 - 000000000 ____D C:\windows\system32\NV
2020-01-10 20:30 - 2020-01-12 11:33 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-10 20:30 - 2020-01-10 20:30 - 000003296 ____N C:\bootsqm.dat
2020-01-10 18:48 - 2020-01-10 18:48 - 000151046 _____ C:\Users\Lenovo\Downloads\FAQ_DE_Allgemeine_Fragen_zu_Grafikkarten_und_Allplan.pdf
2020-01-10 03:32 - 2020-01-10 21:26 - 000003438 _____ C:\windows\system32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-10 03:32 - 2020-01-10 03:32 - 000000000 ____D C:\windows\system32\Drivers\NVIDIA Corporation
2020-01-10 03:32 - 2020-01-10 03:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-01-10 03:32 - 2019-11-05 20:59 - 000001951 _____ C:\windows\NvContainerRecovery.bat
2020-01-10 03:31 - 2019-12-08 22:26 - 001729440 _____ C:\windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-01-10 03:31 - 2019-12-08 22:26 - 001729440 _____ C:\windows\system32\vulkaninfo.exe
2020-01-10 03:31 - 2019-12-08 22:26 - 001329568 _____ C:\windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-01-10 03:31 - 2019-12-08 22:26 - 001329568 _____ C:\windows\SysWOW64\vulkaninfo.exe
2020-01-10 03:31 - 2019-12-08 22:25 - 027571328 _____ (NVIDIA Corporation) C:\windows\system32\nvrtum64.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 011843488 _____ (NVIDIA Corporation) C:\windows\system32\nvptxJitCompiler.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 010167736 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvptxJitCompiler.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 001079200 _____ C:\windows\system32\vulkan-1-999-0-0-0.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 001079200 _____ C:\windows\system32\vulkan-1.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 000937888 _____ C:\windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 000937888 _____ C:\windows\SysWOW64\vulkan-1.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 000449248 _____ (Khronos Group) C:\windows\system32\OpenCL.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 000353408 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll
2020-01-10 03:31 - 2019-12-08 22:25 - 000057872 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvpciflt.sys
2020-01-10 03:31 - 2019-12-08 22:24 - 126778064 _____ (NVIDIA Corp.) C:\windows\system32\nvoptix.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 040310400 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 029931384 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 029543024 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 025238472 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl32.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 022838928 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2020-01-10 03:31 - 2019-12-08 22:24 - 017461192 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 004994632 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 004450208 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 002075040 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001728128 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6444166.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001568480 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001491680 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6444166.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001483720 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001371856 _____ (NVIDIA Corporation) C:\windows\system32\nvfatbinaryLoader.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001145760 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 001065048 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvfatbinaryLoader.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000633432 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000545832 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000524456 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000474056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000429200 _____ C:\windows\system32\nvofapi64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000381056 _____ C:\windows\SysWOW64\nvofapi.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000317040 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvkflt.sys
2020-01-10 03:31 - 2019-12-08 22:24 - 000174152 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2020-01-10 03:31 - 2019-12-08 22:24 - 000153160 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2020-01-10 03:31 - 2019-12-08 22:23 - 040510424 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2020-01-10 03:31 - 2019-12-08 22:23 - 035380264 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcompiler.dll
2020-01-10 03:31 - 2019-12-08 22:23 - 015030928 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2020-01-10 03:31 - 2019-12-08 22:23 - 000528456 _____ (NVIDIA Corporation) C:\windows\system32\nvcbl64.dll
2020-01-10 03:31 - 2019-12-08 18:20 - 034363176 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2020-01-10 03:31 - 2019-12-08 18:20 - 018406736 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2020-01-10 03:31 - 2019-12-08 18:20 - 004249384 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2020-01-10 03:31 - 2019-12-07 03:44 - 000000671 _____ C:\windows\SysWOW64\nv-vk32.json
2020-01-10 03:31 - 2019-12-07 03:44 - 000000671 _____ C:\windows\system32\nv-vk64.json
2020-01-10 03:27 - 2020-01-10 03:28 - 408956944 _____ (NVIDIA Corporation) C:\Users\Lenovo\Downloads\441.66-quadro-desktop-notebook-win8-win7-64bit-international-whql.exe
2020-01-10 03:22 - 2020-01-10 03:22 - 000159703 _____ C:\Users\Lenovo\Downloads\FAQ_DE_Nvidia_Optimus_System (2).pdf
2020-01-10 03:21 - 2020-01-10 03:21 - 000159703 _____ C:\Users\Lenovo\Downloads\FAQ_DE_Nvidia_Optimus_System (1).pdf
2020-01-10 03:17 - 2020-01-10 03:17 - 000159703 _____ C:\Users\Lenovo\Downloads\FAQ_DE_Nvidia_Optimus_System.pdf
2020-01-10 01:45 - 2020-01-10 01:45 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\MAXON
2020-01-10 00:59 - 2020-01-10 00:59 - 003329225 _____ C:\Users\Lenovo\Downloads\Workstation.pdf
2020-01-09 16:30 - 2020-01-09 16:30 - 002859221 _____ C:\Users\Lenovo\Downloads\ElementConverter_1_0_0_9.zip
2020-01-09 01:26 - 2020-01-09 01:26 - 000000833 _____ C:\Users\Lenovo\Downloads\RtsCM64_Fehlermeldung.txt
2020-01-09 01:04 - 2020-01-09 01:04 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-01-09 00:53 - 2020-01-09 00:53 - 000000000 ____D C:\Users\Lenovo\Documents\Benutzerdefinierte Office-Vorlagen
2020-01-09 00:52 - 2020-01-09 00:52 - 000003270 _____ C:\Users\Lenovo\Downloads\TOR_Protokoll.txt
2020-01-09 00:48 - 2020-01-09 00:48 - 000000797 _____ C:\Users\Lenovo\Desktop\Start Tor Browser.lnk
2020-01-09 00:48 - 2020-01-09 00:48 - 000000000 ____D C:\Users\Lenovo\Desktop\Tor Browser
2020-01-09 00:20 - 2020-01-10 03:37 - 000000000 ____D C:\Users\Lenovo\Downloads\Allplan2015_komplett
2020-01-08 18:11 - 2020-01-08 18:11 - 000001090 _____ C:\Users\Public\Desktop\GTK DBF Editor.lnk
2020-01-08 18:11 - 2020-01-08 18:11 - 000001090 _____ C:\ProgramData\Desktop\GTK DBF Editor.lnk
2020-01-08 18:11 - 2020-01-08 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GTK DBF Editor
2020-01-08 18:11 - 2020-01-08 18:11 - 000000000 ____D C:\Program Files (x86)\GTK DBF Editor
2020-01-08 00:35 - 2020-01-09 01:23 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2020-01-07 21:23 - 2020-01-07 21:23 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Allplan_GmbH
2020-01-07 19:56 - 2020-01-07 19:59 - 000000000 ____D C:\Program Files\IBD
2020-01-07 19:33 - 2020-01-08 23:56 - 000000000 ____D C:\Users\Lenovo\Documents\Allright
2020-01-07 19:33 - 2020-01-07 19:33 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Nemetschek Allplan GmbH
2020-01-07 19:24 - 2020-01-07 19:24 - 000002184 _____ C:\Users\Public\Desktop\Allplan 2014 Baukosten.lnk
2020-01-07 19:24 - 2020-01-07 19:24 - 000002184 _____ C:\ProgramData\Desktop\Allplan 2014 Baukosten.lnk
2020-01-07 19:24 - 2020-01-07 19:24 - 000000000 ____D C:\Program Files (x86)\nemetschek
2020-01-07 19:24 - 2020-01-07 19:19 - 000000242 _____ C:\windows\allright.1
2020-01-07 19:24 - 2009-10-20 14:30 - 000003545 _____ C:\windows\SysWOW64\dir.txt
2020-01-07 19:24 - 2009-01-27 12:18 - 006015744 _____ (combit GmbH) C:\windows\SysWOW64\cull13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 002338560 _____ (combit GmbH) C:\windows\SysWOW64\culs13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 002190080 _____ (combit GmbH) C:\windows\SysWOW64\cuct13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 001612544 _____ (combit GmbH) C:\windows\SysWOW64\cubr13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 001037568 _____ (combit GmbH) C:\windows\SysWOW64\cull1300.lng
2020-01-07 19:24 - 2009-01-27 12:18 - 001035008 _____ (combit GmbH) C:\windows\SysWOW64\cmll1300.lng
2020-01-07 19:24 - 2009-01-27 12:18 - 000998656 _____ (combit GmbH) C:\windows\SysWOW64\cmll13bc.llx
2020-01-07 19:24 - 2009-01-27 12:18 - 000903936 _____ (combit GmbH) C:\windows\SysWOW64\cudw13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 000795904 _____ (combit GmbH) C:\windows\SysWOW64\cull13ex.llx
2020-01-07 19:24 - 2009-01-27 12:18 - 000516864 _____ (combit GmbH) C:\windows\SysWOW64\cuut13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 000500480 _____ (combit GmbH) C:\windows\SysWOW64\cupr13.dll
2020-01-07 19:24 - 2009-01-27 12:18 - 000447744 _____ (combit GmbH) C:\windows\SysWOW64\cull13o.ocx
2020-01-07 19:24 - 2009-01-27 12:18 - 000427264 _____ (combit GmbH) C:\windows\SysWOW64\cmll13o.ocx
2020-01-07 19:24 - 2009-01-27 12:18 - 000356608 _____ (combit GmbH) C:\windows\SysWOW64\cmll13pw.llx
2020-01-07 19:24 - 2009-01-27 12:18 - 000336640 _____ (combit GmbH) C:\windows\SysWOW64\cmll13oc.llx
2020-01-07 19:24 - 2009-01-27 12:18 - 000222024 _____ (combit GmbH) C:\windows\SysWOW64\cmll13si.llx
2020-01-07 19:24 - 2009-01-27 12:18 - 000070912 _____ (combit GmbH) C:\windows\SysWOW64\cmmx02.cpl
2020-01-07 19:24 - 2009-01-27 12:18 - 000070912 _____ () C:\windows\SysWOW64\ListLabel13JNI.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 005653248 _____ (combit GmbH) C:\windows\SysWOW64\cmll13.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 002262272 _____ (combit GmbH) C:\windows\SysWOW64\cmls13.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 002154752 _____ (combit GmbH) C:\windows\SysWOW64\cmct13.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 002035360 _____ (combit GmbH) C:\windows\SysWOW64\cmll13xl.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 001571072 _____ (combit GmbH) C:\windows\SysWOW64\cmbr13.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 000892160 _____ (combit GmbH) C:\windows\SysWOW64\cmmx02.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 000877824 _____ (combit GmbH) C:\windows\SysWOW64\cmdw13.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 000771328 _____ (combit GmbH) C:\windows\SysWOW64\cmll13ex.llx
2020-01-07 19:24 - 2009-01-27 12:17 - 000488704 _____ (combit GmbH) C:\windows\SysWOW64\cmut13.dll
2020-01-07 19:24 - 2009-01-27 12:17 - 000479488 _____ (combit GmbH) C:\windows\SysWOW64\cmpr13.dll
2020-01-07 19:24 - 2008-10-28 14:09 - 000076800 _____ (combit GmbH) C:\windows\SysWOW64\cmls1300.lng
2020-01-07 19:24 - 2008-10-28 10:32 - 000483328 _____ (combit GmbH, www.combit.net) C:\windows\SysWOW64\listlabel13VS2005.dll
2020-01-07 19:24 - 2008-10-28 10:32 - 000483328 _____ (combit GmbH, www.combit.net) C:\windows\SysWOW64\listlabel13unicodeVS2005.dll
2020-01-07 19:24 - 2008-10-28 10:31 - 000483328 _____ (combit GmbH, www.combit.net) C:\windows\SysWOW64\listlabel13unicode.dll
2020-01-07 19:24 - 2008-10-28 10:31 - 000475136 _____ (combit GmbH, www.combit.net) C:\windows\SysWOW64\ListLabel13.dll
2020-01-07 19:24 - 2008-08-20 11:17 - 000076800 _____ (combit GmbH) C:\windows\SysWOW64\culs1300.lng
2020-01-07 19:24 - 2007-12-18 11:48 - 000202192 _____ (combit GmbH) C:\windows\SysWOW64\cmll13v.ocx
2020-01-07 19:24 - 2007-12-18 11:47 - 000644480 _____ (combit GmbH) C:\windows\SysWOW64\cmll13eu.llx
2020-01-07 19:24 - 2007-12-18 11:47 - 000637376 _____ (combit GmbH) C:\windows\SysWOW64\cmll13bm.llx
2020-01-07 19:24 - 2007-12-18 11:47 - 000551888 _____ C:\windows\SysWOW64\cmmx0200.lng
2020-01-07 19:24 - 2007-12-18 11:46 - 002475984 _____ (combit GmbH) C:\windows\SysWOW64\cmll13ht.llx
2020-01-07 19:24 - 2007-12-18 11:46 - 000042448 _____ (combit GmbH) C:\windows\SysWOW64\cmll13sx.dll
2020-01-07 19:24 - 2007-12-18 11:45 - 000529872 _____ (combit GmbH) C:\windows\SysWOW64\llview13.exe
2020-01-07 19:24 - 2007-12-18 11:45 - 000234960 _____ (combit GmbH) C:\windows\SysWOW64\cmll13fx.ocx
2020-01-07 19:24 - 2007-12-18 11:45 - 000206360 _____ (combit GmbH) C:\windows\SysWOW64\cmll13ox.ocx
2020-01-07 19:24 - 2007-12-18 11:45 - 000165328 _____ (combit GmbH) C:\windows\SysWOW64\cmll13r.ocx
2020-01-07 19:24 - 2007-11-21 09:15 - 000044032 _____ (combit GmbH, www.combit.net) C:\windows\SysWOW64\listlabel13WPFControls.dll
2020-01-07 19:24 - 2007-09-10 11:27 - 002127345 _____ C:\windows\SysWOW64\cmLL1300.chm
2020-01-07 19:24 - 2004-06-02 10:34 - 000008277 _____ C:\windows\SysWOW64\cmll13si.chm
2020-01-07 19:19 - 2020-01-07 21:13 - 000001570 _____ C:\windows\Allright.ini
2020-01-07 18:38 - 2020-01-07 18:38 - 000266871 _____ C:\Users\Lenovo\Downloads\AS SSD Benchmark.zip
2020-01-07 18:38 - 2020-01-07 18:38 - 000000000 ____D C:\Users\Lenovo\Downloads\AS SSD Benchmark
2020-01-07 16:50 - 2020-01-07 16:50 - 016903422 _____ C:\Users\Lenovo\Downloads\aircrack-ng-1.5.2-win.zip
2020-01-07 16:43 - 2017-10-01 16:04 - 001818360 _____ C:\Users\Lenovo\Desktop\Allplan Wiki » SketchUp-Modelle_foer_Allplan_aufbereite.zip
2020-01-07 16:42 - 2019-03-21 00:45 - 000094178 _____ C:\Users\Lenovo\Downloads\AKD-73669849006.pdf
2020-01-07 14:24 - 2020-01-07 14:24 - 000000000 ____D C:\Users\Lenovo\Downloads\REWI 7.0
2020-01-07 14:21 - 2008-06-04 11:08 - 002164736 _____ C:\Users\Lenovo\Desktop\kostenermittlung_080519.xls
2020-01-07 14:12 - 2020-01-07 14:12 - 000000000 ____D C:\Users\Lenovo\Desktop\Die Schallsoftware
2020-01-07 14:12 - 2020-01-07 14:12 - 000000000 ____D C:\Users\Lenovo\Desktop\Baunormendienst
2020-01-07 14:10 - 2020-01-07 14:10 - 000000000 ____D C:\Users\Lenovo\Desktop\Cochin LT Std
2020-01-07 14:10 - 2020-01-07 14:10 - 000000000 ____D C:\Users\Lenovo\Desktop\Camtasia Studio
2020-01-07 14:10 - 2020-01-07 14:10 - 000000000 ____D C:\Users\Lenovo\Desktop\Autoradio coder
2020-01-07 14:10 - 2020-01-07 14:10 - 000000000 ____D C:\Users\Lenovo\Desktop\Ausschreibungstexte Knau u Rigips
2020-01-07 14:08 - 2020-01-07 14:08 - 000000000 ____D C:\Users\Lenovo\Desktop\Camtasia Studio v6.0 mit Keygen
2020-01-07 14:07 - 2013-03-09 07:39 - 042321621 _____ C:\Users\Lenovo\Desktop\Adobe Premiere Pro CS6 - Schritt für Schritt zum perfekten Film - R.pdf
2020-01-07 13:43 - 2020-01-09 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digitale Bibliothek 4
2020-01-07 13:43 - 2020-01-07 13:43 - 000000000 ____D C:\Users\Lenovo\Documents\Digibib4
2020-01-07 13:12 - 2017-12-27 02:21 - 000854072 _____ (Simon Tatham) C:\Users\Lenovo\Desktop\putty.exe
2020-01-07 12:24 - 2014-02-26 12:46 - 000035433 _____ C:\Users\Lenovo\Desktop\bookmarks-2014-02-26.json
2020-01-07 03:00 - 2020-01-07 03:00 - 000000000 ____D C:\Program Files (x86)\MSXML 4.0
2020-01-06 23:44 - 2020-01-06 23:44 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Google
2020-01-06 15:25 - 2020-01-06 15:25 - 000049002 _____ C:\Users\Lenovo\Downloads\60_nachbarzustimmung_zum_bauantrag.pdf
2020-01-06 15:25 - 2020-01-06 15:25 - 000049002 _____ C:\Users\Lenovo\Downloads\60_nachbarzustimmung_zum_bauantrag (1).pdf
2020-01-06 13:21 - 2020-01-06 13:21 - 000401886 _____ C:\Users\Lenovo\Downloads\BE_Baugenehmigung_nurAusdruck0000131885.pdf
2020-01-06 12:27 - 2020-01-06 12:27 - 000229113 _____ C:\Users\Lenovo\Downloads\BE_Abgang0000131874.pdf
2020-01-06 12:24 - 2020-01-06 12:24 - 000401885 _____ C:\Users\Lenovo\Downloads\BE_Baugenehmigung_nurAusdruck0000131873.pdf
2020-01-06 02:57 - 2020-01-09 21:49 - 000002235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-06 02:57 - 2020-01-09 21:49 - 000002194 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-06 02:57 - 2020-01-09 21:49 - 000002194 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-01-06 02:35 - 2020-01-06 02:35 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Nemetschek
2020-01-06 02:04 - 2020-01-06 02:04 - 000001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-01-06 02:04 - 2020-01-06 02:04 - 000001212 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2020-01-06 02:04 - 2020-01-06 02:04 - 000001212 _____ C:\ProgramData\Desktop\Mozilla Thunderbird.lnk
2020-01-06 02:04 - 2020-01-06 02:04 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Thunderbird
2020-01-06 02:04 - 2020-01-06 02:04 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Thunderbird
2020-01-06 02:04 - 2020-01-06 02:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-01-06 02:04 - 2020-01-06 02:03 - 040827200 _____ (Mozilla) C:\Users\Lenovo\Downloads\Thunderbird Setup 68.3.1.exe
2020-01-06 01:54 - 2018-12-04 08:09 - 000152688 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2020-01-06 01:45 - 2020-01-06 01:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-01-06 01:44 - 2020-01-06 01:44 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2020-01-06 01:44 - 2020-01-06 01:44 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2020-01-06 01:43 - 2020-01-10 20:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-01-06 01:43 - 2020-01-10 20:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-01-06 01:43 - 2020-01-06 01:43 - 000000947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-01-06 01:43 - 2020-01-06 01:43 - 000000935 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-01-06 01:43 - 2020-01-06 01:43 - 000000935 _____ C:\ProgramData\Desktop\Firefox.lnk
2020-01-06 01:43 - 2020-01-06 01:43 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Mozilla
2020-01-06 01:43 - 2020-01-06 01:43 - 000000000 ____D C:\ProgramData\Mozilla
2020-01-06 01:42 - 2020-01-06 01:42 - 000319824 _____ (Mozilla) C:\Users\Lenovo\Downloads\Firefox Installer.exe
2020-01-06 01:40 - 2020-01-06 01:40 - 000023892 _____ C:\Users\Lenovo\Documents\bookmarks.html
2020-01-06 01:36 - 2020-01-06 01:36 - 000000000 ____D C:\Users\Lenovo\Documents\Nemetschek
2020-01-06 01:35 - 2020-01-11 11:59 - 000000638 _____ C:\windows\Tasks\WebContent AutoUpdate 2015.job
2020-01-06 01:35 - 2020-01-07 08:55 - 000000482 _____ C:\windows\Tasks\AutoUpdate Allplan 2015.job
2020-01-06 01:35 - 2020-01-06 01:37 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Nemetschek
2020-01-06 01:35 - 2020-01-06 01:35 - 000003642 _____ C:\windows\system32\Tasks\WebContent AutoUpdate 2015
2020-01-06 01:35 - 2020-01-06 01:35 - 000003142 _____ C:\windows\system32\Tasks\AutoUpdate Allplan 2015
2020-01-06 01:35 - 2020-01-06 01:35 - 000001898 _____ C:\Users\Public\Desktop\Allmenu 2015.lnk
2020-01-06 01:35 - 2020-01-06 01:35 - 000001898 _____ C:\ProgramData\Desktop\Allmenu 2015.lnk
2020-01-06 01:35 - 2020-01-06 01:35 - 000001891 _____ C:\Users\Public\Desktop\Allplan 2015.lnk
2020-01-06 01:35 - 2020-01-06 01:35 - 000001891 _____ C:\ProgramData\Desktop\Allplan 2015.lnk
2020-01-06 01:34 - 2020-01-07 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nemetschek
2020-01-06 01:32 - 2020-01-06 01:35 - 000000000 ____D C:\Program Files\Nemetschek
2020-01-06 01:32 - 2020-01-06 01:34 - 000000000 ____D C:\ProgramData\Nemetschek
2020-01-06 01:32 - 2020-01-06 01:32 - 000000000 ____D C:\windows\Crystal
2020-01-06 01:32 - 2015-09-21 14:03 - 000124824 _____ (Microsoft Corporation) C:\windows\SysWOW64\msstdfmt.dll
2020-01-06 01:32 - 2015-09-21 14:03 - 000095128 _____ (Microsoft Corporation) C:\windows\SysWOW64\Atl71.dll
2020-01-06 01:32 - 2015-09-21 14:03 - 000071576 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFC71DEU.DLL
2020-01-06 01:32 - 2015-09-21 14:03 - 000067480 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFC71ITA.DLL
2020-01-06 01:32 - 2015-09-21 14:03 - 000067480 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFC71FRA.DLL
2020-01-06 01:32 - 2015-09-21 14:03 - 000067480 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFC71ESP.DLL
2020-01-06 01:32 - 2015-09-21 14:03 - 000063384 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFC71ENU.DLL
2020-01-06 01:32 - 2015-09-21 14:03 - 000048536 _____ (Microsoft Corporation) C:\windows\SysWOW64\FLXGDDE.DLL
2020-01-06 01:32 - 2015-09-21 13:56 - 005356952 _____ (Seagate Software, Inc.) C:\windows\SysWOW64\crpe32.dll
2020-01-06 01:32 - 2015-09-21 13:56 - 000685464 _____ (Seagate Software, Inc.) C:\windows\SysWOW64\cr2c70de.dll
2020-01-06 01:32 - 2015-09-21 13:56 - 000419224 _____ (Seagate Software, Inc) C:\windows\SysWOW64\cpeaut32.dll
2020-01-06 01:32 - 2015-09-21 13:56 - 000189336 _____ (Seagate Software, Information Management Group, Inc.) C:\windows\SysWOW64\crpaig32.dll
2020-01-06 01:32 - 2015-09-21 13:56 - 000177560 _____ (Seagate Software, Inc) C:\windows\SysWOW64\P2smon.dll
2020-01-06 01:32 - 2015-09-21 13:56 - 000024984 _____ ( ) C:\windows\SysWOW64\implode.dll
2020-01-06 01:32 - 2014-10-07 09:29 - 000244232 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSFLXGRD.OCX
2020-01-06 01:32 - 2014-10-07 09:29 - 000224016 _____ (Microsoft Corporation) C:\windows\SysWOW64\TABCTL32.OCX
2020-01-06 01:32 - 2004-03-09 16:45 - 000152848 _____ (Microsoft Corporation) C:\windows\SysWOW64\COMDLG32.OCX
2020-01-06 01:28 - 2020-01-06 01:28 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-01-05 23:25 - 2020-01-05 23:25 - 022851472 _____ (Malwarebytes ) C:\Users\Lenovo\Downloads\mbam-setup-2.2.1.1043 (1).exe
2020-01-05 23:22 - 2020-01-05 23:22 - 000259584 _____ (OldTimer Tools) C:\Users\Lenovo\Downloads\OTH (1).scr
2020-01-05 22:15 - 2020-01-05 22:15 - 002870984 _____ (ESET) C:\Users\Lenovo\Downloads\esetsmartinstaller_deu (1).exe
2020-01-05 22:13 - 2020-01-05 22:13 - 000001876 _____ C:\Users\Lenovo\Desktop\sc-cleaner.txt
2020-01-05 22:12 - 2020-01-05 22:12 - 000001867 _____ C:\Users\Lenovo\Desktop\JRT.txt
2020-01-05 22:06 - 2020-01-05 22:06 - 008237744 _____ (Malwarebytes) C:\Users\Lenovo\Downloads\adwcleaner_8.0.1(1).exe
2020-01-05 22:05 - 2020-01-05 22:05 - 007025360 _____ (Malwarebytes) C:\Users\Lenovo\Downloads\adwcleaner_7.3.exe
2020-01-05 19:05 - 2020-01-05 19:05 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk
2020-01-05 19:05 - 2020-01-05 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-01-05 19:03 - 2020-01-05 19:03 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-01-05 18:59 - 2020-01-05 18:59 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-01-05 17:58 - 2020-01-08 00:39 - 000356352 _____ C:\Users\Lenovo\Documents\Database1.accdb
2020-01-05 17:40 - 2020-01-12 12:41 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-05 17:40 - 2020-01-05 17:40 - 000002883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002862 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002857 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002811 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002805 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002785 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002777 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000002769 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-01-05 17:40 - 2020-01-05 17:40 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2020-01-05 17:40 - 2020-01-05 17:40 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2020-01-05 17:39 - 2020-01-06 01:28 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2020-01-05 17:39 - 2020-01-05 17:39 - 000000000 ____D C:\windows\PCHEALTH
2020-01-05 17:39 - 2020-01-05 17:39 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2020-01-05 17:39 - 2020-01-05 17:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2020-01-05 17:38 - 2020-01-12 12:40 - 000000000 ____D C:\Program Files\Microsoft Office
2020-01-05 17:38 - 2020-01-05 17:49 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Microsoft Help
2020-01-05 17:38 - 2020-01-05 17:38 - 000000000 __RHD C:\MSOCache
2020-01-05 00:06 - 2020-01-05 00:06 - 000000000 ____D C:\CrystalDiskInfoPortable
2020-01-04 01:17 - 2020-01-05 00:05 - 000000000 ____D C:\Users\Lenovo\Downloads\CrystalDiskInfoPortable
2020-01-04 01:16 - 2020-01-04 01:16 - 006095328 _____ (PortableApps.com) C:\Users\Lenovo\Downloads\CrystalDiskInfoPortable_8.3.2.paf.exe
2020-01-04 01:16 - 2020-01-04 01:16 - 006095328 _____ (PortableApps.com) C:\Users\Lenovo\Downloads\CrystalDiskInfoPortable_8.3.2.paf (1).exe
2020-01-03 22:43 - 2020-01-06 02:57 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Google
2020-01-03 22:43 - 2020-01-03 22:43 - 000003546 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-03 22:43 - 2020-01-03 22:43 - 000003418 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-03 22:43 - 2020-01-03 22:43 - 000000000 ____D C:\Program Files (x86)\Google
2019-12-27 19:12 - 2020-01-06 00:35 - 000000000 ____D C:\Program Files\CalyxVPN
2019-12-27 19:12 - 2019-12-27 19:14 - 000000000 ____D C:\Users\Lenovo\AppData\Local\leap
2019-12-27 19:11 - 2020-01-06 00:35 - 000000000 ____D C:\Program Files\RiseupVPN
2019-12-27 19:11 - 2019-12-27 19:11 - 000000000 ____D C:\Users\Lenovo\Downloads\installers-master
2019-12-27 19:09 - 2019-12-27 19:11 - 121212596 _____ C:\Users\Lenovo\Downloads\installers-master.zip
2019-12-27 13:16 - 2019-12-27 13:50 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Wireshark
2019-12-27 13:15 - 2019-12-27 13:15 - 000001797 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2019-12-27 13:14 - 2019-12-27 13:14 - 000003098 _____ C:\windows\system32\Tasks\npcapwatchdog
2019-12-27 13:13 - 2019-12-27 13:14 - 000000000 ____D C:\Program Files\Npcap
2019-12-27 13:13 - 2019-12-27 13:13 - 000000000 ____D C:\windows\SysWOW64\Npcap
2019-12-27 13:13 - 2019-12-27 13:13 - 000000000 ____D C:\windows\system32\Npcap
2019-12-27 13:12 - 2019-12-27 13:15 - 000000000 ____D C:\Program Files\Wireshark
2019-12-27 13:07 - 2019-12-27 13:08 - 069147616 _____ (Wireshark development team) C:\Users\Lenovo\Downloads\Wireshark-win64-3.2.0.exe
2019-12-27 12:42 - 2019-12-27 12:56 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Microsoft Games
2019-12-27 12:32 - 2019-12-27 12:32 - 000000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2019-12-26 15:48 - 2019-12-26 16:04 - 000000000 ___HD C:\windows\msdownld.tmp
2019-12-26 14:49 - 2020-01-09 00:48 - 000000845 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2019-12-26 14:48 - 2019-12-26 14:48 - 067518368 _____ C:\Users\Lenovo\Downloads\torbrowser-install-win64-9.0.2_de.exe
2019-12-26 02:47 - 2020-01-09 00:47 - 000000000 ____D C:\Users\Lenovo\Downloads\Key
2019-12-26 01:46 - 2019-12-26 01:46 - 002870984 _____ (ESET) C:\Users\Lenovo\Downloads\esetsmartinstaller_deu.exe
2019-12-26 01:46 - 2019-12-26 01:46 - 000000000 ____D C:\Program Files (x86)\ESET
2019-12-26 01:42 - 2019-12-26 01:42 - 000472016 _____ (Bleeping Computer, LLC) C:\Users\Lenovo\Downloads\sc-cleaner.exe
2019-12-26 01:40 - 2019-12-26 01:40 - 000003592 _____ C:\Users\Lenovo\Downloads\JRT.txt
2019-12-26 01:37 - 2019-12-26 01:37 - 001790024 _____ (Malwarebytes) C:\Users\Lenovo\Downloads\JRT.exe
2019-12-26 01:34 - 2019-12-26 01:34 - 001883976 _____ (Malwarebytes) C:\Users\Lenovo\Downloads\MBSetup(1).exe
2019-12-26 01:29 - 2019-12-26 01:29 - 001883976 _____ (Malwarebytes) C:\Users\Lenovo\Downloads\MBSetup.exe
2019-12-26 01:28 - 2019-12-26 01:28 - 008237744 _____ (Malwarebytes) C:\Users\Lenovo\Downloads\adwcleaner_8.0.1.exe
2019-12-26 01:20 - 2019-12-26 01:21 - 000000000 ____D C:\AdwCleaner
2019-12-26 01:04 - 2019-12-26 01:04 - 000000000 ___SD C:\windows\system32\CompatTel
2019-12-26 01:04 - 2019-12-26 01:04 - 000000000 ____D C:\windows\system32\appraiser
2019-12-26 00:49 - 2019-12-26 00:49 - 000000000 ____D C:\Users\Lenovo\Downloads\Firefox Installer
2019-12-26 00:45 - 2019-12-27 20:28 - 000000000 ____D C:\Users\Lenovo\Downloads\Tools
2019-12-26 00:34 - 2020-01-06 01:39 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Geek Uninstaller
2019-12-26 00:32 - 2019-12-26 00:32 - 001873639 _____ C:\Users\Lenovo\Downloads\geek.7z
2019-12-25 23:30 - 2019-12-25 23:30 - 000000000 ____D C:\Users\Lenovo\AppData\Local\cache
2019-12-25 23:19 - 2019-12-25 23:19 - 000001428 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2019-12-25 22:43 - 2020-01-06 01:21 - 000000000 ____D C:\Program Files\Malwarebytes
2019-12-25 22:43 - 2019-12-25 22:43 - 000000000 ____D C:\Users\Lenovo\AppData\Local\mbamtray
2019-12-25 22:43 - 2019-12-25 22:43 - 000000000 ____D C:\Users\Lenovo\AppData\Local\mbam
2019-12-25 22:40 - 2020-01-05 23:46 - 000000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2019-12-25 22:40 - 2019-12-25 22:40 - 022851472 _____ (Malwarebytes ) C:\Users\Lenovo\Downloads\mbam-setup-2.2.1.1043.exe
2019-12-25 21:58 - 2019-12-25 21:58 - 000000000 ____D C:\Program Files\Microsoft Games
2019-12-25 20:28 - 2019-12-25 20:28 - 007054312 _____ () C:\Users\Lenovo\Downloads\Windows-ISO-Downloader.exe
2019-12-25 19:42 - 2019-11-28 04:29 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:29 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:28 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 04:04 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-12-25 19:42 - 2019-11-28 03:58 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-12-25 19:42 - 2019-11-28 03:58 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-12-25 19:42 - 2019-11-28 03:58 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-12-25 19:42 - 2019-11-28 03:57 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 03:57 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 03:57 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 03:57 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-12-25 19:42 - 2019-11-28 03:56 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-12-25 19:42 - 2019-11-19 21:44 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-12-25 19:42 - 2019-11-19 21:29 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-12-25 19:42 - 2019-11-19 21:18 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-12-25 19:42 - 2019-11-19 21:18 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-12-25 19:42 - 2019-11-19 21:00 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-12-25 19:42 - 2019-11-19 09:11 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-12-25 19:42 - 2019-11-19 08:58 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-12-25 19:42 - 2019-11-19 08:52 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-12-25 19:42 - 2019-11-19 08:49 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-12-25 19:42 - 2019-11-19 08:36 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-12-25 19:42 - 2019-11-19 08:36 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-12-25 19:42 - 2019-11-19 08:35 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-12-25 19:42 - 2019-11-15 03:29 - 001330176 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-12-25 19:42 - 2019-11-15 03:29 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-12-25 19:42 - 2019-11-15 03:22 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-12-25 19:42 - 2019-11-05 22:25 - 000266752 _____ (Microsoft Corporation) C:\windows\SysWOW64\upnphost.dll
2019-12-25 19:42 - 2019-11-05 22:25 - 000175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2019-12-25 19:42 - 2019-11-05 22:20 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2019-12-25 19:42 - 2019-11-05 22:19 - 000114688 _____ (Microsoft Corporation) C:\windows\system32\AxInstSv.dll
2019-12-25 19:42 - 2019-11-05 22:03 - 000045056 _____ (Microsoft Corporation) C:\windows\SysWOW64\udhisapi.dll
2019-12-25 19:42 - 2019-09-19 05:27 - 000168448 _____ (Microsoft Corporation) C:\windows\system32\umpo.dll
2019-12-25 19:42 - 2019-09-12 04:53 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2019-12-25 19:42 - 2019-09-12 04:52 - 000373248 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2019-12-25 19:42 - 2019-09-12 04:52 - 000195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2019-12-25 19:42 - 2019-09-12 04:44 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2019-12-25 19:42 - 2019-09-12 04:24 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2019-12-25 19:42 - 2019-09-11 05:56 - 000409600 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexch40.dll
2019-12-25 19:42 - 2019-09-11 05:56 - 000353792 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-12-25 19:42 - 2019-09-11 05:56 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-12-25 19:42 - 2019-09-10 03:27 - 000383488 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2019-12-25 19:42 - 2019-08-14 06:20 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2019-12-25 19:42 - 2019-08-13 23:16 - 000484864 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2019-12-25 19:42 - 2019-08-13 23:13 - 000363520 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2019-12-25 19:42 - 2019-07-13 09:36 - 000289720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2019-12-25 19:42 - 2019-07-13 09:34 - 001391616 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-12-25 19:42 - 2019-07-13 09:34 - 000180736 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2019-12-25 19:42 - 2019-07-13 09:34 - 000039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\ssdpapi.dll
2019-12-25 19:42 - 2019-07-13 09:33 - 000256512 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2019-12-25 19:42 - 2019-07-13 09:33 - 000194560 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2019-12-25 19:42 - 2019-07-13 09:33 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc.dll
2019-12-25 19:42 - 2019-07-13 09:33 - 000043520 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2019-12-25 19:42 - 2019-07-13 09:32 - 002009600 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-12-25 19:42 - 2019-07-13 09:32 - 000071680 _____ (Microsoft Corporation) C:\windows\system32\Groupinghc.dll
2019-12-25 19:42 - 2019-07-13 09:31 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2019-12-25 19:42 - 2019-07-13 09:31 - 000086528 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc.dll
2019-12-25 19:42 - 2019-07-13 09:31 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2019-12-25 19:42 - 2019-07-13 09:22 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2019-12-25 19:42 - 2019-06-12 16:21 - 000617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 003207168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2019-12-25 19:42 - 2019-06-12 16:20 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2019-12-25 19:42 - 2019-06-12 16:19 - 000744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2019-12-25 19:42 - 2019-06-12 16:19 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2019-12-25 19:42 - 2019-06-12 16:08 - 012574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2019-12-25 19:42 - 2019-06-12 16:08 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2019-12-25 19:42 - 2019-06-12 16:08 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2019-12-25 19:42 - 2019-06-12 16:07 - 000632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2019-12-25 19:42 - 2019-06-12 16:07 - 000371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2019-12-25 19:42 - 2019-06-12 16:07 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2019-12-25 19:42 - 2019-06-12 16:07 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2019-12-25 19:42 - 2019-06-12 16:07 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2019-12-25 19:42 - 2019-06-12 16:07 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2019-12-25 19:42 - 2019-06-12 16:06 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2019-12-25 19:42 - 2019-06-12 16:06 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2019-12-25 19:42 - 2019-06-12 16:04 - 000023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2019-12-25 19:42 - 2019-06-12 15:49 - 000205312 _____ (Microsoft Corporation) C:\windows\SysWOW64\Dism.exe
2019-12-25 19:42 - 2019-06-12 15:37 - 000274944 _____ (Microsoft Corporation) C:\windows\system32\Dism.exe
2019-12-25 19:42 - 2019-06-12 15:37 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2019-12-25 19:42 - 2019-06-04 00:11 - 001110528 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2019-12-25 19:42 - 2019-06-04 00:11 - 000474112 _____ (Microsoft Corporation) C:\windows\system32\taskcomp.dll
2019-12-25 19:42 - 2019-04-19 03:43 - 000064232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ULIAGPKX.SYS
2019-12-25 19:42 - 2019-04-19 03:43 - 000060648 _____ (Microsoft Corporation) C:\windows\system32\Drivers\AGP440.sys
2019-12-25 19:42 - 2019-04-19 03:42 - 000122600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\NV_AGP.SYS
2019-12-25 19:42 - 2019-04-16 14:15 - 000419648 _____ C:\windows\system32\locale.nls
2019-12-25 19:42 - 2019-04-12 14:05 - 000020944 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000019408 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000017656 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000015608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000014288 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000014072 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000013560 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012536 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012240 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:05 - 000011504 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000021752 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000018680 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000017352 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000017144 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000015096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000013560 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000013560 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000013048 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000012024 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000012024 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011728 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2019-12-25 19:42 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2019-12-25 19:42 - 2019-04-09 16:05 - 000573440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2019-12-25 19:42 - 2019-04-09 15:52 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2019-12-25 19:42 - 2019-04-09 15:52 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2019-12-25 19:42 - 2019-04-09 15:52 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2019-12-25 19:42 - 2019-04-07 15:38 - 000407040 _____ (Microsoft Corporation) C:\windows\system32\nltest.exe
2019-12-25 19:42 - 2019-04-05 01:23 - 000057856 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdll.dll
2019-12-25 19:42 - 2019-03-21 03:10 - 000032768 _____ (Microsoft Corporation) C:\windows\system32\sxssrv.dll
2019-12-25 19:42 - 2019-03-11 22:41 - 001894912 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2019-12-25 19:42 - 2019-03-11 22:33 - 001241088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2019-12-25 19:42 - 2019-03-11 22:33 - 000107520 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleprn.dll
2019-12-25 19:42 - 2019-02-21 16:48 - 000025088 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2019-12-25 19:42 - 2019-02-21 16:43 - 000026624 _____ (Microsoft Corporation) C:\windows\SysWOW64\netbtugc.exe
2019-12-25 19:42 - 2019-02-16 07:02 - 000443904 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2019-12-25 19:42 - 2019-02-16 06:50 - 000321536 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2019-12-25 19:42 - 2019-02-07 17:06 - 000027648 _____ (Microsoft Corporation) C:\windows\system32\brdgcfg.dll
2019-12-25 19:42 - 2019-02-07 16:46 - 000020992 _____ (Microsoft Corporation) C:\windows\system32\bridgeunattend.exe
2019-12-25 19:42 - 2018-12-08 04:08 - 000095744 _____ (Microsoft Corporation) C:\windows\system32\rascfg.dll
2019-12-25 19:42 - 2018-12-08 04:08 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\rasdiag.dll
2019-12-25 19:42 - 2018-12-08 03:56 - 000081408 _____ (Microsoft Corporation) C:\windows\SysWOW64\rascfg.dll
2019-12-25 19:42 - 2018-12-08 03:56 - 000061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasdiag.dll
2019-12-25 19:42 - 2018-12-04 17:07 - 000170496 _____ (Microsoft Corporation) C:\windows\system32\itss.dll
2019-12-25 19:42 - 2018-12-04 16:55 - 000142848 _____ (Microsoft Corporation) C:\windows\SysWOW64\itss.dll
2019-12-25 19:42 - 2018-09-23 03:55 - 002319872 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2019-12-25 19:42 - 2018-09-23 03:54 - 000491520 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2019-12-25 19:42 - 2018-09-23 03:54 - 000288256 _____ (Microsoft Corporation) C:\windows\system32\mssphtb.dll
2019-12-25 19:42 - 2018-09-23 03:54 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\mssitlb.dll
2019-12-25 19:42 - 2018-09-23 03:54 - 000075264 _____ (Microsoft Corporation) C:\windows\system32\msscntrs.dll
2019-12-25 19:42 - 2018-09-23 03:54 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\msshooks.dll
2019-12-25 19:42 - 2018-09-23 03:37 - 001549312 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
|
|
13.01.2020, 08:31
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | WIN7Pro Firefox Google suche ADS-Werbung Windows 7 wird nicht mehr bereinigt.
__________________Sichere deine Daten, sorge dafür, dass dieser PC komplett netzwerkfrei ist und mach dann eine Neuinstallation mit Windows 7.
__________________ |
|
13.01.2020, 14:35
| #3 |
| | WIN7Pro Firefox Google suche ADS-Werbung Hallo Cosinus,
__________________das ist nicht gerade Zielführend, hättest meiner Bitte mich auf die IG Liste zu setzen nachkommen können. Bei allem Respekt für das was Du hier leistet, hätte ich mir Dich gern als Helfer, Mentor oder Ritter gewünscht. Das soll leider nicht sein. Meine Frage lautet jetzt ist Deine Meinung auch die Meinung des Trojaner-Bord? |
|
13.01.2020, 14:46
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | WIN7Pro Firefox Google suche ADS-Werbung Du willst es nicht wahrhaben oder? Windows 7 ist EOL und wird nicht mehr bereinigt. Auch M-K-D-B bereinigt Windows 7 nicht mehr! Nimm das Teil komplett aus allen Netzwerken raus, fertig.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
13.01.2020, 14:57
| #5 |
| | WIN7Pro Firefox Google suche ADS-Werbung Es geht nicht um das was ich will, in dieser Angelegenheit sondern was der Gesetzgeber fordert bzgl. der neuen Datenschutzverordnung. Das Video hast Du dir nicht angesehen sonst würdest Ihr eure Meinung überdenken. Ich bin etwas enttäuscht, aber ich kann damit leben den Rechner mit WIN7 neu aufzusetzen. Für mich definiert sich Hilfe anders, als für Dich. Danke für Deine Zeit |
|
13.01.2020, 15:06
| #6 | |||
| /// Winkelfunktion /// TB-Süch-Tiger™ | WIN7Pro Firefox Google suche ADS-WerbungZitat:
Zitat:
Hat nichts mit dem Gesetzgeber zu tun. Aber nicht mehr supportete Betriebssysteme setzt man nicht mehr ein und wenn doch müssen sie zwingend offline sein. Zitat:
__________________ --> WIN7Pro Firefox Google suche ADS-Werbung |
|
13.01.2020, 15:12
| #7 |
| | WIN7Pro Firefox Google suche ADS-Werbung Hier noch der Link zum benannten 8 min Film. https://www.youtube.com/watch?v=2CPmMqCa-U4 Ich bin gespannt wie sich das hier im Forum weiterentwickelt, bzgl. WIN7. Tschau |
|
13.01.2020, 15:18
| #8 |
| | WIN7Pro Firefox Google suche ADS-Werbung Ich hab das Video durchaus angesehen Es geht darum um die "Erschleichung einer Dienstleistung oder eines Rechts" mit diesem sog. "Patch" Berechtigt und auch kein Wunder, warum du hier solche Antworten bekommst. Ich frage mich ob du das Video selbst überhaupt bis zu Ende gesehen hast und verstanden hast. |
|
13.01.2020, 15:56
| #9 |
  | WIN7Pro Firefox Google suche ADS-Werbung Ich verstehe offengestanden den Widerstand gegen den bei Windows 7 (bei mir Ultimate) kostenlosen Upgrade auf Windows 10 nicht. Ich hab das vor einigen Tagen mit meinem zweiten (10 Jahre alten) PC aus Neugierde durchgezogen und hatte keinerlei Probleme. Sämtliche unter Windows 7 installierten Programme laufen wie geschmiert. (außer Freecell und Solitär  )Hab dem noch 2 GB spendiert, einfach um mal zu sehen, ob man so einen alten Ackergaul noch flotter machen kann. 4 Gb ist das Minimum um halbwegs ohne Kaffeepausen arbeiten zu können. Das nackte Windows belegt bereits über 2GB. Will man mit mehreren Programmen und größeren Datenmengen hantieren sind 8GB das Minimum. |
|
13.01.2020, 20:52
| #10 | |
| /// Helfer-Team  | WIN7Pro Firefox Google suche ADS-WerbungZitat:
__________________ LG Der Felix Keine Hilfe per PN und E-Mail |
|
14.01.2020, 07:22
| #11 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | WIN7Pro Firefox Google suche ADS-WerbungZitat:
Ich seh da absolut keinen Sinn drin, EOL-Betriebssysteme von ignoranten Usern zu bereinigen.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.01.2020, 08:14
| #12 | |
| | WIN7Pro Firefox Google suche ADS-WerbungZitat:
|
|
14.01.2020, 08:24
| #13 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | WIN7Pro Firefox Google suche ADS-WerbungZitat:
Ob das so stimmt oder nicht ist eigentlich völlig irrelevant, denn es ändert nichts an der Einstellung des TO, der unbedingt bei diesem alten Windows7-Schinken bleiben will.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.01.2020, 20:08
| #14 | |
| | Erklärung und Richtigstellung Zum allgemeinen Verständnis, wir (Zweimannbetrieb) ein sehr kleines Planungsbüro, welches Bauplanung, Statik und Bauleitung zu kleinen Bauvorhaben abwickeln, haben uns 2008 für das Zeichen mit einen CAD Programm entschieden. Da ich der Technikfreak von uns bin, habe ich ein Jahr alles was es seiner Zeit an CAD Programmen gab getestet. Wir haben uns für eine teure sehr professionelle Lösung entschieden, zumal zu diesen Zeitpunk auch zwei etwas größere Projekte anstanden. In 2009 wurde dann auf digital umgestellt mit dem Hintergrund das System nach 5 Jahren einzufrieren und Offline weiter zu nutzen. Diese Lizenz wurde im Jahr 2016 das letzte mal upgedatet und in Mai 2019 wurde der Support für diese Version eingestellt. Das Programm ist für WIN10 nicht zertifiziert. Bei der Lizenz handelt es sich um eine Softlizenz, welche Online beim Rechnerwechsel übertragen wird, was wir im Moment leider auch noch nutzen müssen. Einhergegangen sind auch verschiedene Änderungen bei WIN7 unter anderen das nicht mehr funktionieren der F1 Hilfefunktion. Unter WIN10 läuft der Lizenzserver nicht Fehlerfrei was bereits einmal zum Lizenzverlust geführt hatte. #Citro Im Video interessiert mich nicht dieses Patch, sondern die Volumenlizenz von Windows ist hier entscheidend, somit wäre der MS Support bis 2023 noch möglich. #webwatcher ich würde sehr gern das CAD unter WIN10 benutzen! #felix1 Eigentlich sind es nur 2 Post mit gleichen Inhalt, beim zweiten posten ist mir ein Fehler unterlaufen. Nicht alles was im Müll landet ist auch Müll. #Cosinus Zitat:
Mal was zu meiner Person ich bin seit 1992 im Internet unterwegs, unter anderen als Betatester von verschiedenen Softwareherstellern die es unter anderen heute noch gibt. Diesbezüglich bin ich aber seit langer Zeit raus. Kenne dieses Bord sehr lange und es war mir auch manchmal eine Hilfe, wenn es ein Problem zu lösen gab. Cosinus Heulen liegt mir nicht, Windows aufsetzen auch kein Thema. Glaub es oder glaub es nicht, ich habe mir das erste mal solch ein Plagegeist eingefangen und habe in den Glauben des alten Spirits von eins gedacht nutze mal für dich selbst das Trojaner-Bord. Etwas enttäuscht bin ich, weil ich dachte Hilfe zu bekommen, dass das an knallharten "ist nicht aktuell" scheitert, das fehlte mir in meiner Vorstellung. Meine Meinung ist, dass es vielen so gehen wird. Fazit: Ich wollte was lernen und habe eine Erkenntnis gewonnen. In diesen Sinne, denk bitte nicht immer das schlechteste von euren Mitmenschen. Geändert von Etienne64 (14.01.2020 um 20:50 Uhr) |
|
14.01.2020, 23:03
| #15 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | WIN7Pro Firefox Google suche ADS-WerbungZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
| Themen zu WIN7Pro Firefox Google suche ADS-Werbung |
| adobe, ads-werbeanzeigen, ads-werbung, browser, converter, defender, desktop, error, excel, fehler, fehlermeldung, firefox, flash player, frage, google, internet, internet explorer, monitor, mozilla, object, realtek, registry, rundll, security, software, usb, win 7 64 bit, win7pro, windows |
Linear-Darstellung
