Trojaner-Board - Windows 10 Trojaner mit Malwarebytes?

Hallo,

habe heute mein Antivirenprogramm gewechselt und Antivir hat 8 Funde festgestellt. Habe den Suchlauf aber vorzeitig beendet und Malwarebytes drüberlaufen lassen. Malwarebytes hat auch etwas festgestellt aber keine 8 Dateien. Habe dann Antivir gelöscht und Avast Free installiert. Ich habe den betroffenen Ordner mit den 8 gemeldeten Dateien (Antivir) von Avast überprüfen lassen und dann in den Container verschoben.

und Hier die Addition Log Datei

durchgeführt von knuschbel (2015-09-21 16:02:41)
Gestartet von C:\Users\knuschbel\Downloads
Windows 10 Home (X64) (2015-09-10 17:06:24)
Start-Modus: Normal
==========================================================

==================== Konten: =============================

Administrator (S-1-5-21-851191319-837202561-132464201-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-851191319-837202561-132464201-503 - Limited - Disabled)
Gast (S-1-5-21-851191319-837202561-132464201-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-851191319-837202561-132464201-1003 - Limited - Enabled)
knuschbel (S-1-5-21-851191319-837202561-132464201-1001 - Administrator - Enabled) => C:\Users\knuschbel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.0.162 - Adobe Systems, Inc.)
AnyDVD (HKLM-x32\...\AnyDVD) (Version: 7.5.1.0 - SlySoft)
Apple Application Support (32-Bit) (HKLM-x32\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{C9C0FE2C-602E-49D7-8C42-5B9E8FF04798}) (Version: 4.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.0.9840 - Broadcom Corporation)
BrummelBibliothek (HKLM-x32\...\BrummelBibliothek) (Version: 1.0.1 - Stadlbauer Marketing + Vertrieb GmbH)
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
CorelDRAW Graphics Suite 12 (HKLM-x32\...\{505AFDC0-5E72-4928-8368-5DEA385E3647}) (Version: 12.0.0.458 - Corel Corporation)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.8.4420 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6.5104 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.9.5009 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3604 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.6.5011 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Druckerdeinstallation für EPSON BX535WD Series (HKLM\...\EPSON BX535WD Series) (Version: - SEIKO EPSON Corporation)
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
FreeFileSync 6.9 (HKLM-x32\...\FreeFileSync) (Version: 6.9 - Zenju)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Host App Service (HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Pokki) (Version: 0.269.7.768 - Pokki)
HP 3D DriveGuard (HKLM-x32\...\{E8D0E2B8-B64B-44BC-8E01-00DDACBDF78A}) (Version: 6.0.28.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C}) (Version: 2.20.31 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{082B1425-0F24-43FA-9B64-E8F617B0AD3B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{8B4EE87E-6D40-4C91-B5E8-0DC77DC412F1}) (Version: 1.4.1 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{36F80C5F-DC0D-4DF4-AF09-DC1867F0EB0A}) (Version: 2.4.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3574 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{8B4EA042-9E21-46FB-8286-225F4D51CC52}) (Version: 4.2.41.2710 - Intel Corporation)
Intel(R) Technology Access (HKLM-x32\...\{fb74531f-28c3-4dca-9849-e6b8faa85afe}) (Version: 1.5.0.1021 - Intel Corporation)
Intel(R) Technology Access Software Asset Manager (x32 Version: 1.0.1562 - Intel Corporation) Hidden
Intel(R) Update Manager (HKLM-x32\...\{43FA4AC8-46F8-423F-96FD-9A7D67048F1C}) (Version: 2.5.1634 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{88509E20-3936-4D88-A1C0-B274C7BB5151}) (Version: 12.3.0.44 - Apple Inc.)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional 2013 - de-de (HKLM\...\ProfessionalRetail - de-de) (Version: 15.0.4745.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 de)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden
Passbild-Generator v4.0a (HKLM-x32\...\Passbild-Generator_is1) (Version: - Passbild-Generator)
PDF24 Creator 7.3.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.273.40 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Spotify (HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Start Menu (HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Pokki_Start_Menu) (Version: 0.269.7.768 - Pokki)
Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

==================== Wiederherstellungspunkte =========================

19-09-2015 09:05:58 Windows Modules Installer
21-09-2015 10:37:09 Avira System Speedup 1.6.12

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {01DA154E-5C07-4B6C-9A2C-82AE5D688516} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {033803BD-01C8-48E6-9263-E41FECF60231} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-06-09] ()
Task: {05B4F912-F4CF-48F9-847E-01F9F2B547C4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {05EB8A0C-B54C-4E04-889C-4A36B7F73890} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {13B5AE97-8281-4FF1-89AB-D9C5618D1956} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {191A4BB1-DB2F-40C1-9C73-FEBA72350449} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {27B5883A-846B-4F2D-9D3C-B6940A13A73C} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
Task: {27CCBC34-5F6C-462F-B6BC-A2DB58A507D6} - System32\Tasks\Pokki => %LOCALAPPDATA%\Pokki\Engine\ServiceHostAppUpdater.exe
Task: {2F08CC3C-1349-42AA-9B5C-28EF4D7A8E86} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {32C40A52-9536-4D7C-A0AF-BFEADF3DDB0F} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2013-11-01] (Hewlett-Packard Development Company, L.P.)
Task: {3F3C0140-17C3-4B05-A3BB-796B89893710} - System32\Tasks\HPCeeScheduleForknuschbel => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {41C3969A-21BF-4E84-85F7-2B1DDADB7A4E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {457439A4-20AE-476F-A498-36C769A4DED2} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2015-02-11] (CyberLink Corp.)
Task: {4A5C5C71-B258-4371-AA34-6D1BF229658B} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
Task: {4AF92DDE-FE19-46BD-8253-26B4AE5A826F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {57FC23BD-F2E3-4E91-9A21-474C1A988B1C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {5CD573B5-0EDC-4635-B5C1-D91B725C58FE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {64FD13CC-86F8-499F-912B-3A04E7607916} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-19] (Piriform Ltd)
Task: {73B87504-E95C-426B-8373-49A35AD6DD28} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {75293811-2007-45DD-9085-203B35257F52} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {771418ED-C0E0-40BB-8E62-F69947622721} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {78F3520D-63EE-4DD7-8258-0FDFA2298DFF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {79F9D743-4ED6-4063-9A23-7F7E9023702B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {81448A52-6367-4DCD-8C96-4FDD7A5D23C6} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-04-18] ()
Task: {83C1871B-B472-4D99-9F07-7D1B224BA254} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {8D05DE26-6AEC-4A25-B902-C05B36A70EE7} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {9858168D-17CB-4D4B-BA18-5392C49AF443} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-21] (AVAST Software)
Task: {9A93CB6D-AF09-4E18-A72E-DE88E3020272} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {A4736971-FF57-4547-A9B2-28DFD5E2ADD8} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)
Task: {AD1923E4-3193-4EBE-B737-5B6986D8E790} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {C13EEE91-8A8D-4B60-A1CA-8B81F30F96B4} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2015-04-26] (Apple Inc.)
Task: {C5444BD5-7DF3-4F95-9E6B-EB7ACA07BDCB} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-06-09] ()
Task: {C5A66306-8DB2-4BAD-B7B4-BA54CC8CA877} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {DB48DFF2-FDC2-4119-8226-863A5FDFD67E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {EE3E4FC1-5FA3-4A65-9F69-8F8B0854B9E6} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {F3F84D26-0ADA-4CB0-8067-CE49183582DF} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {F5B29527-6C0E-427D-9332-C9064EF40623} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {F5C63B78-A05D-4965-B9F5-F28B8629E643} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company)
Task: {FE67535C-5D0C-435F-A6F9-9FAD7C455509} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-04-18] ()

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForknuschbel.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-10 19:17 - 2015-09-10 19:17 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-10 18:32 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-09-18 17:41 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-07-07 11:44 - 2015-07-07 11:44 - 00088064 _____ () C:\Program Files\Intel Corporation\Intel(R) Technology Access\libglog.dll
2015-07-07 13:41 - 2015-07-07 13:41 - 01793280 _____ () C:\Program Files\Intel Corporation\Intel(R) Technology Access\cpprest120_1_4.dll
2015-07-07 13:41 - 2015-07-07 13:41 - 00354560 _____ () C:\Program Files\Intel Corporation\Intel(R) Technology Access\JsonCpp.dll
2013-12-04 08:44 - 2013-12-04 08:44 - 00200168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-12-04 08:44 - 2013-12-04 08:44 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2013-12-04 08:44 - 2013-12-04 08:44 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 02028544 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 00619008 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 00882688 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 00577024 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll
2015-09-10 19:17 - 2015-09-10 19:17 - 00181248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00559616 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00643072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation.diagnostics\bin\NodeRT_Windows_Foundation_Di agnostics.node
2015-07-10 13:00 - 2015-07-10 18:45 - 00037888 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00796160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00961536 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.no de
2015-09-10 19:17 - 2015-09-10 19:17 - 00204288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.no de
2015-09-10 19:17 - 2015-09-10 19:17 - 00397824 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00074240 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.networking\bin\NodeRT_Windows_Networking.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00093696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.security.cryptography\bin\NodeRT_Windows_Security_Crypt ography.node
2015-09-10 19:17 - 2015-09-10 19:17 - 00124416 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.cortana.pal\bin\NodeRT_Windows_Cortana_PAL.node
2014-11-22 11:57 - 2014-11-22 11:57 - 00393376 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\AppVIsvStream64.dll
2015-08-19 19:10 - 2015-08-19 19:10 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-09-15 17:42 - 2015-09-15 17:42 - 08241152 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-09-15 17:42 - 2015-09-15 17:42 - 02238976 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.9.9.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2014-11-22 11:55 - 2014-11-22 11:55 - 00393376 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream64.dll
2015-06-27 10:36 - 2015-06-16 16:44 - 01428136 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\ADDINS\UmOutlookAddin.dll
2015-09-21 12:59 - 2015-09-21 12:59 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-21 12:59 - 2015-09-21 12:59 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-21 13:01 - 2015-09-21 13:01 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15092100\algo.dll
2015-03-31 09:00 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-09-15 14:25 - 2015-09-15 14:25 - 00073512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-09-21 12:59 - 2015-09-21 12:59 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-12 20:12 - 2013-12-10 17:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-04-28 22:15 - 2015-04-28 22:15 - 00569856 _____ () C:\Users\knuschbel\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
2015-04-28 22:15 - 2015-04-28 22:15 - 01400846 _____ () C:\Users\knuschbel\AppData\Local\Pokki\Engine\avcodec-54.dll
2015-04-28 22:15 - 2015-04-28 22:15 - 00151054 _____ () C:\Users\knuschbel\AppData\Local\Pokki\Engine\avutil-51.dll
2015-04-28 22:15 - 2015-04-28 22:15 - 00222734 _____ () C:\Users\knuschbel\AppData\Local\Pokki\Engine\avformat-54.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\1262f2e315ce9c0e9355e9:Win32App
AlternateDataStreams: C:\190aae3de2ed3f65e5d3:Win32App
AlternateDataStreams: C:\3a9c480b72962d2a62c710:Win32App
AlternateDataStreams: C:\495e149f658e17143e66:Win32App
AlternateDataStreams: C:\d3a49cf7bf8e82536ba1e697:Win32App
AlternateDataStreams: C:\Program Files\Microsoft Mouse and Keyboard Center:Win32App
AlternateDataStreams: C:\Program Files\Microsoft Office 15:Win32App
AlternateDataStreams: C:\Program Files (x86)\Hewlett-Packard:Win32App
AlternateDataStreams: C:\Program Files (x86)\Malwarebytes Anti-Malware:Win32App
AlternateDataStreams: C:\Program Files (x86)\Mozilla Firefox:Win32App
AlternateDataStreams: C:\Program Files (x86)\Passbild-Generator:Win32App
AlternateDataStreams: C:\Program Files (x86)\PDF24:Win32App
AlternateDataStreams: C:\Program Files (x86)\Steuer 2014:Win32App
AlternateDataStreams: C:\WINDOWS\My Product Name:Win32App
AlternateDataStreams: C:\WINDOWS\SysWOW64\Adobe:Win32App
AlternateDataStreams: C:\Program Files\Common Files\DESIGNER:Win32App
AlternateDataStreams: C:\Program Files\Common Files\microsoft shared:Win32App
AlternateDataStreams: C:\ProgramData\regid.1991-06.com.microsoft:Win32App
AlternateDataStreams: C:\ProgramData\{C19CA186-4F06-4E22-A1E6-6BAB4723A0DE}:Win32App
AlternateDataStreams: C:\Users\knuschbel\OneDrive:ms-properties
AlternateDataStreams: C:\Users\knuschbel\OneDrive.old:ms-properties

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-851191319-837202561-132464201-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\knuschbel\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\backgrounddefault.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "CorelDRAW Graphics Suite 11b"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-851191319-837202561-132464201-1001\...\StartupApproved\Run: => "AnyDVD"
HKU\S-1-5-21-851191319-837202561-132464201-1001\...\StartupApproved\Run: => "Spotify Web Helper"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{D2A008C5-1D85-4DB1-935C-43C4C62BB3BE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{85BC75A7-1764-41C3-9BF2-52861001149F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{D1D1F364-9A27-4546-A2D5-D3B44BEE84FD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{577C8EC0-5BE4-442A-B5B3-A97A797195EF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{8C7A0AA6-0AC1-4604-B2F7-80EF20717CC6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{9DADB4F4-148A-46B0-9B3B-3A7F4F5BDE91}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{DFFFB2B6-626C-4D48-8A95-E40F890632D1}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [UDP Query User{2068CD68-1E01-453D-84E5-14BBF31B3C76}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{29403A66-E41E-441E-8DF2-85069B4B0A66}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{3E9A08E3-B91A-4F39-BA57-D5672B25C9FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{300ABDCB-DA9E-405E-A802-FEC66C749F4F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPSOCKSVC.exe
FirewallRules: [{F4A474E9-83E6-4762-981C-7B4D657821B6}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{0D2640E1-ECD9-4E2C-A735-12E948EC910F}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{1E2E5D60-024D-43D4-9402-80AEB729AE72}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{C7AA9211-45FD-4C80-8C9D-953AE07E9B02}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{AB8DB79E-86D4-4C18-B91E-76B5A913590F}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe
FirewallRules: [{24160135-574D-4538-8732-EEBAABD40634}] => (Allow) C:\Users\knuschbel\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{2CF9F61D-BDE7-4D69-A898-E5E86BAB3DCF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{ACA0FEB7-D81C-4875-8A73-6B9388D42D71}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{54E104B0-A3B8-49AB-B11E-AF12B415924E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2C69C85D-47BC-4A26-98E4-16ADAB4D1D72}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A06EC9D9-A984-4A7E-9F18-91E6C529C703}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{14B279E5-B1DF-4A87-B9E0-3704A34528A9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{69AD4F16-E4FB-475E-AEC6-FB3933D71111}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4FDD5D2B-258B-436F-A3E5-1C5C01757CED}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4E454A0B-540F-4698-BF94-AEEEE05B33A8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F8853D88-178A-427B-9537-69761C67F6AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C566038D-236F-4021-B0A6-7A1BCAC5D1F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F329C241-67F9-42FE-8211-DCFB1B24C4D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4B96D291-5831-4472-AA7B-0F8573D7B1B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ABF03C65-AC30-4651-8BD4-AFA7FBE54DA3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/21/2015 03:03:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LEA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 02:22:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LEA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 02:22:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LEA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 02:22:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm avscan.exe, Version 15.0.12.420 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1760

Startzeit: 01d0f4676999bec3

Beendigungszeit: 20733

Anwendungspfad: C:\Program Files (x86)\Avira\Antivirus\avscan.exe

Berichts-ID: 668be53b-605b-11e5-8298-142d27cea150

Vollständiger Name des fehlerhaften Pakets:

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (09/21/2015 02:02:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LEA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 01:51:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LEA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 01:51:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LEA)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/21/2015 10:57:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: HPMSGSVC.exe, Version: 1.4.1.0, Zeitstempel: 0x5590baf2
Name des fehlerhaften Moduls: HPMSGSVC.exe, Version: 1.4.1.0, Zeitstempel: 0x5590baf2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000071b2
ID des fehlerhaften Prozesses: 0x1f5c
Startzeit der fehlerhaften Anwendung: 0xHPMSGSVC.exe0
Pfad der fehlerhaften Anwendung: HPMSGSVC.exe1
Pfad des fehlerhaften Moduls: HPMSGSVC.exe2
Berichtskennung: HPMSGSVC.exe3
Vollständiger Name des fehlerhaften Pakets: HPMSGSVC.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: HPMSGSVC.exe5

Error: (09/21/2015 10:57:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_iphlpsvc, Version: 10.0.10240.16384, Zeitstempel: 0x559f38cb
Name des fehlerhaften Moduls: NetSetupApi.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f3a70
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000003678
ID des fehlerhaften Prozesses: 0x194
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_iphlpsvc0
Pfad der fehlerhaften Anwendung: svchost.exe_iphlpsvc1
Pfad des fehlerhaften Moduls: svchost.exe_iphlpsvc2
Berichtskennung: svchost.exe_iphlpsvc3
Vollständiger Name des fehlerhaften Pakets: svchost.exe_iphlpsvc4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_iphlpsvc5

Error: (09/21/2015 10:56:47 AM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6684) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Systemfehler:
=============
Error: (09/21/2015 03:09:08 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (09/21/2015 03:03:32 PM) (Source: DCOM) (EventID: 10010) (User: LEA)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (09/21/2015 03:03:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/21/2015 03:03:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/21/2015 03:03:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/21/2015 03:03:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/21/2015 02:31:34 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (09/21/2015 02:27:03 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (09/21/2015 02:22:45 PM) (Source: DCOM) (EventID: 10001) (User: LEA)
Description: "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca31CortanaUI.AppXjxtspbn4351hrtx8tc95e89kaz3h2f1f.mcaNicht verfügbarNicht verfügbar

Error: (09/21/2015 02:22:45 PM) (Source: DCOM) (EventID: 10010) (User: LEA)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca

CodeIntegrity:
===================================
Date: 2015-09-21 11:23:32.614
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avnotify.exe that did not meet the Microsoft signing level requirements.

Date: 2015-09-21 11:03:26.535
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avnotify.exe that did not meet the Microsoft signing level requirements.

Date: 2015-09-21 11:03:17.739
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avnotify.exe that did not meet the Microsoft signing level requirements.

Date: 2015-09-21 11:03:15.953
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avnotify.exe that did not meet the Microsoft signing level requirements.

Date: 2015-09-21 11:02:48.475
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avscan.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\avnotify.exe that did not meet the Microsoft signing level requirements.

Date: 2015-09-21 10:23:44.643
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-21 10:23:44.631
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-21 10:23:44.618
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-21 10:23:44.601
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-21 10:23:44.525
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 8122.15 MB
Verfügbarer physikalischer RAM: 4245.96 MB
Summe virtueller Speicher: 9402.15 MB
Verfügbarer virtueller Speicher: 5705.25 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:908.47 GB) (Free:555.66 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:21.17 GB) (Free:2.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: EDBD96DB)

Partition: GPT.

==================== Ende von Addition.txt ============================
Hoffe Ihr könnt weiterhelfen

und hier den FRST.txt
FRST Logfile:

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015

durchgeführt von knuschbel (Administrator) auf LEA (21-09-2015 16:18:07)

Gestartet von C:\Users\knuschbel\Downloads

Geladene Profile: knuschbel (Verfügbare Profile: knuschbel)

Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)

Internet Explorer Version 11 (Standard-Browser: FF)

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forum

 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe

(Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe

() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe

(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe

(Pokki) C:\Users\knuschbel\AppData\Local\Pokki\Engine\ServiceHostAppUpdater.exe

(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe

(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation) C:\Windows\System32\igfxHK.exe

(%CFullName%) C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe

(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe

(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe

(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\csisyncclient.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Pokki) C:\Users\knuschbel\AppData\Local\Pokki\Engine\ServiceHostApp.exe

(Pokki) C:\Users\knuschbel\AppData\Local\Pokki\Engine\ServiceHostApp.exe

(Pokki) C:\Users\knuschbel\AppData\Local\Pokki\Engine\ServiceHostApp.exe

(Pokki) C:\Users\knuschbel\AppData\Local\Pokki\Engine\ServiceStartMenuIndexer.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

 

 

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-09-12] (Realtek Semiconductor)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945656 2015-09-10] (Synaptics Incorporated)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-15] (Apple Inc.)

HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM-x32\...\Run: [CorelDRAW Graphics Suite 11b] => C:\Program Files (x86)\Corel\Corel Graphics 12\Languages\DE\Programs\Registration.exe [733184 2003-11-28] (Corel Corporation)

HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [653576 2015-06-29] (Hewlett-Packard Development Company, L.P.)

HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-08] (Hewlett-Packard Company)

HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [220704 2015-09-14] (Geek Software GmbH)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-09-21] (AVAST Software)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Run: [Spotify Web Helper] => C:\Users\knuschbel\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-29] (Spotify Ltd)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Run: [AnyDVD] => C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [109480 2014-08-12] (SlySoft, Inc.)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2015-04-26] (Apple Inc.)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-19] (Piriform Ltd)

HKU\S-1-5-21-851191319-837202561-132464201-1001\...\RunOnce: [Uninstall C:\Users\knuschbel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\knuschbel\AppData\Local\Microsoft\OneDrive\17.3.5930.0814_1\amd64"

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-21] (AVAST Software)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-05-12]

ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)

 

==================== Internet (Nicht auf der Ausnahmeliste) ====================

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

 

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Tcpip\..\Interfaces\{14e645e4-032a-438c-b45f-0ccf81b3a3fd}: [DhcpNameServer] 192.168.178.1

Tcpip\..\Interfaces\{ebfe5d79-e35d-4310-886b-339adfb65397}: [DhcpNameServer] 192.168.178.1

 

Internet Explorer:

==================

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/4

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKU\S-1-5-21-851191319-837202561-132464201-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

HKU\S-1-5-21-851191319-837202561-132464201-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006

HKU\S-1-5-21-851191319-837202561-132464201-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006

HKU\S-1-5-21-851191319-837202561-132464201-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT14/4

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKLM -> {C88BA86D-3B75-4C59-B887-9BE047314F86} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

SearchScopes: HKLM-x32 -> {C88BA86D-3B75-4C59-B887-9BE047314F86} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

SearchScopes: HKU\S-1-5-21-851191319-837202561-132464201-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

SearchScopes: HKU\S-1-5-21-851191319-837202561-132464201-1001 -> {A0ED743F-DD2A-4725-9F1C-39243232EA78} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=B011DE0D20140924&p={searchTerms}

SearchScopes: HKU\S-1-5-21-851191319-837202561-132464201-1001 -> {C88BA86D-3B75-4C59-B887-9BE047314F86} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}

SearchScopes: HKU\S-1-5-21-851191319-837202561-132464201-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-21] (AVAST Software)

BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)

BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-21] (AVAST Software)

BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)

Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-09-20] (Microsoft Corporation)

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

 

FireFox:

========

FF ProfilePath: C:\Users\knuschbel\AppData\Roaming\Mozilla\Firefox\Profiles\310cd2t8.default

FF SearchEngineOrder.1: Sichere Suche

FF SelectedSearchEngine: Web Search

FF Homepage: hxxp://www.google.de/

FF Keyword.URL: hxxps://de.search.yahoo.com/search?fr=mcafee&type=A111DE0&p=

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-14] ()

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-09-20] (Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-14] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.)

FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2014-09-20] (Microsoft Corporation)

FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)

FF SearchPlugin: C:\Users\knuschbel\AppData\Roaming\Mozilla\Firefox\Profiles\310cd2t8.default\searchplugins\McSiteAdvisor.xml [2015-09-21]

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2014-10-11]

FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt

FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-21]

 

Chrome: 

=======

CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-21]

 

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

 

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-21] (AVAST Software)

R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2765496 2015-07-14] (Microsoft Corporation)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)

R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [602888 2015-06-29] (Hewlett-Packard Development Company, L.P.)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)

R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)

R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)

R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)

S3 Intel(R) TA SAM; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18064 2015-04-18] ()

R2 Intel(R) Technology Access Legacy CS Loader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [144128 2015-07-31] (Intel(R) Corporation)

R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [481536 2015-07-31] (Intel(R) Corporation)

R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()

S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-06-09] ()

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)

R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [124928 2015-07-02] (Softex Inc.) [Datei ist nicht signiert]

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-09-12] (Realtek Semiconductor)

S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-09-10] (Microsoft Corporation)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

 

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

 

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138664 2014-04-24] (SlySoft, Inc.)

R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [138664 2014-04-24] (SlySoft, Inc.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-21] (AVAST Software)

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-21] (AVAST Software)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-21] (AVAST Software)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-21] (AVAST Software)

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-09-21] (AVAST Software)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-09-21] (AVAST Software)

R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-21] (AVAST Software)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-21] (AVAST Software)

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)

R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7532760 2014-08-07] (Broadcom Corporation)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)

R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()

R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()

R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()

R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)

S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)

R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [50448 2015-07-28] (Intel Corporation)

S3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [76560 2015-07-29] (Intel Corporation)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)

R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-09-12] (Realtek                                            )

S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated)

R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-09-10] (Synaptics Incorporated)

S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()

S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)

S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)

R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (HP Inc.)

S3 WsAudioDevice_383; C:\Windows\system32\drivers\VirtualAudio.sys [31080 2013-05-09] (Wondershare)

U3 pgldapob; C:\Users\knuschbel\AppData\Local\Temp\pgldapob.sys [56496 2015-09-21] (GMER) [Datei ist nicht signiert]

S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

 

 

==================== Ein Monat: Erstellte Dateien und Ordner ========

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

 

2015-09-21 16:05 - 2015-09-21 16:05 - 00380416 _____ C:\Users\knuschbel\Downloads\Gmer-19357.exe

2015-09-21 16:02 - 2015-09-21 16:03 - 00048686 _____ C:\Users\knuschbel\Downloads\Addition.txt

2015-09-21 16:00 - 2015-09-21 16:18 - 00025958 _____ C:\Users\knuschbel\Downloads\FRST.txt

2015-09-21 16:00 - 2015-09-21 16:18 - 00000000 ____D C:\FRST

2015-09-21 15:59 - 2015-09-21 16:00 - 02191360 _____ (Farbar) C:\Users\knuschbel\Downloads\FRST64.exe

2015-09-21 15:58 - 2015-09-21 16:15 - 00000480 _____ C:\Users\knuschbel\Downloads\defogger_disable.log

2015-09-21 15:58 - 2015-09-21 15:58 - 00050477 _____ C:\Users\knuschbel\Downloads\Defogger(1).exe

2015-09-21 15:58 - 2015-09-21 15:58 - 00000000 _____ C:\Users\knuschbel\defogger_reenable

2015-09-21 15:52 - 2015-09-21 15:52 - 01457952 _____ C:\Users\knuschbel\Downloads\HijackThis - CHIP-Installer.exe

2015-09-21 15:41 - 2015-09-21 15:41 - 00016148 _____ C:\WINDOWS\system32\LEA_knuschbel_HistoryPrediction.bin

2015-09-21 15:06 - 2015-09-21 15:06 - 00000000 ___HD C:\OneDriveTemp

2015-09-21 15:05 - 2015-09-21 16:04 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log

2015-09-21 15:04 - 2015-09-21 15:04 - 00000141 _____ C:\WINDOWS\setupact.log

2015-09-21 15:04 - 2015-09-21 15:04 - 00000000 ____D C:\WINDOWS\LastGood

2015-09-21 15:04 - 2015-09-21 15:04 - 00000000 _____ C:\WINDOWS\setuperr.log

2015-09-21 14:54 - 2015-09-21 14:54 - 00002854 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC

2015-09-21 14:54 - 2015-09-21 14:54 - 00000870 _____ C:\Users\Public\Desktop\CCleaner.lnk

2015-09-21 14:54 - 2015-09-21 14:54 - 00000000 ____D C:\Program Files\CCleaner

2015-09-21 14:53 - 2015-09-21 14:53 - 05431152 _____ (Piriform Ltd) C:\Users\knuschbel\Downloads\ccsetup509_slim.exe

2015-09-21 14:36 - 2015-09-21 14:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip

2015-09-21 14:36 - 2015-09-21 14:36 - 00000000 ____D C:\Program Files\7-Zip

2015-09-21 13:01 - 2015-09-21 13:01 - 00000000 ____D C:\Users\knuschbel\AppData\Roaming\AVAST Software

2015-09-21 13:00 - 2015-09-21 13:00 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update

2015-09-21 13:00 - 2015-09-21 13:00 - 00001974 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

2015-09-21 13:00 - 2015-09-21 13:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software

2015-09-21 12:59 - 2015-09-21 12:59 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

2015-09-21 12:59 - 2015-09-21 12:59 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr

2015-09-21 12:59 - 2015-09-21 12:59 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys

2015-09-21 12:59 - 2015-09-21 12:59 - 00000000 ____D C:\Program Files\AVAST Software

2015-09-21 12:58 - 2015-09-21 12:58 - 00000000 ____D C:\ProgramData\AVAST Software

2015-09-21 12:56 - 2015-09-21 12:58 - 154429024 _____ (AVAST Software) C:\Users\knuschbel\Downloads\avast_104free_antivirus_setup.exe

2015-09-21 12:15 - 2015-09-21 12:15 - 00050477 _____ C:\Users\knuschbel\Downloads\Defogger.exe

2015-09-21 11:14 - 2015-09-21 11:15 - 00000000 ____D C:\WINDOWS\LastGood.Tmp

2015-09-21 11:12 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll

2015-09-21 11:12 - 2015-08-25 20:38 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb

2015-09-21 10:59 - 2015-09-21 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2015-09-21 10:59 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2015-09-21 10:59 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll

2015-09-21 10:59 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll

2015-09-21 10:59 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2015-09-21 10:58 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2015-09-21 10:58 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2015-09-21 10:58 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2015-09-21 10:56 - 2015-09-21 10:58 - 37815192 _____ (NVIDIA Corporation) C:\Users\knuschbel\Downloads\GeForce_Experience_v2.5.14.5.exe

2015-09-21 10:32 - 2015-09-21 14:27 - 00000000 ____D C:\Program Files (x86)\Avira

2015-09-21 10:32 - 2015-09-21 10:32 - 04772888 _____ (Avira Operations GmbH & Co. KG) C:\Users\knuschbel\Downloads\avira_de_av_55ffc0844ca1e__ws.exe

2015-09-21 10:17 - 2015-07-05 12:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2015-09-20 14:55 - 2015-09-20 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24

2015-09-19 18:35 - 2015-09-19 18:35 - 00001829 _____ C:\Users\Public\Desktop\iTunes.lnk

2015-09-19 18:35 - 2015-09-19 18:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

2015-09-19 18:35 - 2015-09-19 18:35 - 00000000 ____D C:\Program Files\iTunes

2015-09-19 18:35 - 2015-09-19 18:35 - 00000000 ____D C:\Program Files\iPod

2015-09-19 18:35 - 2015-09-19 18:35 - 00000000 ____D C:\Program Files (x86)\iTunes

2015-09-19 18:34 - 2015-09-19 18:34 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk

2015-09-19 18:34 - 2015-09-19 18:34 - 00000000 ____D C:\Program Files (x86)\Apple Software Update

2015-09-19 18:30 - 2015-09-19 18:33 - 167601944 _____ (Apple Inc.) C:\Users\knuschbel\Downloads\iTunes6464Setup(1).exe

2015-09-19 13:59 - 2015-09-19 14:52 - 167601944 _____ (Apple Inc.) C:\Users\knuschbel\Downloads\iTunes6464Setup.exe

2015-09-19 12:36 - 2015-09-19 12:36 - 00000000 ____D C:\Program Files\Bonjour

2015-09-19 12:36 - 2015-09-19 12:36 - 00000000 ____D C:\Program Files (x86)\Bonjour

2015-09-19 12:28 - 2015-09-19 12:28 - 13840464 _____ (Adobe Systems Inc.) C:\Users\knuschbel\Downloads\Shockwave_Installer_Full(3).exe

2015-09-14 18:28 - 2015-09-14 18:28 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET

2015-09-13 14:25 - 2015-09-13 14:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy

2015-09-13 13:03 - 2015-09-13 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-09-13 13:03 - 2015-09-13 13:03 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2015-09-13 13:03 - 2015-09-13 13:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2015-09-13 13:02 - 2015-09-13 13:02 - 13155552 _____ (Microsoft Corporation) C:\Users\knuschbel\Downloads\Silverlight_x64.exe

2015-09-13 12:54 - 2015-09-13 12:54 - 00001451 _____ C:\Users\knuschbel\Desktop\Sparkasse.lnk

2015-09-13 11:23 - 2015-09-13 11:23 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Intel_Corporation

2015-09-13 11:02 - 2015-09-21 10:53 - 00000000 ____D C:\WINDOWS\Minidump

2015-09-12 11:06 - 2015-09-12 11:06 - 00886528 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys

2015-09-12 11:06 - 2015-09-12 11:06 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat

2015-09-12 11:03 - 2015-09-12 11:02 - 35222128 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT

2015-09-12 11:03 - 2015-09-12 11:02 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 02702552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl

2015-09-12 11:03 - 2015-09-12 11:02 - 01749208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 01576976 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\CX64APO.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 01413776 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 01310936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 01104040 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00943784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00734376 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00454288 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00369296 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00329360 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll

2015-09-12 11:03 - 2015-09-12 11:02 - 00250536 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll

2015-09-12 10:53 - 2015-09-12 10:53 - 00000000 ____D C:\Users\knuschbel\Intel

2015-09-11 19:01 - 2015-09-11 19:01 - 00000000 ____D C:\$SysReset

2015-09-11 18:56 - 2015-09-11 18:56 - 00000000 _____ C:\WINDOWS\My Product Name

2015-09-11 18:56 - 2015-09-11 18:56 - 00000000 _____ C:\d3a49cf7bf8e82536ba1e697

2015-09-11 18:56 - 2015-09-11 18:56 - 00000000 _____ C:\495e149f658e17143e66

2015-09-11 18:56 - 2015-09-11 18:56 - 00000000 _____ C:\3a9c480b72962d2a62c710

2015-09-11 18:56 - 2015-09-11 18:56 - 00000000 _____ C:\190aae3de2ed3f65e5d3

2015-09-11 18:56 - 2015-09-11 18:56 - 00000000 _____ C:\1262f2e315ce9c0e9355e9

2015-09-11 18:47 - 2015-09-11 18:47 - 00003886 _____ C:\WINDOWS\System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d

2015-09-11 18:47 - 2015-09-11 18:47 - 00003652 _____ C:\WINDOWS\System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon

2015-09-11 18:47 - 2015-09-11 18:47 - 00000000 ____D C:\Program Files (x86)\Intel Corporation

2015-09-11 18:28 - 2015-09-11 18:28 - 00206080 _____ (DEVGURU Co., LTD.(???? | ????? ???? ?????.)) C:\WINDOWS\system32\Drivers\ssudmdm.sys

2015-09-11 18:28 - 2015-09-11 18:28 - 00108800 _____ (DEVGURU Co., LTD.(???? | ????? ???? ?????.)) C:\WINDOWS\system32\Drivers\ssudbus.sys

2015-09-10 19:43 - 2015-09-21 15:49 - 00000000 ____D C:\Users\knuschbel\AppData\Local\C8AB8214-00EA-4BD5-BAB7-E311E200E1EC.aplzod

2015-09-10 19:42 - 2015-09-21 15:06 - 00000000 ___RD C:\Users\knuschbel\iCloudDrive

2015-09-10 19:39 - 2015-09-10 19:39 - 00000000 ____D C:\Users\knuschbel\AppData\Local\NetworkTiles

2015-09-10 19:26 - 2015-09-10 19:28 - 71807792 _____ (Apple Inc.) C:\Users\knuschbel\Downloads\iCloudSetup(1).exe

2015-09-10 19:24 - 2015-09-21 10:53 - 00000000 ___DC C:\WINDOWS\Panther

2015-09-10 19:24 - 2015-09-13 12:45 - 00000000 ____D C:\Users\knuschbel\AppData\Local\MicrosoftEdge

2015-09-10 19:24 - 2015-09-10 18:34 - 00000000 __SHD C:\Recovery

2015-09-10 19:19 - 2015-09-10 19:19 - 00000000 ____D C:\Windows.old

2015-09-10 19:17 - 2015-09-11 18:41 - 00002403 _____ C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

2015-09-10 19:17 - 2015-09-10 19:17 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02446336 _____ C:\WINDOWS\system32\InputService.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2015-09-10 19:17 - 2015-09-10 19:17 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2015-09-10 19:17 - 2015-09-10 19:17 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi

2015-09-10 19:17 - 2015-09-10 19:17 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2015-09-10 19:17 - 2015-09-10 19:17 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2015-09-10 19:17 - 2015-09-10 19:17 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys

2015-09-10 19:17 - 2015-09-10 19:17 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll

2015-09-10 19:17 - 2015-09-10 19:17 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe

2015-09-10 19:17 - 2015-09-10 19:17 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList

2015-09-10 19:12 - 2015-09-10 19:12 - 01806216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll

2015-09-10 19:12 - 2015-09-10 19:12 - 00419528 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll

2015-09-10 19:12 - 2015-09-10 19:12 - 00044216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys

2015-09-10 19:12 - 2015-09-10 19:12 - 00042184 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys

2015-09-10 19:12 - 2015-09-10 19:12 - 00008192 _____ C:\WINDOWS\system32\config\userdiff

2015-09-10 19:11 - 2015-09-10 19:11 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Publishers

2015-09-10 19:09 - 2015-09-10 19:09 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2015-09-10 19:09 - 2015-09-10 19:09 - 00000000 ____D C:\Program Files\Reference Assemblies

2015-09-10 19:09 - 2015-09-10 19:09 - 00000000 ____D C:\Program Files\MSBuild

2015-09-10 19:09 - 2015-09-10 19:09 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2015-09-10 19:09 - 2015-09-10 19:09 - 00000000 ____D C:\Program Files (x86)\MSBuild

2015-09-10 19:09 - 2015-09-10 19:09 - 00000000 ____D C:\inetpub

2015-09-10 19:08 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2015-09-10 19:08 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2015-09-10 19:08 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2015-09-10 19:08 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2015-09-10 19:08 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-09-10 19:08 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2015-09-10 19:07 - 2015-09-10 19:35 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Comms

2015-09-10 19:07 - 2015-09-10 19:07 - 00000000 ____D C:\Users\knuschbel\AppData\Local\TileDataLayer

2015-09-10 19:06 - 2015-09-10 19:06 - 00000020 ___SH C:\Users\knuschbel\ntuser.ini

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Vorlagen

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Startmenü

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2015-09-10 19:02 - 2015-09-10 19:02 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2015-09-10 18:59 - 2015-09-10 18:59 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat

2015-09-10 18:48 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

2015-09-10 18:43 - 2015-09-10 18:43 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata

2015-09-10 18:43 - 2015-09-10 18:43 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki

2015-09-10 18:43 - 2015-09-10 18:43 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata

2015-09-10 18:43 - 2015-09-10 18:43 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki

2015-09-10 18:42 - 2015-09-10 18:42 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-09-10 18:37 - 2015-09-10 18:37 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2015-09-10 18:35 - 2015-09-21 15:58 - 00000000 ____D C:\Users\knuschbel

2015-09-10 18:35 - 2015-09-10 19:07 - 00000000 ___RD C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Vorlagen

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Startmenü

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Netzwerkumgebung

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Lokale Einstellungen

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Eigene Dateien

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Druckumgebung

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Documents\Eigene Musik

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Documents\Eigene Bilder

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\AppData\Local\Verlauf

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\AppData\Local\Anwendungsdaten

2015-09-10 18:35 - 2015-09-10 18:35 - 00000000 _SHDL C:\Users\knuschbel\Anwendungsdaten

2015-09-10 18:35 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell

2015-09-10 18:35 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2015-09-10 18:35 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2015-09-10 18:35 - 2015-07-10 13:04 - 00000000 ____D C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2015-09-10 18:34 - 2015-09-13 14:12 - 01997626 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-09-10 18:34 - 2015-09-10 18:53 - 02023650 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2015-09-10 18:32 - 2015-09-21 11:16 - 00000000 ____D C:\ProgramData\NVIDIA

2015-09-10 18:32 - 2015-09-21 11:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2015-09-10 18:32 - 2015-08-25 17:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll

2015-09-10 18:32 - 2015-08-25 17:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll

2015-09-10 18:32 - 2015-08-25 17:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll

2015-09-10 18:32 - 2015-08-25 17:57 - 01062520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll

2015-09-10 18:32 - 2015-08-25 17:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe

2015-09-10 18:32 - 2015-08-25 17:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll

2015-09-10 18:32 - 2015-08-25 17:57 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll

2015-09-10 18:32 - 2015-08-25 17:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll

2015-09-10 18:32 - 2015-08-25 15:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin

2015-09-10 18:31 - 2015-09-21 15:06 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2015-09-10 18:31 - 2015-09-21 10:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2015-09-10 18:31 - 2015-09-12 11:03 - 00005680 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip

2015-09-10 18:31 - 2015-09-12 11:03 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM

2015-09-10 18:31 - 2015-09-10 18:31 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat

2015-09-10 18:31 - 2015-09-10 18:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-09-10 18:31 - 2015-09-10 18:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf

2015-09-10 18:31 - 2015-09-10 18:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf

2015-09-10 18:31 - 2015-09-10 18:31 - 00000000 ____D C:\WINDOWS\system32\SRSLabs

2015-09-10 18:31 - 2015-09-10 18:31 - 00000000 ____D C:\Program Files\Synaptics

2015-09-10 18:31 - 2015-09-10 18:31 - 00000000 ____D C:\Program Files\Realtek

2015-09-10 18:31 - 2015-07-17 23:58 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2015-09-10 18:31 - 2015-07-17 23:58 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2015-09-10 18:30 - 2015-09-12 10:54 - 00000000 ____D C:\Program Files\Intel

2015-09-10 17:52 - 2015-09-10 19:01 - 00009528 _____ C:\WINDOWS\diagwrn.xml

2015-09-10 17:52 - 2015-09-10 19:01 - 00009528 _____ C:\WINDOWS\diagerr.xml

2015-09-10 15:32 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll

2015-09-10 13:03 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll

2015-08-29 13:29 - 2015-09-21 10:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-08-27 16:14 - 2015-09-10 19:42 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Apple Inc

 

==================== Ein Monat: Geänderte Dateien und Ordner ========

 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

 

2015-09-21 16:06 - 2014-09-05 22:53 - 00000000 ____D C:\Users\knuschbel\Documents\Outlook-Dateien

2015-09-21 16:05 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru

2015-09-21 15:41 - 2014-09-05 23:14 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-09-21 15:25 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness

2015-09-21 15:20 - 2014-09-05 14:44 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Packages

2015-09-21 15:17 - 2014-09-05 14:44 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Pokki

2015-09-21 15:07 - 2014-09-05 14:46 - 00000000 ____D C:\Users\knuschbel\Documents\Youcam

2015-09-21 15:06 - 2014-09-05 18:12 - 00000000 ___DO C:\Users\knuschbel\OneDrive

2015-09-21 15:06 - 2014-09-05 17:48 - 00002241 _____ C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk

2015-09-21 15:04 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-09-21 15:04 - 2014-09-20 15:36 - 00000356 _____ C:\WINDOWS\Tasks\HPCeeScheduleForknuschbel.job

2015-09-21 15:03 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2015-09-21 14:57 - 2014-09-05 17:56 - 00000000 ____D C:\Users\knuschbel\AppData\Local\CrashDumps

2015-09-21 14:37 - 2014-09-06 13:56 - 00000923 _____ C:\Users\Public\Desktop\VLC media player.lnk

2015-09-21 14:32 - 2014-09-20 15:36 - 00003264 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForknuschbel

2015-09-21 14:20 - 2014-05-12 20:22 - 00000000 ____D C:\ProgramData\Package Cache

2015-09-21 13:52 - 2015-07-10 14:20 - 00365616 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2015-09-21 11:17 - 2014-05-12 20:19 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2015-09-21 11:12 - 2014-09-05 23:22 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-09-21 11:01 - 2014-09-05 14:44 - 00000000 ____D C:\Users\knuschbel\AppData\Local\NVIDIA

2015-09-21 10:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MsDtc

2015-09-21 10:53 - 2015-01-08 16:44 - 00000000 ____D C:\Program Files (x86)\Steuer 2014

2015-09-21 10:53 - 2014-11-09 16:08 - 00000000 ____D C:\Program Files (x86)\PDF24

2015-09-21 10:53 - 2014-05-12 20:24 - 00000000 ____D C:\WINDOWS\Hewlett-Packard

2015-09-21 10:49 - 2014-09-05 14:44 - 00000000 ____D C:\Users\knuschbel\AppData\Local\NVIDIA Corporation

2015-09-21 10:27 - 2014-09-05 14:49 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9EB98D6C-A458-417A-81BB-047381609C11}

2015-09-21 10:20 - 2014-05-12 20:41 - 00000000 ____D C:\ProgramData\McAfee

2015-09-21 10:20 - 2014-05-12 20:41 - 00000000 ____D C:\Program Files (x86)\McAfee

2015-09-21 10:17 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP

2015-09-21 10:17 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM

2015-09-21 10:17 - 2015-06-20 10:31 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee

2015-09-21 10:15 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated

2015-09-20 15:57 - 2014-09-21 16:19 - 00002298 _____ C:\Users\knuschbel\Desktop\eBay.lnk

2015-09-20 11:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp

2015-09-19 18:35 - 2014-09-05 23:24 - 00000000 ____D C:\Program Files\Common Files\Apple

2015-09-19 18:34 - 2014-05-12 20:25 - 00000000 ____D C:\ProgramData\Apple

2015-09-19 09:06 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp

2015-09-13 14:12 - 2015-07-10 18:34 - 00850366 _____ C:\WINDOWS\system32\perfh007.dat

2015-09-13 14:12 - 2015-07-10 18:34 - 00187104 _____ C:\WINDOWS\system32\perfc007.dat

2015-09-13 11:36 - 2014-09-05 23:22 - 00001174 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-09-13 11:36 - 2014-09-05 23:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-09-13 11:36 - 2014-09-05 23:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-09-12 11:06 - 2014-05-12 20:15 - 00000000 ____D C:\Program Files (x86)\Realtek

2015-09-12 11:06 - 2013-09-01 05:49 - 00000000 ____D C:\SWSetup

2015-09-12 11:04 - 2014-05-12 20:16 - 00000000 ___HD C:\Program Files (x86)\Temp

2015-09-12 11:02 - 2014-12-22 10:25 - 04514008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys

2015-09-12 11:02 - 2014-12-22 10:25 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll

2015-09-12 11:02 - 2014-12-22 10:25 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll

2015-09-12 11:02 - 2014-12-22 10:25 - 00184688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll

2015-09-12 11:01 - 2014-05-12 20:16 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll

2015-09-12 08:24 - 2015-03-14 08:42 - 00003834 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473

2015-09-11 18:21 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat

2015-09-10 19:42 - 2014-09-05 23:25 - 00000000 ____D C:\Users\knuschbel\AppData\Roaming\Apple Computer

2015-09-10 19:27 - 2014-09-05 14:49 - 00000000 __SHD C:\Users\knuschbel\AppData\Local\EmieUserList

2015-09-10 19:27 - 2014-09-05 14:49 - 00000000 __SHD C:\Users\knuschbel\AppData\Local\EmieSiteList

2015-09-10 19:24 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template

2015-09-10 19:18 - 2015-07-10 18:46 - 00000000 ____D C:\Program Files\Windows Journal

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser

2015-09-10 19:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning

2015-09-10 19:18 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2015-09-10 19:18 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism

2015-09-10 19:12 - 2015-07-17 07:51 - 00766136 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll

2015-09-10 19:12 - 2015-07-17 07:51 - 00615608 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys

2015-09-10 19:12 - 2015-07-17 07:51 - 00269000 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll

2015-09-10 19:12 - 2015-07-17 07:51 - 00255688 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo31.dll

2015-09-10 19:12 - 2015-07-17 07:51 - 00044216 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys

2015-09-10 19:10 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog

2015-09-10 19:10 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog

2015-09-10 19:10 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView

2015-09-10 19:09 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2015-09-10 19:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2015-09-10 19:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv

2015-09-10 19:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI

2015-09-10 19:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv

2015-09-10 19:09 - 2015-07-10 13:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll

2015-09-10 19:09 - 2015-07-10 13:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll

2015-09-10 19:09 - 2015-07-10 13:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll

2015-09-10 19:09 - 2015-07-10 13:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe

2015-09-10 19:09 - 2015-07-10 13:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll

2015-09-10 19:09 - 2015-07-10 13:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll

2015-09-10 19:09 - 2015-07-10 13:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll

2015-09-10 19:09 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll

2015-09-10 19:09 - 2015-07-10 13:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll

2015-09-10 19:09 - 2015-07-10 13:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe

2015-09-10 19:09 - 2015-07-10 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll

2015-09-10 19:09 - 2015-07-10 13:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll

2015-09-10 19:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore

2015-09-10 19:06 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase

2015-09-10 19:06 - 2014-05-12 20:11 - 00000000 ____D C:\Intel

2015-09-10 19:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache

2015-09-10 19:02 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT

2015-09-10 19:02 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default

2015-09-10 19:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Registration

2015-09-10 18:59 - 2015-08-08 14:27 - 00003096 _____ C:\WINDOWS\System32\Tasks\Start SimplePass

2015-09-10 18:59 - 2015-08-08 14:27 - 00003022 _____ C:\WINDOWS\System32\Tasks\Start OPBHOBroker

2015-09-10 18:59 - 2015-07-19 19:03 - 00003342 _____ C:\WINDOWS\System32\Tasks\Pokki

2015-09-10 18:59 - 2015-05-24 09:31 - 00003270 _____ C:\WINDOWS\System32\Tasks\YCMServiceAgent

2015-09-10 18:59 - 2015-03-14 08:42 - 00003586 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon

2015-09-10 18:59 - 2014-12-26 15:11 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task

2015-09-10 18:59 - 2014-09-05 23:14 - 00003882 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-09-10 18:59 - 2014-09-05 17:47 - 00003270 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe

2015-09-10 18:59 - 2014-09-05 17:47 - 00003244 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe

2015-09-10 18:59 - 2014-09-05 17:47 - 00003242 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe

2015-09-10 18:59 - 2014-09-05 17:47 - 00003214 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe

2015-09-10 18:59 - 2014-09-05 17:47 - 00003212 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe

2015-09-10 18:59 - 2014-09-05 14:50 - 00003704 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-851191319-837202561-132464201-1001

2015-09-10 18:53 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries

2015-09-10 18:44 - 2015-07-28 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Passbild-Generator

2015-09-10 18:44 - 2015-07-11 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud

2015-09-10 18:44 - 2015-01-08 16:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steuer 2014

2015-09-10 18:44 - 2014-09-11 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013

2015-09-10 18:44 - 2014-09-10 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software

2015-09-10 18:44 - 2014-09-10 19:40 - 00000000 ____D C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software

2015-09-10 18:44 - 2014-09-10 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite 12

2015-09-10 18:44 - 2014-09-06 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-09-10 18:44 - 2014-09-05 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus- und Tastatur-Center

2015-09-10 18:44 - 2014-05-12 20:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-09-10 18:44 - 2014-05-12 20:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat

2015-09-10 18:44 - 2014-05-12 20:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-09-10 18:44 - 2014-04-14 19:05 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support

2015-09-10 18:44 - 2014-04-14 18:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection

2015-09-10 18:44 - 2014-04-14 18:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools

2015-09-10 18:40 - 2014-05-12 20:16 - 00000000 ____D C:\WINDOWS\SysWOW64\sda

2015-09-10 18:39 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool

2015-09-10 18:39 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe

2015-09-10 18:39 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-09-10 18:39 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod

2015-09-10 18:39 - 2014-04-14 19:01 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe

2015-09-10 18:39 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared

2015-09-10 18:39 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared

2015-09-10 18:38 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports

2015-09-10 18:38 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod

2015-09-10 18:38 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer

2015-09-10 18:38 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS

2015-09-10 18:37 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery

2015-09-10 18:37 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2015-09-10 18:37 - 2014-09-10 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft

2015-09-10 18:37 - 2014-09-05 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON

2015-09-10 18:37 - 2014-04-14 18:22 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard

2015-09-10 18:34 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2015-09-10 18:32 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help

2015-09-10 17:52 - 2015-07-10 19:28 - 00000000 ___HD C:\$Windows.~BT

2015-09-10 16:45 - 2014-09-05 21:26 - 00000000 ____D C:\Multimedia

2015-09-10 16:41 - 2014-09-05 21:25 - 00000000 ____D C:\Doku_Daten

2015-09-10 15:38 - 2014-09-05 18:52 - 00000000 ____D C:\WINDOWS\system32\MRT

2015-09-10 14:17 - 2015-03-29 09:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-09-06 18:03 - 2015-07-04 12:25 - 00000000 ____D C:\Users\knuschbel\AppData\Roaming\vlc

2015-08-31 10:58 - 2014-09-05 17:48 - 00002314 _____ C:\Users\knuschbel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk

2015-08-31 00:47 - 2015-07-23 04:02 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys

2015-08-27 13:40 - 2014-09-05 23:25 - 00000000 ____D C:\Users\knuschbel\AppData\Local\Apple Computer

2015-08-27 13:33 - 2014-09-11 21:11 - 00000000 ____D C:\Program Files\Microsoft Office 15

2015-08-26 18:37 - 2014-09-05 18:52 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2015-08-25 20:38 - 2015-07-23 04:02 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll

2015-08-25 20:38 - 2015-07-23 04:02 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll

 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

 

2014-10-04 09:01 - 2014-10-04 09:01 - 0000290 _____ () C:\Users\knuschbel\AppData\Roaming\RegistrationLog.log

2014-10-04 09:01 - 2014-10-04 09:02 - 1431922 _____ () C:\Users\knuschbel\AppData\Roaming\ReplayMusicDump.dmp

2014-10-04 09:01 - 2014-10-04 09:02 - 0000346 _____ () C:\Users\knuschbel\AppData\Roaming\ReplayMusicLog.log

2014-09-10 19:53 - 2014-09-10 19:53 - 0000040 ___SH () C:\ProgramData\.zreglib

 

Einige Dateien in TEMP:

====================

C:\Users\knuschbel\AppData\Local\Temp\avgnt.exe

C:\Users\knuschbel\AppData\Local\Temp\McCSPInstall.dll

C:\Users\knuschbel\AppData\Local\Temp\mccspuninstall.exe

 

 

==================== Bamital & volsnap =================

 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

 

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert

C:\WINDOWS\explorer.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert

C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert

C:\WINDOWS\system32\services.exe => Datei ist digital signiert

C:\WINDOWS\system32\User32.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert

C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert

C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert

C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert

C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

 

 

LastRegBack: 2015-09-21 06:59

 

==================== Ende von FRST.txt ============================

--- --- ---