| Willi1969 | 01.12.2016 11:47 |
Windows 7: "Startfenster.de" Problem nach VLC Update bzw. Installation
Hallo zusammen,
bisher habe ich folgende Sachen unternommen: - Avira
- FRST
- AdwCleaner
Avira Anti Virus:
gefiltert nach "Fund"
= Keine Ergebnisse (Null)
FRST:1 Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2016
durchgeführt von ****** (Administrator) auf ******-PC (30-11-2016 23:10:18)
Gestartet von C:\Users\******\Downloads
Geladene Profile: ****** (Verfügbare Profile: ****** & Administrator)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Roxio\BackOnTrack\File Backup\FileBackupSVC.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Windows\jmesoft\Service.exe
(Lenovo) C:\Program Files\Lenovo\Power Dial\LenovoCOMSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Marvell Semiconductor, Inc.) C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\M.O.U.S.9\MOUS9_Profiler.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Lenovo) C:\Windows\jmesoft\hotkey.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Lenovo) C:\Program Files\Lenovo\Power Dial\LitModeSwitch.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
(Deutsche Telekom AG) C:\Program Files\Deutsche Telekom AG\Online Manager\Online Manager.exe
() C:\Windows\jmesoft\JME_LOAD.exe
(Lenovo) C:\Program Files\Lenovo\Power Dial\LitModeCtrl.exe
(Razer USA Ltd.) C:\Program Files (x86)\n52te\razerhid.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Deutsche Telekom AG) C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPNetworkCommunicator.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11057768 2010-07-06] (Realtek Semiconductor)
HKLM\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\Lenovo Rescue System\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM\...\Run: [PrnStatusMX] => C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [1238528 2007-08-29] (Marvell Semiconductor, Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [Launch LgDeviceAgent] => C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415816 2010-08-03] (Logitech Inc.)
HKLM\...\Run: [Launch LCDMon] => C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2412616 2010-08-03] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] => C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4725320 2010-08-03] (Logitech Inc.)
HKLM\...\Run: [M.O.U.S.9] => C:\Program Files\Mad Catz\M.O.U.S.9\MOUS9_Profiler.exe [55808 2015-03-17] (Mad Catz Inc)
HKLM\...\Run: [R.A.T.TE] => C:\Program Files\Mad Catz\R.A.T.TE\RAT_TE_Profiler.exe [195072 2015-03-17] (Mad Catz Inc)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [jmekey] => C:\windows\jmesoft\hotkey.exe [118784 2011-06-08] (Lenovo)
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-03-16] ()
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [ModeSwitch] => C:\Program Files\Lenovo\Power Dial\LitModeSwitch.exe [163840 2010-09-26] (Lenovo)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\Lenovo Rescue System\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [Jomantha] => C:\Program Files (x86)\n52te\razerhid.exe [163840 2007-12-12] (Razer USA Ltd.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-08-10] (Razer Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [916072 2016-10-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-11-15] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-03-23] (Google Inc.)
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\...\Run: [HP Photosmart 6520 series (NET)] => C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\...\Run: [GoogleChromeAutoLaunch_956EF1D2019BA49542F0573201F98223] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921192 2016-11-08] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-11-02]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\t@x aktuell.lnk [2014-07-21]
ShortcutTarget: t@x aktuell.lnk -> C:\Program Files (x86)\Buhl finance\tax Steuersoftware 2014\taxaktuell.exe ()
Startup: C:\Users\******\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Online Manager.lnk [2016-10-14]
ShortcutTarget: Online Manager.lnk -> C:\Program Files\Deutsche Telekom AG\Online Manager\Online Manager.exe (Deutsche Telekom AG)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{34B2965A-1578-4B16-8A99-D6AB19D584B5}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5E19601D-3319-4A2E-81D9-D7AA6BA70792}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LEND&bmod=LEND
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=LEND&bmod=LEND
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1868706644-327019257-4281404765-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
BHO: DVDVideoSoft WebPageAdjuster Class -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2013-01-28] (DVDVideoSoft Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-25] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-25] (Google Inc.)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-25] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-25] (Google Inc.)
Toolbar: HKU\S-1-5-21-1868706644-327019257-4281404765-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-25] (Google Inc.)
IE Session Restore: HKU\S-1-5-21-1868706644-327019257-4281404765-1001 -> ist aktiviert.
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\qh2dn4ty.default [2016-11-30]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\qh2dn4ty.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\qh2dn4ty.default -> hxxps://www.google.de/
FF Extension: (Startfenster.de) - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\qh2dn4ty.default\Extensions\1@startfenster.de.xpi [2016-11-30]
FF Extension: (Kein Name) - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\qh2dn4ty.default\Extensions\abs@avira.com [2016-11-30] [ist nicht signiert]
FF Extension: (Avira Browser Safety) - C:\Users\******\AppData\Roaming\Mozilla\Firefox\Profiles\qh2dn4ty.default\Extensions\abs@avira.com.xpi [2016-11-22]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-09] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-25] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1868706644-327019257-4281404765-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\******\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\******\AppData\Local\Google\Chrome\User Data\Default [2016-11-30]
CHR Extension: (Avira Browser Safety) - C:\Users\******\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-10-22]
CHR Extension: (Chrome Web Store Payments) - C:\Users\******\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-15]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1089088 2016-10-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [475232 2016-10-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [475232 2016-10-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1488240 2016-10-26] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349512 2016-11-15] (Avira Operations GmbH & Co. KG)
R2 CEEBC40A-FDED-4C59-B354-939132350B01; C:\Program Files (x86)\Roxio\BackOnTrack\File Backup\FileBackupSVC.exe [96752 2010-08-30] ()
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-03-16] () [Datei ist nicht signiert]
R2 LenovoCOMSvc; C:\Program Files\Lenovo\Power Dial\LenovoCOMSvc.exe [49152 2009-09-30] (Lenovo) [Datei ist nicht signiert]
R3 LitModeCtrl; C:\Program Files\Lenovo\Power Dial\LitModeCtrl.exe [81920 2010-09-09] (Lenovo) [Datei ist nicht signiert]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe [329480 2016-10-13] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
R2 Online Manager Service; C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe [3076096 2016-09-21] (Deutsche Telekom AG) [Datei ist nicht signiert]
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [76888 2013-02-27] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4255232 2016-02-15] (A-Volute) [Datei ist nicht signiert]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [177432 2016-10-26] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\System32\DRIVERS\avipbb.sys [145536 2016-10-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\System32\DRIVERS\avkmgr.sys [28600 2015-03-17] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\windows\System32\DRIVERS\avnetflt.sys [79696 2016-05-12] (Avira Operations GmbH & Co. KG)
S3 JmtFltr; C:\windows\System32\drivers\JmtFltr.sys [46464 2007-09-29] ()
R2 NPF_devolo; C:\windows\sysWOW64\drivers\npf_devolo.sys [34048 2015-07-01] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rzjstk; C:\windows\System32\DRIVERS\rzjstk.sys [36568 2015-08-13] (Razer Inc)
R3 rzkeypadendpt; C:\windows\System32\DRIVERS\rzkeypadendpt.sys [44760 2015-08-13] (Razer Inc)
S3 RZMAELSTROMVADService; C:\windows\System32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider)
R2 rzpmgrk; C:\windows\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\windows\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\windows\System32\drivers\RzSurroundVAD.sys [40640 2016-02-15] (Windows (R) Win 7 DDK provider)
S3 s217bus; C:\windows\System32\DRIVERS\s217bus.sys [108072 2007-11-02] (MCCI Corporation)
S3 s217mdfl; C:\windows\System32\DRIVERS\s217mdfl.sys [19496 2007-11-02] (MCCI Corporation)
S3 s217mdm; C:\windows\System32\DRIVERS\s217mdm.sys [145448 2007-11-02] (MCCI Corporation)
S3 s217nd5; C:\windows\System32\DRIVERS\s217nd5.sys [33832 2007-11-02] (MCCI Corporation)
S3 s217obex; C:\windows\System32\DRIVERS\s217obex.sys [124968 2007-11-02] (MCCI Corporation)
S3 s217unic; C:\windows\System32\DRIVERS\s217unic.sys [138792 2007-11-02] (MCCI)
R3 SaiMini; C:\windows\System32\DRIVERS\SaiMini.sys [24040 2014-06-13] (Saitek)
R3 SaiNtBus; C:\windows\System32\drivers\SaiBus.sys [51488 2014-09-15] (Saitek)
R3 TelekomNM6; C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\Driver\TelekomNM6.sys [45664 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
R3 vhidmini; C:\windows\System32\DRIVERS\vhidmini.sys [13952 2007-09-29] (Windows (R) Codename Longhorn DDK provider)
R3 _hid_0738_1704; C:\windows\System32\DRIVERS\_hid_0738_1704.sys [179904 2014-09-15] (Saitek)
S3 _hid_0738_1715; C:\windows\System32\DRIVERS\_hid_0738_1715.sys [179904 2014-06-13] (Saitek)
R3 _usb_0738_1704; C:\windows\System32\DRIVERS\_usb_0738_1704.sys [46528 2014-09-15] (Saitek)
S3 _usb_0738_1715; C:\windows\System32\DRIVERS\_usb_0738_1715.sys [46528 2014-06-13] (Saitek)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FRST:2 Code:
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-30 23:10 - 2016-11-30 23:10 - 00026767 _____ C:\Users\******\Downloads\FRST.txt
2016-11-30 23:10 - 2016-11-30 23:10 - 00000000 ____D C:\FRST
2016-11-30 23:08 - 2016-11-30 23:08 - 02411520 _____ (Farbar) C:\Users\******\Downloads\FRST64.exe
2016-11-30 22:17 - 2016-11-30 23:00 - 00000000 ____D C:\AdwCleaner
2016-11-30 22:16 - 2016-11-30 22:16 - 03910208 _____ C:\Users\******\Downloads\AdwCleaner_6.030.exe
2016-11-30 21:46 - 2016-11-30 21:46 - 00001136 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2016-11-29 12:27 - 2016-11-30 21:21 - 00000000 ____D C:\Program Files\VideoLAN
2016-11-29 10:16 - 2016-11-30 21:40 - 00000000 ____D C:\Users\******\Downloads\HiKamPCv4
2016-11-29 10:15 - 2016-11-29 10:16 - 02714969 _____ C:\Users\******\Downloads\HiKamPCv4.zip
2016-11-29 09:25 - 2016-11-30 19:53 - 00000000 ____D C:\Users\******\AppData\Roaming\iSpy
2016-11-29 09:24 - 2016-11-30 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSpy
2016-11-29 09:24 - 2016-11-30 21:40 - 00000000 ____D C:\Program Files\iSpy
2016-11-29 09:22 - 2016-11-29 09:23 - 23770871 _____ C:\Users\******\Downloads\iSpy64_6_5_8_0.zip
2016-11-29 08:13 - 2016-11-29 08:13 - 00000000 ____D C:\Users\******\Documents\INSTAR_REC
2016-11-29 08:13 - 2016-11-29 08:13 - 00000000 ____D C:\INSTAR
2016-11-22 12:13 - 2016-11-22 12:13 - 00000000 ____D C:\Users\******\Downloads\FW_IN-6001_3_1_2_56
2016-11-22 12:06 - 2016-11-22 12:06 - 06843849 _____ C:\Users\******\Downloads\FW_IN-6001_3_1_2_56.zip
2016-11-21 12:29 - 2016-11-21 12:29 - 00412160 _____ C:\Users\******\Downloads\INSTAR_Camera_Tool_2.0.6.msi.zip
2016-11-21 12:20 - 2016-11-21 12:20 - 06843849 _____ C:\Users\******\Downloads\IN-6001_FW_3.1.2.56_WebUI_1.12.(555)_update.zip
2016-11-19 12:45 - 2016-11-30 21:21 - 00000000 ____D C:\Users\******\AppData\LocalLow\Mozilla
2016-11-16 19:16 - 2016-11-16 19:16 - 00002144 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-11-16 19:16 - 2016-11-16 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-11-13 21:08 - 2016-11-13 21:08 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-13 21:08 - 2016-11-13 21:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-13 21:07 - 2016-11-13 21:08 - 00000000 ____D C:\Program Files\iTunes
2016-11-13 21:07 - 2016-11-13 21:07 - 00000000 ____D C:\Program Files\iPod
2016-11-10 12:14 - 2016-11-10 12:14 - 01358197 _____ C:\Users\******\Downloads\Fernbedienung-F(1).pdf
2016-11-10 12:13 - 2016-11-10 12:13 - 01358197 _____ C:\Users\******\Downloads\Fernbedienung-F.pdf
2016-11-09 16:45 - 2016-10-27 19:51 - 02896384 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-11-09 16:45 - 2016-10-27 19:28 - 25763328 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-11-09 16:45 - 2016-10-27 19:19 - 06047744 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-11-09 16:45 - 2016-10-27 18:44 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2016-11-09 16:45 - 2016-10-27 18:17 - 15257088 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-11-09 16:45 - 2016-10-27 18:16 - 02920448 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-11-09 16:45 - 2016-10-27 18:03 - 01543680 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-11-09 16:45 - 2016-10-27 16:05 - 20304896 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-11-09 16:45 - 2016-10-25 16:02 - 03219456 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-11-09 16:45 - 2016-10-22 18:27 - 02287616 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-11-09 16:45 - 2016-10-22 17:44 - 04608000 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-11-09 16:45 - 2016-10-22 17:43 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2016-11-09 16:45 - 2016-10-22 17:30 - 13654016 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-11-09 16:45 - 2016-10-22 17:12 - 02444800 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-11-09 16:45 - 2016-10-22 17:09 - 01312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-11-09 16:45 - 2016-10-11 14:33 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2016-11-09 16:45 - 2016-10-11 14:06 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2016-11-09 16:45 - 2016-10-10 16:33 - 01462272 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-11-09 16:45 - 2016-10-10 16:33 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-11-09 16:45 - 2016-10-07 16:40 - 00631176 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-11-09 16:45 - 2016-10-07 16:37 - 05547752 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-11-09 16:45 - 2016-10-07 16:37 - 00706792 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-11-09 16:45 - 2016-10-07 16:35 - 01732864 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-11-09 16:45 - 2016-10-07 16:32 - 03649536 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2016-11-09 16:45 - 2016-10-07 16:15 - 01314112 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2016-11-09 16:44 - 2016-11-02 16:36 - 00382696 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-11-09 16:44 - 2016-11-02 16:32 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2016-11-09 16:44 - 2016-11-02 16:32 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2016-11-09 16:44 - 2016-11-02 16:32 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2016-11-09 16:44 - 2016-11-02 16:32 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2016-11-09 16:44 - 2016-11-02 16:22 - 00308456 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2016-11-09 16:44 - 2016-11-02 16:16 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2016-11-09 16:44 - 2016-11-02 16:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2016-11-09 16:44 - 2016-11-02 16:16 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2016-11-09 16:44 - 2016-11-02 15:53 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2016-11-09 16:44 - 2016-10-28 04:59 - 00394440 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-11-09 16:44 - 2016-10-28 04:14 - 00346320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2016-11-09 16:44 - 2016-10-27 20:13 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-11-09 16:44 - 2016-10-27 20:13 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2016-11-09 16:44 - 2016-10-27 19:55 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-11-09 16:44 - 2016-10-27 19:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-11-09 16:44 - 2016-10-27 19:54 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2016-11-09 16:44 - 2016-10-27 19:53 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-11-09 16:44 - 2016-10-27 19:53 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2016-11-09 16:44 - 2016-10-27 19:44 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-11-09 16:44 - 2016-10-27 19:43 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-11-09 16:44 - 2016-10-27 19:38 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-11-09 16:44 - 2016-10-27 19:37 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-11-09 16:44 - 2016-10-27 19:37 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2016-11-09 16:44 - 2016-10-27 19:37 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-11-09 16:44 - 2016-10-27 19:37 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2016-11-09 16:44 - 2016-10-27 19:28 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2016-11-09 16:44 - 2016-10-27 19:24 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-11-09 16:44 - 2016-10-27 19:15 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2016-11-09 16:44 - 2016-10-27 19:13 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2016-11-09 16:44 - 2016-10-27 19:09 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2016-11-09 16:44 - 2016-10-27 19:08 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-11-09 16:44 - 2016-10-27 19:05 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-11-09 16:44 - 2016-10-27 19:02 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2016-11-09 16:44 - 2016-10-27 18:49 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-11-09 16:44 - 2016-10-27 18:46 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-11-09 16:44 - 2016-10-27 18:46 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-11-09 16:44 - 2016-10-27 18:44 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-11-09 16:44 - 2016-10-27 17:54 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-11-09 16:44 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2016-11-09 16:44 - 2016-10-22 18:36 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2016-11-09 16:44 - 2016-10-22 18:36 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2016-11-09 16:44 - 2016-10-22 18:35 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-11-09 16:44 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2016-11-09 16:44 - 2016-10-22 18:34 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2016-11-09 16:44 - 2016-10-22 18:27 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2016-11-09 16:44 - 2016-10-22 18:26 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2016-11-09 16:44 - 2016-10-22 18:22 - 00476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2016-11-09 16:44 - 2016-10-22 18:21 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-11-09 16:44 - 2016-10-22 18:21 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2016-11-09 16:44 - 2016-10-22 18:20 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2016-11-09 16:44 - 2016-10-22 18:09 - 00416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2016-11-09 16:44 - 2016-10-22 18:04 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-09 16:44 - 2016-10-22 18:03 - 00091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2016-11-09 16:44 - 2016-10-22 17:59 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2016-11-09 16:44 - 2016-10-22 17:58 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2016-11-09 16:44 - 2016-10-22 17:56 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-11-09 16:44 - 2016-10-22 17:54 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2016-11-09 16:44 - 2016-10-22 17:46 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2016-11-09 16:44 - 2016-10-22 17:45 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-11-09 16:44 - 2016-10-22 17:43 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-11-09 16:44 - 2016-10-22 17:09 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-11-09 16:44 - 2016-10-15 16:31 - 00976896 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-11-09 16:44 - 2016-10-15 16:31 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2016-11-09 16:44 - 2016-10-15 16:13 - 00741888 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-11-09 16:44 - 2016-10-15 16:13 - 00084480 _____ (Microsoft Corporation) C:\windows\SysWOW64\INETRES.dll
2016-11-09 16:44 - 2016-10-11 16:37 - 00370920 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys
2016-11-09 16:44 - 2016-10-11 16:31 - 01148416 _____ (Microsoft Corporation) C:\windows\system32\IMJP10.IME
2016-11-09 16:44 - 2016-10-11 16:31 - 01068544 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2016-11-09 16:44 - 2016-10-11 16:31 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL
2016-11-09 16:44 - 2016-10-11 16:31 - 00457216 _____ (Microsoft Corporation) C:\windows\system32\imkr80.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00246784 _____ (Microsoft Corporation) C:\windows\system32\input.dll
2016-11-09 16:44 - 2016-10-11 16:31 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\tintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\quick.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\qintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\phon.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\cintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\chajei.ime
2016-11-09 16:44 - 2016-10-11 16:31 - 00132608 _____ (Microsoft Corporation) C:\windows\system32\pintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 01027584 _____ (Microsoft Corporation) C:\windows\SysWOW64\IMJP10.IME
2016-11-09 16:44 - 2016-10-11 16:18 - 00829952 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2016-11-09 16:44 - 2016-10-11 16:18 - 00701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\IMJP10K.DLL
2016-11-09 16:44 - 2016-10-11 16:18 - 00430080 _____ (Microsoft Corporation) C:\windows\SysWOW64\imkr80.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00202240 _____ (Microsoft Corporation) C:\windows\SysWOW64\input.dll
2016-11-09 16:44 - 2016-10-11 16:18 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\tintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\quick.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\qintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\phon.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\cintlgnt.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\chajei.ime
2016-11-09 16:44 - 2016-10-11 16:18 - 00090112 _____ (Microsoft Corporation) C:\windows\SysWOW64\pintlgnt.ime
2016-11-09 16:44 - 2016-10-10 16:38 - 00154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-11-09 16:44 - 2016-10-10 16:38 - 00095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-11-09 16:44 - 2016-10-10 16:34 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2016-11-09 16:44 - 2016-10-10 16:34 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-11-09 16:44 - 2016-10-10 16:34 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2016-11-09 16:44 - 2016-10-10 16:34 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 01212928 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00730624 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2016-11-09 16:44 - 2016-10-10 16:33 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2016-11-09 16:44 - 2016-10-10 16:16 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2016-11-09 16:44 - 2016-10-10 16:02 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2016-11-09 16:44 - 2016-10-10 15:56 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-11-09 16:44 - 2016-10-10 15:55 - 00291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-11-09 16:44 - 2016-10-10 15:55 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-11-09 16:44 - 2016-10-10 15:55 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2016-11-09 16:44 - 2016-10-10 15:54 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2016-11-09 16:44 - 2016-10-10 15:50 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00877056 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:18 - 04000488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2016-11-09 16:44 - 2016-10-07 16:18 - 03944680 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2016-11-09 16:44 - 2016-10-07 16:12 - 02291712 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSVidCtl.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00581632 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 16:04 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2016-11-09 16:44 - 2016-10-07 16:04 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2016-11-09 16:44 - 2016-10-07 16:04 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2016-11-09 16:44 - 2016-10-07 16:01 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2016-11-09 16:44 - 2016-10-07 16:00 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2016-11-09 16:44 - 2016-10-07 15:56 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2016-11-09 16:44 - 2016-10-07 15:50 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2016-11-09 16:44 - 2016-10-07 15:50 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2016-11-09 16:44 - 2016-10-07 15:50 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2016-11-09 16:44 - 2016-10-07 15:50 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2016-11-09 16:44 - 2016-10-07 15:49 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 15:49 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 15:49 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 16:44 - 2016-10-07 15:49 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-09 16:44 - 2016-10-05 15:54 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2016-11-09 16:44 - 2016-09-15 15:56 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2016-11-09 16:44 - 2016-09-13 16:37 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2016-11-09 16:44 - 2016-09-13 16:11 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2016-11-09 16:44 - 2016-09-09 19:20 - 00756736 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2016-11-09 16:44 - 2016-09-09 19:00 - 00497152 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2016-11-09 16:44 - 2016-08-22 17:19 - 01386496 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2016-11-02 21:05 - 2016-11-02 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-30 23:10 - 2015-04-10 08:45 - 00000000 _____ C:\windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-11-30 23:09 - 2012-03-23 12:28 - 00699884 _____ C:\windows\system32\perfh007.dat
2016-11-30 23:09 - 2012-03-23 12:28 - 00149766 _____ C:\windows\system32\perfc007.dat
2016-11-30 23:09 - 2009-07-14 06:13 - 01622300 _____ C:\windows\system32\PerfStringBackup.INI
2016-11-30 23:09 - 2009-07-14 04:20 - 00000000 ____D C:\windows\inf
2016-11-30 23:02 - 2012-03-23 12:27 - 00001106 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-30 23:02 - 2012-03-23 12:18 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-30 23:02 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-11-30 22:49 - 2016-02-26 18:59 - 00000414 _____ C:\windows\Tasks\HP Photo Creations Communicator.job
2016-11-30 22:14 - 2012-03-23 12:27 - 00001110 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-30 22:12 - 2015-04-25 23:08 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-11-30 21:50 - 2013-11-12 12:54 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-11-30 21:49 - 2009-07-14 05:45 - 00020480 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-30 21:49 - 2009-07-14 05:45 - 00020480 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-30 21:46 - 2015-03-25 10:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-11-30 21:46 - 2013-11-13 19:06 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-30 21:42 - 2012-08-15 14:31 - 00000000 ____D C:\Users\******
2016-11-30 21:40 - 2016-10-21 10:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-30 21:40 - 2014-01-24 15:12 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2016-11-30 21:40 - 2014-01-18 17:53 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2016-11-30 21:40 - 2012-11-16 08:08 - 00000000 ____D C:\Users\Administrator
2016-11-30 21:40 - 2012-08-15 15:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-30 21:40 - 2011-02-15 11:41 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-11-30 21:40 - 2009-07-14 06:09 - 00000000 ____D C:\windows\System32\Tasks\WPD
2016-11-30 21:40 - 2009-07-14 04:20 - 00000000 ____D C:\windows\system32\NDF
2016-11-30 21:40 - 2009-07-14 04:20 - 00000000 ____D C:\windows\registration
2016-11-30 21:39 - 2012-08-15 14:35 - 00000000 ____D C:\Users\******\AppData\Local\Google
2016-11-30 21:38 - 2013-05-21 12:32 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-11-30 21:38 - 2012-08-16 06:20 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-24 20:56 - 2015-12-27 23:15 - 00000000 ____D C:\Users\******\AppData\Local\CrashDumps
2016-11-16 19:16 - 2012-03-23 12:27 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-13 21:07 - 2015-10-09 11:26 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-10 11:37 - 2012-10-18 13:33 - 00000000 ____D C:\Users\******\Desktop\PDFs
2016-11-10 10:46 - 2009-07-14 04:20 - 00000000 ____D C:\windows\rescache
2016-11-10 09:16 - 2013-12-09 14:01 - 00002175 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-10 09:16 - 2012-03-23 12:27 - 00002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-10 08:50 - 2009-07-14 05:45 - 00342424 _____ C:\windows\system32\FNTCACHE.DAT
2016-11-09 22:45 - 2013-07-13 02:02 - 00000000 ____D C:\windows\system32\MRT
2016-11-09 22:41 - 2012-08-18 10:47 - 141011376 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-11-09 17:12 - 2015-04-25 23:08 - 00003822 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-11-09 17:12 - 2012-08-15 15:56 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-11-09 17:12 - 2012-08-15 15:56 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-09 17:12 - 2012-08-15 15:56 - 00000000 ____D C:\windows\system32\Macromed
2016-11-09 17:12 - 2012-03-23 12:26 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-11-09 16:46 - 2014-12-29 07:14 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-05 17:42 - 2015-07-22 07:44 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-02 21:05 - 2015-11-11 17:53 - 00000000 ____D C:\Program Files\McAfee Security Scan
2016-11-02 21:05 - 2014-01-18 17:53 - 00001964 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-11-16 07:58 - 2016-03-11 14:34 - 0007614 _____ () C:\Users\******\AppData\Local\resmon.resmoncfg
2014-03-11 13:30 - 2014-03-11 13:30 - 0000057 _____ () C:\ProgramData\Ament.ini
2012-03-23 12:26 - 2012-03-23 12:26 - 1914000 _____ (Adobe Systems Incorporated) C:\ProgramData\flashax10.exe
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\flashax10.exe
Einige Dateien in TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\AskSLib.dll
C:\Users\Administrator\AppData\Local\Temp\avgnt.exe
C:\Users\******\AppData\Local\Temp\avgnt.exe
C:\Users\******\AppData\Local\Temp\libeay32.dll
C:\Users\******\AppData\Local\Temp\msvcr120.dll
C:\Users\******\AppData\Local\Temp\sqlite3.dll
C:\Users\******\AppData\Local\Temp\_is4356.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll => Datei ist digital signiert
C:\windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-11-24 08:34
==================== Ende von FRST.txt ============================
Addition: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 30-11-2016
durchgeführt von ***** (30-11-2016 23:11:29)
Gestartet von C:\Users\*****\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2012-08-15 13:31:36)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1868706644-327019257-4281404765-500 - Administrator - Enabled) => C:\Users\Administrator
Gast (S-1-5-21-1868706644-327019257-4281404765-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1868706644-327019257-4281404765-1003 - Limited - Enabled)
***** (S-1-5-21-1868706644-327019257-4281404765-1001 - Administrator - Enabled) => C:\Users\*****
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.23.58 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Connect (HKLM-x32\...\{e7f56494-d786-472e-aba2-1b93089e06cd}) (Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother P-touch Editor 5.1 (HKLM-x32\...\{39270390-A851-4E4B-94A9-D5C468216ED3}) (Version: 5.1.0200 - Brother Industries, Ltd.)
Brother P-touch Update Software (HKLM-x32\...\{71B8773E-6B93-409A-84DF-49E387978F4A}) (Version: 1.0.0080 - Brother Industries, Ltd.)
Call of Duty: Advanced Warfare - Multiplayer (HKLM-x32\...\Steam App 209660) (Version: - Sledgehammer Games)
Call of Duty: Advanced Warfare (HKLM-x32\...\Steam App 209650) (Version: - Sledgehammer Games)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - )
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - )
Call of Duty: Black Ops III (HKLM-x32\...\Steam App 311210) (Version: - Treyarch)
Call of Duty: Ghosts - Multiplayer (HKLM-x32\...\Steam App 209170) (Version: - )
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM-x32\...\Steam App 42690) (Version: - Infinity Ward - Sledgehammer Games)
Call of Duty: Modern Warfare 3 (HKLM-x32\...\Steam App 42680) (Version: - Infinity Ward - Sledgehammer Games)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.0.3661 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG)
devolo LiveCam (HKLM-x32\...\dlanlivecam) (Version: 1.1.1.0 - devolo AG)
Free YouTube Download version 3.2.0.128 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.0.128 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Photo Creations (HKU\S-1-5-21-1868706644-327019257-4281404765-1001\...\HP Photo Creations) (Version: 1.0.0.19802 - HP)
HP Photosmart 6520 series - Grundlegende Software für das Gerät (HKLM\...\{97771E91-1EF5-4EAA-B19E-94901CF363AA}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 6520 series Hilfe (HKLM-x32\...\{CF29A236-2802-415A-AF44-4383892BD804}) (Version: 28.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lenovo Blacksilk USB Keyboard Driver (HKLM-x32\...\{B266E062-D6C5-485B-B426-51B152B041A6}) (Version: V1.4.11.0608 - Lenovo)
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3720 - CyberLink Corp.)
Lenovo Power2Go (x32 Version: 6.0.3720 - CyberLink Corp.) Hidden
Lenovo Rescue System (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 3.0.2431 - CyberLink Corp.)
Lenovo Rescue System (Version: 3.0.2431 - CyberLink Corp.) Hidden
Lenovo Treiber- und Anwendungsinstallation (HKLM-x32\...\{45970CD1-D599-47D4-938F-3E9800D54ED1}) (Version: 5.10.2918 - Lenovo)
Logitech GamePanel Software 3.06.109 (HKLM\...\{A1E85B9A-AFAD-4D38-AF01-6B020DD5213A}) (Version: 3.06.109 - Logitech Inc.)
LVT (HKLM-x32\...\{D3063097-EC84-4D21-84A4-9D852E974355}) (Version: 4.1.3.0309 - Lenovo)
M.O.U.S.9 (HKLM\...\{DEE9D313-F54A-45C6-BEBB-17D67174235C}) (Version: 7.0.38.0 - Mad Catz Inc)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.427.2 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Access database engine 2010 (German) (HKLM-x32\...\{90140000-00D1-0407-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Mozilla Firefox 49.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 de)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla)
my devolo (HKLM-x32\...\mydevolo) (Version: 1.2.2.0 - devolo AG)
n52te Editor (HKLM-x32\...\{0AC8162B-5175-41D7-B963-8307A40BD456}) (Version: 5.01 - Razer USA Ltd.)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.75 - NVIDIA Corporation)
NVIDIA Grafiktreiber 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.75 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Online Manager (HKLM-x32\...\Online Manager) (Version: 2.02 - Deutsche Telekom AG)
Online Manager (Version: 2.02 - Deutsche Telekom AG, Marmiko IT-Solutions GmbH) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.5.0 - Frank Heindörfer, Philip Chinery)
Power Dial (HKLM-x32\...\{816F9A97-9889-43DA-A394-7AA45DD68BA0}) (Version: 3.0.1.2126 - Lenovo)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
R.A.T.TE (HKLM\...\{BB4C9FFD-7EED-47D0-9020-BD12883F9AD7}) (Version: 7.0.38.0 - Mad Catz Inc)
R.A.T.TE Game Profiles (HKLM-x32\...\{B36E76E4-1110-4FD6-9ADF-1A265EF23BA3}) (Version: 1.0.0.0 - Mad Catz Inc)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.19 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.810 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6151 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30123 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0159 - )
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.26.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation) Hidden
Roxio BackOnTrack (HKLM-x32\...\{32F9BACF-FCD3-4B6A-AD85-255A449B6FA5}) (Version: 1.3.1 - Roxio)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
t@x 2013 Professional (HKLM-x32\...\{6737F045-A91A-4177-9C8C-59460FC1C84D}) (Version: 20.08.8317 - Buhl Data Service GmbH)
t@x 2014 Professional (HKLM-x32\...\{2547CF96-DBB7-4EDD-9327-0EFDD0D1FA8A}) (Version: 21.00.8480 - Buhl Data Service GmbH)
tax 2015 Professional (HKLM-x32\...\{4CF96070-DEE5-43B5-B6A7-23AC07BC0C77}) (Version: 22.00.8811 - Buhl Data Service GmbH)
tax 2016 Professional (HKLM-x32\...\{30E85B0C-57D8-4ECE-814B-264550A92FAB}) (Version: 23.07.1500 - Buhl Data Service GmbH)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
ThemeWallpaper (HKLM-x32\...\{F29CBF73-C211-4616-898A-379A2679F990}) (Version: 1.2.0.101108 - Lenovo)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {019292C3-5EF6-48AE-8FA9-940E7DFB8FBE} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => c:\Program Files\Microsoft Device Center\devicecenter.exe
Task: {031700EF-AF08-4D45-B81D-517EE8ABCBC5} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {2AACEDD3-12E2-4752-83A7-7EFDA8C4413A} - System32\Tasks\HP AR Program Upload - 7a852f421ff246b3827a08609f05a69128aadd9d0de44ec1857df51055682f6b => C:\Program Files\HP\HP Photosmart 6520 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {484E281E-3B57-4FAB-9058-EDE62E59C7C7} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {48F3BC5D-948B-4D54-88B3-687CF0C1EC53} - System32\Tasks\HP AR Program Upload - 4ebde0b35c73407bbef555971aaaacaad0a0dded03bd4aa19766dea116abd54f => C:\Program Files\HP\HP Photosmart 6520 series\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {5865C347-B635-4ECB-B59B-217E8172B305} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {5E34DC64-2EA1-4CD4-B428-A1EFF07C79F2} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {7C869824-86C7-410E-A3A6-867B53B941E5} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {9BF01FB5-9922-4FC1-AD3C-D653E37B0031} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {9E3D46A2-A694-49E8-AC79-CB2B430A35C6} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {AFC29064-BCA0-4357-96F3-05B95A75665F} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1868706644-327019257-4281404765-1001
Task: {B955C34D-492A-4218-80E5-05A09B5E1E75} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {C13BE75C-8C4E-4860-AEA3-D641B164103D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {CE1C6A18-4244-41C4-8B64-E7004B8E0600} - System32\Tasks\HP Photo Creations Communicator => C:\Users\*****\AppData\Roaming\HP Photo Creations\Communicator.exe [2016-02-26] ()
Task: {D91319CA-4282-4C3B-9E18-154CB2B4A06D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DC608A16-7C8F-4C11-B23B-8B6BB5844B79} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {E1F16FD3-3320-4062-AB1C-CC515E391F21} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {F56C0486-EE36-4CA3-8C42-9DF5ECECA8BD} - System32\Tasks\{A57AFBA1-B8E5-4928-9E5F-DBC2A46F7213} => pcalua.exe -a C:\Users\*****\Downloads\Rathscheck_Schiefer_O2CSetupOCX.exe -d C:\Users\*****\Downloads
Task: {F689169C-5118-4228-957B-668B9CBFD2FA} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HP Photo Creations Communicator.job => C:\Users\*****\AppData\Roaming\HP Photo Creations\Communicator.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-03-23 11:48 - 2016-01-23 02:04 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-08-30 07:07 - 2010-08-30 07:07 - 00096752 _____ () C:\Program Files (x86)\Roxio\BackOnTrack\File Backup\FileBackupSVC.exe
2012-03-23 11:51 - 2011-03-16 04:47 - 00032768 _____ () C:\Windows\jmesoft\Service.exe
2016-02-26 07:50 - 2016-06-15 02:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-10-16 17:18 - 2016-06-15 02:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-26 07:50 - 2016-06-15 02:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2015-12-25 15:27 - 2016-06-15 02:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2013-02-25 07:51 - 2013-02-27 08:57 - 00076888 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2015-11-05 01:11 - 2015-11-05 01:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-10-16 17:18 - 2016-06-15 02:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-10-16 17:18 - 2016-06-15 02:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-10-16 17:18 - 2016-06-15 02:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-30 13:26 - 2016-06-15 02:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-10-16 17:18 - 2016-06-15 02:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-10-16 17:18 - 2016-06-15 02:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-03-17 17:11 - 2015-03-17 17:11 - 12451840 _____ () C:\Program Files\Mad Catz\R.A.T.TE\Pr0fileEditor_Forms.dll
2015-03-17 17:15 - 2015-03-17 17:15 - 00315392 _____ () C:\Program Files\Mad Catz\R.A.T.TE\de\Pr0fileEditor_Forms.resources.dll
2012-03-23 11:51 - 2011-05-17 21:54 - 00024576 _____ () C:\Windows\jmesoft\JME_LOAD.exe
2015-03-24 12:33 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-03-24 12:33 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-03-24 12:33 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-03-24 12:33 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-03-24 12:33 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-05-22 16:09 - 2016-06-15 02:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2012-03-23 12:25 - 2008-12-30 19:09 - 02088960 _____ () C:\Program Files\Lenovo\Power Dial\LitModeSwitchRes.dll
2009-12-05 00:59 - 2009-12-05 00:59 - 00619816 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2009-12-05 01:04 - 2009-12-05 01:04 - 00013096 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2012-03-23 11:51 - 2011-05-17 21:27 - 00028672 _____ () C:\Windows\jmesoft\hidhook.dll
2016-08-19 08:39 - 2016-08-19 08:39 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-05-12 05:22 - 2016-05-12 05:22 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\22e6307b0cd5955ebf3f8abd9e3ab58d\IsdiInterop.ni.dll
2012-03-23 11:47 - 2010-09-14 02:28 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\windows\Temp:$DATA [16]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1868706644-327019257-4281404765-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\*****\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{E7239E1F-CD9B-421C-933C-05FE94D955BE}] => C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{2AC53AA6-9C55-4F70-A080-543D551F9179}] => C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{C4529D9B-1375-43BA-B0FA-4FF18FC71CB8}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1351703C-D7F7-4340-BD66-A169AB45682D}] => LPort=2869
FirewallRules: [{7B5EC7AE-D114-49F0-9FBB-27B15BAD836E}] => LPort=1900
FirewallRules: [{88E6996C-4094-42FC-ABBF-8CB089A36098}] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{FDA1ABC2-48AE-4499-B37C-3CA5E0DD5E66}] => C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{615AC687-6E23-4A0E-A251-E567CB19E914}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{061679F8-E8C6-404E-AAE3-B4E9E882F6FB}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{1ABB81A3-3554-4EDC-87E1-F1347AFDC722}C:\program files (x86)\steam\steamapps\willi_1969\team fortress 2\hl2.exe] => C:\program files (x86)\steam\steamapps\willi_1969\team fortress 2\hl2.exe
FirewallRules: [UDP Query User{87BE0CFE-9301-45B7-959D-10F7EDC0A209}C:\program files (x86)\steam\steamapps\willi_1969\team fortress 2\hl2.exe] => C:\program files (x86)\steam\steamapps\willi_1969\team fortress 2\hl2.exe
FirewallRules: [TCP Query User{85E02F0E-8AFA-4D59-A443-446327035A7C}C:\program files (x86)\mozilla firefox\plugin-container.exe] => C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{E84AB32B-BD04-4ADB-ABCF-D62C399F1941}C:\program files (x86)\mozilla firefox\plugin-container.exe] => C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{BF9A06F2-52C7-4E8B-B155-82E37E7DA5DB}] => C:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 3\iw5sp.exe
FirewallRules: [{171CE415-E5A2-44E2-9D29-DE255857DDAA}] => C:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 3\iw5sp.exe
FirewallRules: [{1B18C3E0-08E1-46BA-99CA-028E2BA8FC70}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{BB38C3B5-4306-4904-9EAD-CB3A4A3C4A56}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty World at War\CoDWaW.exe
FirewallRules: [{5215C782-5A6A-4EA9-AA1C-76DD29A8F89A}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{F5BDE0A0-D80E-4A6E-AF0D-978E1F9F26FE}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty World at War\CoDWaWmp.exe
FirewallRules: [{C3A3E29F-DE68-43C0-B5F5-CECEFA86AE06}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5A8310B5-98E4-4FD6-9C12-8D28E36D7429}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6D3D2044-664E-4334-994C-E3A720D48FF4}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{17CDAFAA-AB29-4F63-981D-7BC9AB5AFBF8}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8024F050-D1C2-4CE0-B89F-42D23392173C}] => C:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{B8785A92-DE89-44FC-A532-EF1FDAF40566}] => C:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{2612EC2C-3C18-4B8C-A604-F858C099F400}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{2E563483-2A83-4768-9980-24F8B9AFBDC3}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5B256C2A-808B-4F61-8C0E-CA4E8EDE0DE0}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{A20F8039-6BA7-4B0F-A84D-7A3A40FDF82F}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{72591130-D90E-46DF-89F3-768CBAC29C6E}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{0F35AD79-91C9-407C-AAB2-EA24E9D79072}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{2932E972-3C3E-4ABF-B7DA-94C7201A9D4D}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{8612A908-D6E5-42E9-9716-DFB560CDA4BC}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{6090EA36-84EC-44E4-A4BC-BFE5E81EB046}] => C:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{874C6D0C-3368-4A08-9C13-CEDC70A0FA15}] => C:\Program Files (x86)\Steam\SteamApps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{0A503426-EF61-4631-8C4D-965727DA2F30}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{E599480B-51CC-46B5-B8C8-78DD82463D42}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{DAC79321-8EFF-4DDE-9DF1-2B2DA7448C49}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C87BC789-54C1-479B-A429-1728AB8C4A01}] => C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A93FD79B-13CC-48F2-913E-6DBE3ADD4F2F}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{16368213-B089-4C36-BE7D-E170D1FAD70D}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3F20D1C8-AA89-44AD-9EC8-4A7B41D5E15A}] => C:\Program Files (x86)\devolo\dlan\plcnetcam\plcnetcam.exe
FirewallRules: [{79EE172E-49EC-4E9F-80A1-5570A34A434A}] => C:\Program Files\HP\HP Photosmart 6520 series\Bin\DeviceSetup.exe
FirewallRules: [{069A9E6C-CBE1-423C-A69A-6B93F9722985}] => C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{0DBDD270-2688-45FB-BD3E-4854F3692F9D}] => C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{E5283144-D502-459C-B711-18F63CB6D606}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [UDP Query User{D59898A6-4099-4E4E-92F4-FB3BBAE2989A}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [{7AC8E26F-7BEB-48A8-80B7-D5A872945391}] => C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{7E193F42-36A0-4E92-A6A2-A69EAF86961B}] => C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{D1E1530E-9B8B-4CEA-9179-1DED85682293}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7F395CD2-5CC5-46C4-A1B9-B8A45F9C10B6}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5CF9E7A1-8F39-4EE9-9563-E266F72F6088}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{E420BFF6-15A0-46E4-B189-2B936EBC4BC4}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{039DBD8F-D8F9-40AF-89A0-1ECA55D29185}] => C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{D596022D-7654-4926-AB28-43F41D29CD10}] => C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{A7353D76-5BE4-43E6-83DF-154F6D42087B}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{F23D7564-1B08-4CC4-B546-A9A4919BBF7E}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_sp64_ship.exe
FirewallRules: [{77EC7648-3033-40E0-9F38-23946410240B}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{ED352E14-9837-4C53-AD8B-4F6C4AC4ACD2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B3281BF3-412D-4734-A0C8-69931D6FE8BC}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{2510C8D8-A34A-476B-B42D-91D945746967}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [TCP Query User{D3081582-0AA5-4959-8C47-FEC23E7154AC}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8DE18409-D6F7-41B3-A42F-463FD1F64E40}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{837F40BF-25D4-4591-8D30-1D905BFFFE24}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8C7249EE-4A7A-46C1-8959-2FF78F0EA291}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{7EFDDD1C-C2D0-494B-9F54-86C54042F1CB}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{BC2B50D4-AB6B-4E97-A741-B77DFA9103B9}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CAA5959B-104E-49AB-A176-67B4AD9E38AB}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{66305027-087D-4719-9B35-23F26A232A89}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{64DA1117-109D-4398-BEEB-46B9337FD46E}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{7B497DCA-5C0F-4BDF-A570-CC563665FBF7}] => C:\Program Files (x86)\devolo\dlan\mydevolo\mydevolo.exe
FirewallRules: [{50D1A539-D99B-44CA-A46A-FF779146F2FD}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{EF053D78-DACF-4A6F-AC03-3861EEA0804A}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{44B90523-79BC-4C18-A239-3E2A0B7B3D41}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{79E52042-1D93-4E2D-BEF3-452396B76DD5}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5D7D3822-E603-4376-8FE6-514C02C857C9}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9C8B4AAA-B41D-4C4B-BA57-C907A4FEDD1A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E602164E-9F6D-4781-9D93-39296033521E}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7848346F-B56B-4929-A3B7-CD419318A202}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{583D330B-D026-46A1-9351-353B56ADAD28}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops III\BlackOps3.exe
FirewallRules: [{D7663725-4051-4427-B66E-97669B68A6FE}] => C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops III\BlackOps3.exe
FirewallRules: [{059E55A7-0A6F-45C6-957C-A1D227903BA9}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B2BDA70B-0893-41B2-9E16-7B9DED33E2A8}] => C:\Program Files\iTunes\iTunes.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
17-11-2016 10:25:45 Geplanter Prüfpunkt
21-11-2016 12:29:35 Installed INSTAR Camera Tool
29-11-2016 09:23:51 iSpy package installer (64 bit)
30-11-2016 21:21:16 Removed System Requirements Lab Detection
30-11-2016 21:35:40 Wiederherstellungsvorgang
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/30/2016 11:11:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineManager_Service.exe, Version: 2.2.124.1, Zeitstempel: 0x57e2f024
Name des fehlerhaften Moduls: MSVCR90.dll, Version: 9.0.30729.4940, Zeitstempel: 0x4ca2e32e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001e8c0
ID des fehlerhaften Prozesses: 0x10a0
Startzeit der fehlerhaften Anwendung: 0x01d24b5670506a37
Pfad der fehlerhaften Anwendung: C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
Pfad des fehlerhaften Moduls: C:\windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCR90.dll
Berichtskennung: df78d3ac-b749-11e6-9513-8c89a5bc40ac
Error: (11/30/2016 11:11:00 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: OnlineManager_Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
bei ..(System.String, Boolean, IntPtr ByRef, UInt64 ByRef)
bei MInfraIS2Agents.Helper.SoftPlugHelper.PlcMac(System.String, Boolean, System.Collections.Generic.List`1<System.String> ByRef)
bei ..(Marmiko.MSystemHlp.Container.MACAddress)
bei ..()
bei ..StartScan(MInfraIS2Agents.Scan.ThreadScannerStartParams)
bei MInfraIS2Agents.Scan.ThreadScannerBase.(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart(System.Object)
Error: (11/30/2016 11:09:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineManager_Service.exe, Version: 2.2.124.1, Zeitstempel: 0x57e2f024
Name des fehlerhaften Moduls: MSVCR90.dll, Version: 9.0.30729.4940, Zeitstempel: 0x4ca2e32e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001e8c0
ID des fehlerhaften Prozesses: 0x17cc
Startzeit der fehlerhaften Anwendung: 0x01d24b563965d74d
Pfad der fehlerhaften Anwendung: C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
Pfad des fehlerhaften Moduls: C:\windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCR90.dll
Berichtskennung: a8be0406-b749-11e6-9513-8c89a5bc40ac
Error: (11/30/2016 11:09:28 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: OnlineManager_Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
bei ..(System.String, Boolean, IntPtr ByRef, UInt64 ByRef)
bei MInfraIS2Agents.Helper.SoftPlugHelper.PlcMac(System.String, Boolean, System.Collections.Generic.List`1<System.String> ByRef)
bei ..(Marmiko.MSystemHlp.Container.MACAddress)
bei ..()
bei ..StartScan(MInfraIS2Agents.Scan.ThreadScannerStartParams)
bei MInfraIS2Agents.Scan.ThreadScannerBase.(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart(System.Object)
Error: (11/30/2016 11:07:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineManager_Service.exe, Version: 2.2.124.1, Zeitstempel: 0x57e2f024
Name des fehlerhaften Moduls: MSVCR90.dll, Version: 9.0.30729.4940, Zeitstempel: 0x4ca2e32e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001e8c0
ID des fehlerhaften Prozesses: 0x1ca8
Startzeit der fehlerhaften Anwendung: 0x01d24b5602f38366
Pfad der fehlerhaften Anwendung: C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
Pfad des fehlerhaften Moduls: C:\windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCR90.dll
Berichtskennung: 72301167-b749-11e6-9513-8c89a5bc40ac
Error: (11/30/2016 11:07:56 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: OnlineManager_Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
bei ..(System.String, Boolean, IntPtr ByRef, UInt64 ByRef)
bei MInfraIS2Agents.Helper.SoftPlugHelper.PlcMac(System.String, Boolean, System.Collections.Generic.List`1<System.String> ByRef)
bei ..(Marmiko.MSystemHlp.Container.MACAddress)
bei ..()
bei ..StartScan(MInfraIS2Agents.Scan.ThreadScannerStartParams)
bei MInfraIS2Agents.Scan.ThreadScannerBase.(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart(System.Object)
Error: (11/30/2016 11:06:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineManager_Service.exe, Version: 2.2.124.1, Zeitstempel: 0x57e2f024
Name des fehlerhaften Moduls: MSVCR90.dll, Version: 9.0.30729.4940, Zeitstempel: 0x4ca2e32e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001e8c0
ID des fehlerhaften Prozesses: 0xa6c
Startzeit der fehlerhaften Anwendung: 0x01d24b55d2710c40
Pfad der fehlerhaften Anwendung: C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
Pfad des fehlerhaften Moduls: C:\windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCR90.dll
Berichtskennung: 3b616b56-b749-11e6-9513-8c89a5bc40ac
Error: (11/30/2016 11:06:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: OnlineManager_Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
bei ..(System.String, Boolean, IntPtr ByRef, UInt64 ByRef)
bei MInfraIS2Agents.Helper.SoftPlugHelper.PlcMac(System.String, Boolean, System.Collections.Generic.List`1<System.String> ByRef)
bei ..(Marmiko.MSystemHlp.Container.MACAddress)
bei ..()
bei ..StartScan(MInfraIS2Agents.Scan.ThreadScannerStartParams)
bei MInfraIS2Agents.Scan.ThreadScannerBase.(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart(System.Object)
Error: (11/30/2016 11:04:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineManager_Service.exe, Version: 2.2.124.1, Zeitstempel: 0x57e2f024
Name des fehlerhaften Moduls: MSVCR90.dll, Version: 9.0.30729.4940, Zeitstempel: 0x4ca2e32e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000001e8c0
ID des fehlerhaften Prozesses: 0xc98
Startzeit der fehlerhaften Anwendung: 0x01d24b557ef35b51
Pfad der fehlerhaften Anwendung: C:\Program Files\Deutsche Telekom AG\Online Manager\NMInfraIS2\OnlineManager_Service.exe
Pfad des fehlerhaften Moduls: C:\windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\MSVCR90.dll
Berichtskennung: 05d31226-b749-11e6-9513-8c89a5bc40ac
Error: (11/30/2016 11:04:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: OnlineManager_Service.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
bei ..(System.String, Boolean, IntPtr ByRef, UInt64 ByRef)
bei MInfraIS2Agents.Helper.SoftPlugHelper.PlcMac(System.String, Boolean, System.Collections.Generic.List`1<System.String> ByRef)
bei ..(Marmiko.MSystemHlp.Container.MACAddress)
bei ..()
bei ..StartScan(MInfraIS2Agents.Scan.ThreadScannerStartParams)
bei MInfraIS2Agents.Scan.ThreadScannerBase.(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart(System.Object)
Systemfehler:
=============
Error: (11/30/2016 11:11:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 5 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/30/2016 11:09:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 4 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/30/2016 11:07:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 3 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/30/2016 11:06:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/30/2016 11:05:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/30/2016 11:04:14 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "LitModeCtrl" hat einen ungültigen aktuellen Status gemeldet: 32
Error: (11/30/2016 11:02:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "HP Support Solutions Framework Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (11/30/2016 11:02:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HP Support Solutions Framework Service erreicht.
Error: (11/30/2016 11:01:07 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (11/30/2016 11:00:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Online Manager Infrastruktur Informationssystem Service" wurde unerwartet beendet. Dies ist bereits 53 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 8172.97 MB
Verfügbarer physikalischer RAM: 4735.26 MB
Summe virtueller Speicher: 16344.13 MB
Verfügbarer virtueller Speicher: 12638.89 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:906.34 GB) (Free:403.44 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5FF12119)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=906.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=25.1 GB) - (Type=12)
==================== Ende von Addition.txt ============================
AdwCleaner:1
Code:
# AdwCleaner v6.030 - Bericht erstellt am 30/11/2016 um 23:00:58
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-29.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : ***** - *****-PC
[I
]AdwCleaner:2
Ab hier Funktioniert das Aufteilen nicht mehr...
Nach ner Stunde probieren gebe ich es jetzt Komplett als Anhang mit, Sorry!!
Bei der Suche nach ner Anleitung zum Trennen erschien wieder: Startfenster.de
[/I] Ich hoffe alles richtig beachtet zu haben, wenn nicht verzeiht mir bitte im Voraus.
Bitte um Anweisungen was ich als nächstes machen soll.
Vielen Dank im Voraus
Gruß Jörg |
So funktioniert es:
Malwarebytes Anti-Malware 
und 
und speichere die Logdatei auf Deinem Desktop.