Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Window10: Junkware (PUP): Win32.Application.InstallCore.LE (Engine B)kann nicht durch GData gelöscht werden (https://www.trojaner-board.de/186972-window10-junkware-pup-win32-application-installcore-le-engine-b-gdata-geloescht.html)

oparobert 08.10.2017 11:56
Window10: Junkware (PUP): Win32.Application.InstallCore.LE (Engine B)kann nicht durch GData gelöscht werden
 
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2017
durchgeführt von Keanu (Administrator) auf KEANU-PC (08-10-2017 10:45:07)
Gestartet von C:\Users\Keanu\Desktop
Geladene Profile: Keanu (Verfügbare Profile: Keanu & DefaultAppPool)
Platform: Windows 10 Home Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVK\AVKWCtlx64.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Egis Technology Inc.) C:\Program Files (x86)\Acer Bio Protection\BASVC.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(G Data Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFwSvcx64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Egis Technology Inc.) C:\Program Files (x86)\Acer Bio Protection\CompPtcVUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\AVKTray\AVKTray.exe
(G DATA Software AG) C:\Program Files (x86)\G Data\InternetSecurity\Firewall\GDFirewallTray.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(G Data Software AG) C:\Program Files (x86)\G Data\USB KEYBOARD GUARD\GD2NDKBB.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8600.40445.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8600.40445.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-05-21] (Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3089688 2013-06-27] (Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GDataUsbProtection] => C:\Program Files (x86)\G Data\USB KEYBOARD GUARD\GD2NDKBB.exe [1412216 2014-09-05] (G Data Software AG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3481912 2017-10-03] (Dropbox, Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,,
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr [438272 2009-07-08] ()
HKU\S-1-5-18\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [4848960 2017-09-24] (Microsoft Corporation) <==== ACHTUNG
Lsa: [Notification Packages]

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{79ba6221-deec-4276-964e-4b81b7b003fc}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{c2e0b879-27c5-4ea1-a6bc-7aca2d2dbbe4}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.de/?gws_rd=ssl
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> {402CDED7-F80B-44A1-8A9D-3CC005CB9CE9} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> {47F0ADD8-DCF1-42AD-917A-CCABBAAEF6B6} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> {8C03A57D-822C-4043-800B-A0031C4FB11C} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> {D27C034C-4E30-4943-BB6B-CB65D1602619} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-06-27] (Logitech, Inc.)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-12-15] (DVDVideoSoft Ltd.)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-05-06] (DivX, LLC)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Kein Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Keine Datei
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2013-06-27] (Logitech, Inc.)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-12-15] (DVDVideoSoft Ltd.)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
Toolbar: HKLM - Kein Name - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} -  Keine Datei
Toolbar: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> Kein Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  Keine Datei
Toolbar: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> Kein Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} -  Keine Datei
Toolbar: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Keine Datei
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.13.0.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} -  Keine Datei
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -  Keine Datei
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Keine Datei

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2674947812-2848942503-3172214774-1001 -> hxxp://google.de/

FireFox:
========
FF ProfilePath: C:\Users\Keanu\AppData\Roaming\Mozilla\Firefox\Profiles\2f5vhlfp.default [2017-09-09]
FF user.js: detected! => C:\Users\Keanu\AppData\Roaming\Mozilla\Firefox\Profiles\2f5vhlfp.default\user.js [2013-10-07]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\2f5vhlfp.default -> Yahoo!
FF Homepage: Mozilla\Firefox\Profiles\2f5vhlfp.default -> hxxps://www.google.de/
FF Extension: (Firefox Hotfix) - C:\Users\Keanu\AppData\Roaming\Mozilla\Firefox\Profiles\2f5vhlfp.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-12-30]
FF Extension: (DVDVideoSoft YouTube MP3 and Video Download) - C:\Users\Keanu\AppData\Roaming\Mozilla\Firefox\Profiles\2f5vhlfp.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2014-12-15] [ist nicht signiert]
FF SearchPlugin: C:\Users\Keanu\AppData\Roaming\Mozilla\Firefox\Profiles\2f5vhlfp.default\searchplugins\safeguard-secure-search.xml [2013-11-13]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-07-18] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-08-02] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-08-05] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\19.0.0.10 => nicht gefunden
FF HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml [2016-02-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll [2013-09-08] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll [2013-09-08] ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2013-05-06] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-12-19] (Nero AG)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @sony.com/ReaderDesktop -> E:\npreaderdetectmoz.dll [Keine Datei]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [5083784 2017-08-21] (G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [3327600 2017-08-03] (G Data Software AG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-12] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-12] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2017-10-03] (Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2016-12-22] (Digital Wave Ltd.)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [788512 2009-12-03] (Acer Incorporated)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [Datei ist nicht signiert]
S3 GDBackupSvc; C:\Program Files (x86)\G DATA\InternetSecurity\AVKBackup\AVKBackupService.exe [3997160 2017-08-17] (G DATA Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [3419552 2017-06-08] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [884328 2017-06-08] (G DATA Software AG)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 IGBASVC; C:\Program Files (x86)\Acer Bio Protection\BASVC.exe [3450368 2009-12-11] (Egis Technology Inc.) [Datei ist nicht signiert]
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [Datei ist nicht signiert]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
S3 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-10] (Egis Technology Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated) [Datei ist nicht signiert]
S4 Sony SCSI Helper Service; C:\Program Files (x86)\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2013-11-26] (Sony Corporation) [Datei ist nicht signiert]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269400 2017-01-17] (Synaptics Incorporated)
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-10-04] ()
R0 GDBehave; C:\WINDOWS\System32\drivers\GDBehave.sys [207928 2017-10-07] (G Data Software AG)
S0 GDElam; C:\WINDOWS\System32\DRIVERS\GDElam.sys [117904 2017-02-20] (G Data Software AG)
R3 GDKBB; C:\WINDOWS\system32\drivers\GDKBB64.sys [46104 2017-10-07] (G Data Software AG)
S3 GDKBBlocker; C:\Windows\system32\drivers\GDKBBlocker64.sys [30720 2014-09-13] (G Data Software AG)
R3 GDKBFlt; C:\WINDOWS\system32\drivers\GDKBFlt64.sys [38984 2017-10-07] (G DATA Software AG)
R1 GDMnIcpt; C:\WINDOWS\system32\drivers\MiniIcpt.sys [314424 2017-10-07] (G Data Software AG)
R3 GDPkIcpt; C:\WINDOWS\system32\drivers\PktIcpt.sys [165944 2017-10-07] (G Data Software AG)
R1 gdwfpcd; C:\WINDOWS\System32\drivers\gdwfpcd64.sys [86584 2017-10-07] (G DATA Software AG)
R3 GRD; C:\WINDOWS\system32\drivers\GRD.sys [125640 2017-10-08] (G Data Software)
S3 hidshim; C:\WINDOWS\system32\DRIVERS\hidshim.sys [6656 2009-09-01] (Windows (R) Win 7 DDK provider)
R1 HookCentre; C:\WINDOWS\system32\drivers\HookCentre.sys [178232 2017-10-07] (G Data Software AG)
S3 johci; C:\WINDOWS\System32\drivers\johci.sys [22640 2009-08-24] (JMicron )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [192952 2017-10-07] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-10-08] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [45504 2017-10-08] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [252232 2017-10-08] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-10-08] (Malwarebytes)
S3 nuvotonhidcir; C:\WINDOWS\system32\DRIVERS\nuvotonhidcir.sys [26624 2009-09-01] (Nuvoton Technology Corporation)
S3 nuvotonir; C:\WINDOWS\system32\DRIVERS\nuvotonir.sys [68096 2009-08-31] (Nuvoton Technology Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-09-12] (Synaptics Incorporated)
R2 TurboB; C:\WINDOWS\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 winbondcir; C:\WINDOWS\system32\DRIVERS\winbondcir.sys [46592 2007-03-28] (Winbond Electronics Corporation)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl [146928 2009-11-12] (CyberLink Corp.)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-10-08 10:45 - 2017-10-08 10:49 - 000022726 _____ C:\Users\Keanu\Desktop\FRST.txt
2017-10-08 10:44 - 2017-10-08 10:45 - 000000000 ____D C:\FRST
2017-10-08 10:43 - 2017-10-08 10:43 - 002400768 _____ (Farbar) C:\Users\Keanu\Desktop\FRST64.exe
2017-10-07 20:44 - 2017-10-07 20:44 - 000000000 ____D C:\Users\Keanu\AppData\Local\ESET
2017-10-07 17:04 - 2017-10-07 17:04 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2017-10-07 17:03 - 2017-10-08 07:41 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-10-07 17:03 - 2017-10-08 07:24 - 000252232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-10-07 17:03 - 2017-10-08 07:24 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-10-07 17:03 - 2017-10-08 07:24 - 000045504 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-10-07 17:03 - 2017-10-07 17:03 - 000001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-10-07 17:03 - 2017-10-07 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-10-07 17:02 - 2017-10-07 17:02 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-07 17:02 - 2017-10-04 13:15 - 000077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-10-07 17:00 - 2017-10-07 17:00 - 000000000 ____D C:\ProgramData\MB2Migration
2017-10-07 10:49 - 2017-10-08 07:30 - 000125640 _____ (G Data Software) C:\WINDOWS\system32\Drivers\GRD.sys
2017-10-07 10:49 - 2017-10-07 10:49 - 000037544 _____ (G DATA Software) C:\WINDOWS\system32\Drivers\GdPhyMem.sys
2017-10-07 10:44 - 2017-09-19 01:20 - 001065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-10-07 10:44 - 2017-09-19 01:20 - 000900376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-10-07 10:44 - 2017-09-19 01:18 - 000965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2017-10-07 10:44 - 2017-09-19 01:17 - 001395664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-10-07 10:44 - 2017-09-19 01:17 - 001186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-10-07 10:44 - 2017-09-19 01:17 - 001147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-10-07 10:44 - 2017-09-19 01:17 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-10-07 10:44 - 2017-09-19 01:17 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-10-07 10:44 - 2017-09-19 01:11 - 001018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-10-07 10:44 - 2017-09-19 01:09 - 000554400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-10-07 10:44 - 2017-09-19 00:26 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2017-10-07 10:44 - 2017-09-19 00:25 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2017-10-07 10:44 - 2017-09-19 00:23 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2017-10-07 10:44 - 2017-09-19 00:20 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2017-10-07 10:44 - 2017-09-19 00:20 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2017-10-07 10:44 - 2017-09-19 00:18 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-10-07 10:44 - 2017-09-19 00:15 - 000648704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-10-07 10:01 - 2017-10-07 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY
2017-10-07 10:00 - 2017-10-07 10:00 - 000046104 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\GDKBB64.sys
2017-10-07 10:00 - 2017-10-07 10:00 - 000038984 _____ (G DATA Software AG) C:\WINDOWS\system32\Drivers\GDKBFlt64.sys
2017-10-07 10:00 - 2017-10-07 10:00 - 000002135 _____ C:\Users\Public\Desktop\G DATA INTERNET SECURITY.lnk
2017-10-07 09:59 - 2017-10-07 09:59 - 000086584 _____ (G DATA Software AG) C:\WINDOWS\system32\Drivers\gdwfpcd64.sys
2017-10-07 09:55 - 2017-10-07 09:55 - 000165944 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\PktIcpt.sys
2017-10-07 09:54 - 2017-10-07 09:54 - 000314424 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\MiniIcpt.sys
2017-10-07 09:54 - 2017-10-07 09:54 - 000207928 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\GDBehave.sys
2017-10-07 09:54 - 2017-10-07 09:54 - 000178232 _____ (G Data Software AG) C:\WINDOWS\system32\Drivers\HookCentre.sys
2017-10-07 09:30 - 2017-10-07 09:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-10-03 12:21 - 2017-10-03 12:21 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-10-03 12:21 - 2017-10-03 12:21 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-10-03 12:21 - 2017-10-03 12:21 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-10-03 12:21 - 2017-10-03 12:21 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-09-24 11:22 - 2017-09-24 11:22 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2674947812-2848942503-3172214774-1001
2017-09-24 11:01 - 2017-09-24 11:01 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-09-24 10:58 - 2017-09-24 10:58 - 000000000 ____D C:\Users\Keanu\AppData\Local\DBG
2017-09-24 10:55 - 2017-09-24 10:55 - 000000020 ___SH C:\Users\Keanu\ntuser.ini
2017-09-24 10:49 - 2017-09-24 10:51 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2017-09-24 10:49 - 2017-09-24 10:51 - 000011433 _____ C:\WINDOWS\diagerr.xml
2017-09-24 10:45 - 2017-10-08 09:15 - 000000000 ____D C:\Windows.old
2017-09-24 10:42 - 2017-10-08 07:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-24 10:42 - 2017-09-24 10:43 - 000003744 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-09-24 10:42 - 2017-09-24 10:43 - 000003426 _____ C:\WINDOWS\System32\Tasks\McQcModifier-5c47-a7b0
2017-09-24 10:42 - 2017-09-24 10:43 - 000003414 _____ C:\WINDOWS\System32\Tasks\FreeDriverScout
2017-09-24 10:42 - 2017-09-24 10:43 - 000003204 _____ C:\WINDOWS\System32\Tasks\DivX-Online-Aktualisierungsprogramm
2017-09-24 10:42 - 2017-09-24 10:43 - 000003172 _____ C:\WINDOWS\System32\Tasks\Egis technology-Online-Aktualisierungsprogramm
2017-09-24 10:42 - 2017-09-24 10:43 - 000002598 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2017-09-24 10:42 - 2017-09-24 10:43 - 000002370 _____ C:\WINDOWS\System32\Tasks\{FA1CF3B2-506A-4356-930E-13C02C31453E}
2017-09-24 10:42 - 2017-09-24 10:43 - 000002220 _____ C:\WINDOWS\System32\Tasks\SidebarExecute
2017-09-24 10:42 - 2017-09-24 10:43 - 000002190 _____ C:\WINDOWS\System32\Tasks\{20ACBC56-D469-4950-BF19-319E8572731D}
2017-09-24 10:42 - 2017-09-24 10:42 - 000003662 _____ C:\WINDOWS\System32\Tasks\Software Updater Ui
2017-09-24 10:42 - 2017-09-24 10:42 - 000003520 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-09-24 10:42 - 2017-09-24 10:42 - 000003492 _____ C:\WINDOWS\System32\Tasks\Software Updater
2017-09-24 10:42 - 2017-09-24 10:42 - 000003224 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-09-24 10:42 - 2017-09-24 10:42 - 000002484 _____ C:\WINDOWS\System32\Tasks\{A5554299-9A8D-4AE3-96CF-6E2183AF9AE7}
2017-09-24 10:42 - 2017-09-24 10:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-09-24 10:42 - 2017-09-24 10:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\Recovery Management
2017-09-24 10:42 - 2017-09-24 10:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-09-24 10:37 - 2017-09-24 10:37 - 013844480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 006557520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 005821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 005808640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 005721600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 004535296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002604248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002424024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001033544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000866808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-24 10:37 - 2017-09-24 10:37 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000551200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-24 10:37 - 2017-09-24 10:37 - 000406544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qasf.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000100232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000096648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2017-09-24 10:37 - 2017-09-24 10:37 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-24 10:37 - 2017-09-24 10:37 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IpNatHlpClient.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 023684608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 021352656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 020509184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 017371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 012801536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 011887104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 008333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 008319904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 008207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 006761560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 006728704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 006265856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 005477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 005302968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004848960 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004471888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004445696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004213656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003464704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 002939392 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002675104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002445824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002443168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002211840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-24 10:36 - 2017-09-24 10:36 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-24 10:36 - 2017-09-24 10:36 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001833984 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001596592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001357312 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001298432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001292880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 001195760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001068720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000967584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000864248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000805816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-09-24 10:36 - 2017-09-24 10:36 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000724200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000660680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsvcs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000611096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsvcs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-24 10:36 - 2017-09-24 10:36 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000529992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000527976 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000473240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000455584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000414296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000323936 _____ (Microsoft Corporation) C:\WINDOWS\system32\shlwapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000277432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shlwapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000257440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000192264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-24 10:36 - 2017-09-24 10:36 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000176024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000173104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-24 10:36 - 2017-09-24 10:36 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\qasf.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000143736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000133904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000119904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000116280 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000104432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000090464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ofdeploy.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000082336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-24 10:36 - 2017-09-24 10:36 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-09-24 10:36 - 2017-09-24 10:36 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-09-24 10:36 - 2017-09-24 10:36 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-24 10:36 - 2017-09-24 10:36 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\IpNatHlpClient.dll
2017-09-24 10:27 - 2017-09-24 10:27 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-09-24 10:17 - 2017-09-24 10:17 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2017-09-24 10:17 - 2017-09-24 09:54 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2017-09-24 10:14 - 2017-09-24 10:31 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\WINDOWS\system32\msmq
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\Program Files\MSBuild
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-09-24 10:14 - 2017-09-24 10:14 - 000000000 ____D C:\inetpub
2017-09-24 10:12 - 2017-09-24 10:12 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-09-24 10:12 - 2017-02-10 12:26 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-09-24 10:12 - 2017-02-10 12:26 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-09-24 10:12 - 2017-02-10 12:26 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-09-24 10:12 - 2017-02-10 12:21 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-09-24 10:12 - 2017-02-10 12:21 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-09-24 10:12 - 2017-02-10 12:21 - 000035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-09-24 10:10 - 2017-09-24 10:31 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-09-24 10:06 - 2017-09-24 10:06 - 000000000 ____D C:\ProgramData\USOShared
2017-09-24 10:05 - 2017-10-07 10:04 - 000000000 ____D C:\Users\Keanu
2017-09-24 10:05 - 2017-09-24 10:38 - 000000000 ____D C:\Users\DefaultAppPool
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Vorlagen
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Startmenü
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Netzwerkumgebung
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Lokale Einstellungen
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Eigene Dateien
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Druckumgebung
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Documents\Eigene Videos
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Documents\Eigene Musik
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Documents\Eigene Bilder
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\AppData\Local\Verlauf
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\AppData\Local\Anwendungsdaten
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\Keanu\Anwendungsdaten
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2017-09-24 10:05 - 2017-09-24 10:05 - 000000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2017-09-24 10:04 - 2017-10-08 07:27 - 002234330 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-24 10:04 - 2017-09-24 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2017-09-24 10:04 - 2017-09-24 10:04 - 000000000 ____D C:\Program Files\ATI Technologies
2017-09-24 10:03 - 2017-09-24 10:04 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2017-09-24 10:03 - 2017-09-24 10:03 - 002011386 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-09-24 10:02 - 2017-09-24 10:13 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-24 10:02 - 2017-09-24 10:02 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2017-09-24 10:02 - 2017-09-24 10:02 - 000000000 _____ C:\WINDOWS\ativpsrm.bin
2017-09-24 10:01 - 2017-09-24 10:01 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2017-09-24 10:01 - 2017-09-24 10:01 - 000000000 ____D C:\Program Files\AMD
2017-09-24 10:00 - 2017-09-24 10:00 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-09-24 10:00 - 2017-09-24 10:00 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-09-24 10:00 - 2017-09-24 10:00 - 000000000 ____D C:\Program Files\Realtek
2017-09-24 09:59 - 2017-09-24 09:59 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-09-24 09:59 - 2017-09-24 09:59 - 000000000 ____D C:\Program Files\Synaptics
2017-09-24 09:58 - 2017-09-24 10:12 - 000000000 ____D C:\ProgramData\HP
2017-09-24 09:58 - 2017-03-18 22:56 - 002233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-09-24 09:54 - 2017-10-08 10:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-24 09:54 - 2017-10-07 10:16 - 000516112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-23 00:26 - 2017-09-24 10:54 - 000000000 ___DC C:\WINDOWS\Panther
2017-09-18 22:06 - 2017-09-18 22:06 - 000002253 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.5.lnk
2017-09-18 21:40 - 2017-09-24 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2017-09-18 21:40 - 2017-09-18 22:06 - 000002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 4.5.lnk
2017-09-18 21:40 - 2017-09-18 22:06 - 000000000 ____D C:\Users\Keanu\Documents\My Digital Editions
2017-09-18 21:25 - 2017-09-18 22:10 - 008902536 _____ (Adobe Systems Incorporated) C:\Users\Keanu\Downloads\ADE_4.5_Installer.exe
2017-09-18 21:10 - 2017-09-18 21:10 - 000001472 _____ C:\Users\Keanu\Downloads\URLLink.acsm
2017-09-18 21:04 - 2017-09-18 21:04 - 000001033 _____ C:\Users\Public\Desktop\calibre - E-book management.lnk
2017-09-18 20:55 - 2017-09-18 20:56 - 062107648 _____ C:\Users\Keanu\Downloads\calibre-3.7.0.msi
2017-09-18 19:51 - 2017-09-24 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-09-18 19:51 - 2017-09-18 19:51 - 000001820 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-09-18 19:51 - 2017-09-18 19:51 - 000000000 ____D C:\Program Files\iPod
2017-09-18 19:50 - 2017-09-18 19:51 - 000000000 ____D C:\Program Files\iTunes
2017-09-18 19:44 - 2017-09-18 19:44 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2017-09-18 17:41 - 2017-09-18 17:41 - 000000000 ____D C:\Users\Keanu\AppData\Local\UNP
2017-09-10 01:12 - 2017-09-10 01:13 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-09-09 20:03 - 2017-03-04 08:18 - 000198656 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-09-09 19:55 - 2017-03-04 08:26 - 000261632 ____N (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-09-09 19:44 - 2017-03-28 07:37 - 000031232 ____N (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-10-08 10:03 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\rescache
2017-10-08 09:49 - 2017-03-18 23:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-08 08:40 - 2017-03-18 13:40 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2017-10-08 07:46 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-10-08 07:27 - 2017-03-20 06:35 - 000966498 _____ C:\WINDOWS\system32\perfh007.dat
2017-10-08 07:27 - 2017-03-20 06:35 - 000219506 _____ C:\WINDOWS\system32\perfc007.dat
2017-10-08 07:03 - 2017-03-18 13:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-10-08 01:40 - 2013-07-17 21:04 - 000000000 ____D C:\Users\Keanu\AppData\Roaming\Azureus
2017-10-08 00:43 - 2013-07-17 21:12 - 000000000 ____D C:\Users\Keanu\Documents\Vuze Downloads
2017-10-07 20:42 - 2013-07-12 20:27 - 000000000 ____D C:\ProgramData\G DATA
2017-10-07 17:02 - 2013-07-12 21:48 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-07 16:55 - 2017-03-18 23:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-07 16:54 - 2015-06-03 21:16 - 000000000 ____D C:\ProgramData\Skype
2017-10-07 16:51 - 2015-09-12 17:50 - 000000000 ____D C:\Users\Keanu\AppData\Local\Packages
2017-10-07 12:02 - 2017-03-18 22:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-10-07 09:53 - 2017-03-18 23:03 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-10-07 09:49 - 2013-07-12 20:27 - 000000000 ____D C:\Program Files (x86)\G Data
2017-10-07 09:32 - 2015-06-03 21:19 - 000000000 ____D C:\Users\Keanu\AppData\Roaming\Skype
2017-10-07 09:31 - 2016-02-12 19:42 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-10-07 09:29 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\appcompat
2017-09-24 14:32 - 2013-08-30 00:09 - 000000000 ____D C:\Users\Keanu\Documents\Calibre-Bibliothek
2017-09-24 11:22 - 2015-09-12 18:08 - 000002429 _____ C:\Users\Keanu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-24 11:22 - 2015-09-12 18:08 - 000000000 ___RD C:\Users\Keanu\OneDrive
2017-09-24 10:56 - 2017-03-18 23:03 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-09-24 10:56 - 2015-09-12 17:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-24 10:53 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Windows NT
2017-09-24 10:52 - 2017-03-18 23:03 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-09-24 10:52 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-09-24 10:48 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\Registration
2017-09-24 10:48 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-09-24 10:45 - 2017-03-18 23:06 - 000000000 ____D C:\WINDOWS\Setup
2017-09-24 10:45 - 2017-03-18 23:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-09-24 10:43 - 2017-03-20 06:37 - 000000000 ____D C:\WINDOWS\HoloShell
2017-09-24 10:43 - 2015-09-12 17:42 - 000023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-09-24 10:41 - 2017-03-18 23:03 - 000000000 __RSD C:\WINDOWS\Media
2017-09-24 10:41 - 2017-03-18 23:03 - 000000000 __RHD C:\Users\Public\Libraries
2017-09-24 10:40 - 2017-03-20 06:35 - 000000000 ____D C:\WINDOWS\system32\de
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-24 10:40 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-24 10:31 - 2017-08-28 11:26 - 000000000 ____D C:\WINDOWS\system32\UNP
2017-09-24 10:31 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-09-24 10:31 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-09-24 10:31 - 2017-03-05 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular
2017-09-24 10:31 - 2016-04-07 21:17 - 000000000 ____D C:\Users\Keanu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-09-24 10:31 - 2015-10-30 20:44 - 000000000 ____D C:\WINDOWS\ShellNew
2017-09-24 10:31 - 2015-03-28 15:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Syncios
2017-09-24 10:31 - 2015-03-28 13:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia
2017-09-24 10:31 - 2014-09-13 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA USB KEYBOARD GUARD
2017-09-24 10:31 - 2014-04-13 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reader for pc
2017-09-24 10:31 - 2014-04-13 17:56 - 000000000 ____D C:\Users\Keanu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-09-24 10:31 - 2014-04-13 17:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-09-24 10:31 - 2013-10-07 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2017-09-24 10:31 - 2013-09-25 23:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GS-Büro 32
2017-09-24 10:31 - 2013-09-12 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medisana BPA 3.2 German
2017-09-24 10:31 - 2013-08-30 00:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2017-09-24 10:31 - 2013-08-05 10:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-09-24 10:31 - 2013-07-13 21:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2017-09-24 10:31 - 2013-07-13 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
2017-09-24 10:31 - 2013-07-13 01:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2017-09-24 10:31 - 2013-07-13 01:00 - 000000000 ____D C:\WINDOWS\de
2017-09-24 10:31 - 2013-07-12 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2017-09-24 10:31 - 2013-07-12 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-09-24 10:31 - 2013-07-12 21:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Arcade Deluxe
2017-09-24 10:31 - 2013-07-12 20:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2017-09-24 10:31 - 2013-07-12 20:51 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2017-09-24 10:31 - 2013-07-12 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam
2017-09-24 10:31 - 2013-07-12 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2017-09-24 10:31 - 2009-12-02 06:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
2017-09-24 10:31 - 2009-12-02 06:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2017-09-24 10:31 - 2009-12-02 06:09 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2017-09-24 10:31 - 2009-12-02 06:04 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-09-24 10:31 - 2009-12-02 05:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2017-09-24 10:19 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\spool
2017-09-24 10:19 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-09-24 10:19 - 2013-08-05 10:55 - 000000000 ____D C:\WINDOWS\SysWOW64\spool
2017-09-24 10:19 - 2013-08-03 12:06 - 000000000 ____D C:\WINDOWS\SysWOW64\SDA
2017-09-24 10:19 - 2013-07-13 09:25 - 000000000 ____D C:\WINDOWS\system32\SPReview
2017-09-24 10:18 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\IME
2017-09-24 10:18 - 2013-07-13 02:39 - 000000000 ____D C:\WINDOWS\system32\EventProviders
2017-09-24 10:14 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-09-24 10:14 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\MUI
2017-09-24 10:14 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2017-09-24 10:14 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\schemas
2017-09-24 10:14 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-09-24 10:14 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-24 10:14 - 2017-03-18 22:59 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2017-09-24 10:14 - 2017-03-18 22:59 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2017-09-24 10:14 - 2017-03-18 22:59 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2017-09-24 10:14 - 2017-03-18 22:59 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2017-09-24 10:14 - 2017-03-18 22:59 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-09-24 10:14 - 2017-03-18 22:59 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2017-09-24 10:14 - 2017-03-18 22:59 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2017-09-24 10:14 - 2017-03-18 22:59 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2017-09-24 10:14 - 2017-03-18 22:56 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-09-24 10:14 - 2017-03-18 22:56 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-09-24 10:14 - 2009-12-02 06:09 - 000000000 ____D C:\WINDOWS\oem
2017-09-24 10:13 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\Cursors
2017-09-24 10:13 - 2017-03-18 22:59 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2017-09-24 10:13 - 2017-03-18 22:59 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 001380352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-09-24 10:13 - 2017-03-18 22:56 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-09-24 10:13 - 2017-03-18 22:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-09-24 10:13 - 2017-03-18 22:56 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-09-24 10:13 - 2017-03-18 22:56 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-09-24 10:13 - 2017-03-18 22:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-09-24 10:13 - 2017-03-18 22:56 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-09-24 10:13 - 2017-03-18 22:56 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-09-24 10:13 - 2015-01-02 23:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
2017-09-24 10:13 - 2015-01-02 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2017-09-24 10:13 - 2013-09-01 09:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip
2017-09-24 10:13 - 2013-08-05 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2017-09-24 10:13 - 2013-07-18 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-09-24 10:13 - 2013-07-14 01:33 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-09-24 10:13 - 2009-12-02 06:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec
2017-09-24 10:13 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-09-24 10:12 - 2017-03-18 23:03 - 000000000 __SHD C:\Program Files\Windows Sidebar
2017-09-24 10:12 - 2017-03-18 23:03 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2017-09-24 10:12 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-09-24 10:12 - 2013-07-13 00:54 - 000000000 ____D C:\Program Files\Windows Live
2017-09-24 10:12 - 2013-07-12 20:51 - 000000000 ____D C:\Program Files (x86)\Windows Live
2017-09-24 10:12 - 2013-07-12 20:41 - 000000000 ____D C:\Program Files\Intel
2017-09-24 10:12 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Microsoft Games
2017-09-24 10:10 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2017-09-24 10:06 - 2017-03-18 23:03 - 000000000 ____D C:\ProgramData\USOPrivate
2017-09-24 10:02 - 2017-03-18 13:40 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-09-24 10:02 - 2016-03-05 15:45 - 000000000 ____D C:\AMD
2017-09-23 01:01 - 2013-08-05 10:47 - 000000000 ____D C:\Users\Keanu\AppData\Local\ElevatedDiagnostics
2017-09-23 00:35 - 2015-09-12 17:53 - 000000000 ____D C:\Users\Keanu\AppData\Local\Publishers
2017-09-22 22:59 - 2013-07-13 09:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-22 22:52 - 2013-07-13 01:15 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-19 00:19 - 2013-08-30 00:09 - 000000000 ____D C:\Users\Keanu\AppData\Roaming\calibre
2017-09-18 21:52 - 2016-02-12 19:42 - 000001230 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-09-18 21:52 - 2016-02-12 19:42 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-09-18 21:40 - 2009-12-02 06:22 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-09-18 21:32 - 2013-08-30 00:10 - 000000000 ____D C:\Users\Keanu\AppData\Local\calibre-cache
2017-09-18 21:04 - 2013-08-30 00:09 - 000000000 ____D C:\Program Files (x86)\Calibre2
2017-09-18 19:44 - 2013-07-13 02:24 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-09-11 19:05 - 2016-02-12 19:57 - 000000000 ___RD C:\Users\Keanu\Dropbox
2017-09-11 19:03 - 2016-02-12 19:42 - 000000000 ____D C:\Users\Keanu\AppData\Local\Dropbox
2017-09-10 01:59 - 2016-04-07 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-09-10 01:50 - 2013-07-12 21:17 - 000544424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-09-10 01:20 - 2013-07-12 22:04 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2017-09-10 01:20 - 2013-07-12 22:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-11-13 21:57 - 2014-06-08 08:54 - 000003711 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2009-12-02 05:54 - 2009-02-10 22:23 - 000192484 _____ () C:\Program Files (x86)\Common Files\Acer GameZone online.ico
2016-03-08 20:49 - 2016-03-08 20:49 - 000000000 _____ () C:\Users\Keanu\AppData\Roaming\gdfw.log
2016-03-08 20:49 - 2017-10-07 09:54 - 000002337 _____ () C:\Users\Keanu\AppData\Roaming\gdscan.log
2015-03-28 16:45 - 2015-03-28 16:45 - 000033193 _____ () C:\Users\Keanu\AppData\Roaming\UserTile.png
2013-08-03 13:01 - 2015-11-06 20:20 - 000036782 _____ () C:\Users\Keanu\AppData\Local\HWVendorDetection.log
2013-07-12 21:11 - 2013-07-12 21:18 - 000008943 _____ () C:\ProgramData\ArcadeDeluxe3.log
2009-12-02 05:54 - 2009-07-18 04:57 - 000036136 _____ (Oberon Media) C:\ProgramData\FullRemove.exe
2013-07-13 22:27 - 2013-08-05 11:01 - 000002414 _____ () C:\ProgramData\hpzinstall.log

Einige Dateien in TEMP:
====================
2017-10-08 00:19 - 2017-10-08 01:40 - 000035680 _____ () C:\Users\Keanu\AppData\Local\Temp\i4jdel0.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-10-08 09:05

==================== Ende von FRST.txt ============================

oparobert 08.10.2017 12:00
sorry....fehlt noch was...
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 06-10-2017
durchgeführt von Keanu (08-10-2017 10:52:24)
Gestartet von C:\Users\Keanu\Desktop
Windows 10 Home Version 1703 (X64) (2017-09-24 08:54:48)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2674947812-2848942503-3172214774-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2674947812-2848942503-3172214774-503 - Limited - Disabled)
Gast (S-1-5-21-2674947812-2848942503-3172214774-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2674947812-2848942503-3172214774-1002 - Limited - Enabled)
Keanu (S-1-5-21-2674947812-2848942503-3172214774-1001 - Administrator - Enabled) => C:\Users\Keanu

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: G DATA INTERNET SECURITY (Enabled - Up to date) {A9C56A9B-ECCD-57EA-78F6-92511DA1C885}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Enabled) {91FEEBBE-A6A2-56B2-53A9-3B64E3728FFE}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4500_G510nz_Help (HKLM-x32\...\{690879A5-18EF-447B-98D6-B699D51008AB}) (Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz (HKLM-x32\...\{5B05FF91-F20C-4832-A8DE-E1912639C17C}) (Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (HKLM-x32\...\{3A4D5E2D-988D-4ee9-8E7F-3AC200A2B8F5}) (Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{55D55008-E5F6-47D6-B16F-B2A40D4D145F}) (Version: 6.2.1 - Hewlett-Packard) Hidden
Acer Arcade Deluxe (HKLM-x32\...\{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.1.7112 - CyberLink Corp.) Hidden
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.1.7112 - CyberLink Corp.)
Acer Arcade Instant On (HKLM-x32\...\{761F972F-215D-45B9-8F9D-0D1A2C4720AB}) (Version: 3.0.26.1 - Acer) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}) (Version: 2.0.1.33 - NewTech Infosystems)
Acer Bio Protection (HKLM-x32\...\InstallShield_{E09664BB-BB08-45FA-87D1-33EAB0E017F5}) (Version: 6.2.70 - Egis Technology Inc.)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3006 - Acer Incorporated)
Acer GridVista (HKLM-x32\...\GridVista) (Version: 3.01.0730 - Acer Inc.)
Acer PowerSmart Manager (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.06.3008 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.11.0715 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3017 - Acer Incorporated)
Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3000 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.6 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
ATI AVIVO64 Codecs (HKLM\...\{1F6E8D55-B357-924F-4D4F-A9362F8DE508}) (Version: 10.11.0.41123 - ATI Technologies Inc.) Hidden
AVG PC TuneUp Language Pack (de-DE) (HKLM-x32\...\{7451FD2D-1A23-4E67-92CD-8EDDD1846917}) (Version: 12.0.4020.3 - AVG Technologies) Hidden
Backup Manager Advance (HKLM-x32\...\{30075A70-B5D2-440B-AFA3-FB2021740121}) (Version: 2.0.1.33 - NewTech Infosystems) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom NetLink Controller (HKLM\...\{D1D7ED66-5C08-40A0-AEC0-B6DF977697BB}) (Version: 16.0.2.1 - Broadcom Corporation)
BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Bullzip PDF Printer 9.10.0.1629 (HKLM\...\Bullzip PDF Printer_is1) (Version: 9.10.0.1629 - Bullzip)
calibre (HKLM-x32\...\{00F91371-9FE2-4F75-9B49-8F7D1C135214}) (Version: 3.7.0 - Kovid Goyal)
ccc-core-static (HKLM-x32\...\{B22BE2E7-C468-D12A-CEF6-AA805AEFA5FE}) (Version: 2009.1123.1057.19591 - Ihr Firmenname) Hidden
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{21A2F5EE-1DC5-488A-BE7E-E526F8C61488}) (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.44 - DivX, LLC)
DocMgr (HKLM-x32\...\{92A51949-EE4C-466D-AAF0-99E74A49A63F}) (Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 36.4.22 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
eBay Worldwide (HKLM-x32\...\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}) (Version: 2.1.0901 - OEM)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 18.1.22140 - Landesfinanzdirektion Thüringen)
eReg (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fax (HKLM-x32\...\{440B915A-0C85-45DB-92AE-75AE14704A64}) (Version: 130.0.418.000 - Hewlett-Packard) Hidden
Fingerprint Solution (HKLM-x32\...\{E09664BB-BB08-45FA-87D1-33EAB0E017F5}) (Version: 6.1.70.0 - Egis Technology Inc.) Hidden
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Free Studio (HKLM-x32\...\Free Studio_is1) (Version: 6.5.12.1127 - DVDVideoSoft Ltd.)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.32.1215 - Digital Wave Ltd)
Free YouTube to MP3 Converter version 3.12.13.925 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.13.925 - DVDVideoSoft Ltd.)
G DATA INTERNET SECURITY (HKLM-x32\...\G DATA INTERNET SECURITY) (Version: 25.4.0.2 - G DATA Software AG)
G DATA USB KEYBOARD GUARD (HKLM-x32\...\{D8CBD59F-B29D-4E38-9D66-DEAEAB473FA9}) (Version: 1.1.0.4 - G DATA Software AG)
GPBaseService2 (HKLM-x32\...\{63FF21C9-A810-464F-B60A-3111747B1A6D}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510n-z (HKLM\...\{7E0E61CC-1C99-429D-BEA7-C4DD5B898D2A}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (HKLM-x32\...\{C43326F5-F135-4551-8270-7F7ABA0462E1}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{1441974B-BB94-41EC-AC0F-30D5F5AC54F7}) (Version: 12.7.0.166 - Apple Inc.)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.05.00 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.29.02 - JMicron Technology Corp.)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KB4023057 (HKLM\...\{ED06689A-33B7-4D35-8F76-36A82CD03406}) (Version: 2.3.0.0 - Microsoft Corporation)
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.02 - Acer Inc.)
Logitech SetPoint 6.60 (HKLM\...\sp6) (Version: 6.60.170 - Logitech)
MAGIX Screenshare (HKLM-x32\...\{AAE31374-02C2-452E-88EC-2F16D92731A9}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{8544556F-92C9-478E-9ABC-BC2823E39577}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (HKLM-x32\...\{8EF276E0-1D97-4B9D-BB29-013165F567CA}) (Version: 10.0.0.32 - MAGIX AG) Hidden
MAGIX Video deluxe 17 Premium Download-Version (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.0.32 - MAGIX AG)
Malwarebytes Version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medisana BPA 3.2 German (HKLM-x32\...\{F4FEB66B-A7D7-42FC-8479-16C1E5C7DB74}) (Version: 3.2.3 - Medisana) Hidden
Medisana BPA 3.2 German (HKLM-x32\...\InstallShield_{F4FEB66B-A7D7-42FC-8479-16C1E5C7DB74}) (Version: 3.2.3 - Medisana)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0407-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM-x32\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{62F7DA7E-CCCB-439C-A760-00C3926E761F}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MyFreeCodec (HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\MyFreeCodec) (Version:  - )
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.76.0 - Egis Technology Inc.)
Nero 11 (HKLM-x32\...\{EB475D31-14C0-4DC3-8E0A-8AE1711399B3}) (Version: 11.0.10100 - Nero AG)
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 12.0.4000 - Nero AG)
Nero Prerequisite Installer 1.0 (HKLM-x32\...\{1E7901CE-BE8B-46F6-86AC-24620659ED4E}) (Version: 11.0.12300 - Nero AG)
Network64 (HKLM\...\{A4DDB2AB-ECCD-4C3A-8633-77D5A1A0E542}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\{88B6F9DE-C80F-4A70-ACF6-BEE933679170}) (Version: 3.8.54.0 - Nokia) Hidden
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia)
Nuvoton CIR Device Drivers (HKLM-x32\...\{FBC79D04-051E-4367-8051-1DB0C893FBE0}) (Version: 8.60.2002 - Nuvoton Technology Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PowerISO (HKLM-x32\...\PowerISO) (Version:  - )
Reader for PC (HKLM-x32\...\{8A3072C3-8EA3-4CDE-B342-88E67FAB06E5}) (Version: 2.3.00.03130 - Sony Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6914 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SmartWebPrinting (HKLM-x32\...\{68A10D12-0D0F-4212-BDE6-D87FAD32A8FA}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (HKLM-x32\...\{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (HKLM-x32\...\{AE8705FB-E13C-40A9-8A2D-68D6733FBFC2}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.1.3.6 - Synaptics Incorporated)
Syncios Version 4.2.3 (HKLM-x32\...\{068A5D84-8419-4BDE-9689-FE65F412EFBB}_is1) (Version: 4.2.3 - Anvsoft, Inc.)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
Toolbox (HKLM-x32\...\{6BBA26E9-AB03-4FE7-831A-3535584CA002}) (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{DC0A5F99-FD66-433F-9D3A-05DCBA64BE42}) (Version: 130.0.376.000 - Hewlett-Packard) Hidden
Überwachungstool für die Intel® Turbo-Boost-Technik (HKLM\...\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}) (Version: 1.0.186.6 - Intel)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.6.2.0 - Azureus Software, Inc.)
WebCam (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.54.001 - Sonix)
WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Welcome App (Start-up experience) (HKLM-x32\...\{51865D9D-8F63-46F2-87AB-9E72F93B618C}) (Version: 11.0.23500.0.0 - Nero AG) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3008 - Acer Incorporated)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2700 - Broadcom Corporation)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom Bluetooth  (09/11/2009 6.2.0.9407) (HKLM\...\3932CA781A7894D20116FDF60F878301800EA8AB) (Version: 09/11/2009 6.2.0.9407 - Broadcom)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinRAR 5.01 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll [2009-09-10] (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll [2009-09-10] (Egis Technology Inc.)
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2017-06-08] (G DATA Software AG)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2017-06-08] (G DATA Software AG)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll [2017-10-03] (Dropbox, Inc.)
ContextMenuHandlers5: [DVSShellContextMenu] -> {34CBB076-0260-416C-9FE4-765D66E89C15} => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\DVSShellContextMenuExtension64.dll [2013-09-26] (DVDVideoSoft Ltd.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Keine Datei
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2017-06-08] (G DATA Software AG)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2017-06-08] (G DATA Software AG)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {15D16377-5780-46FA-BABF-693CDCA5916C} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {1CAF8EC7-0E6E-4CD7-B32A-85A502AC8E28} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {261ACE63-238F-45D1-8B49-AF91C0C20564} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-24] (Adobe Systems Incorporated)
Task: {27EEBC69-CD96-42E6-B484-BBBA9F21ECFD} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-10-01] (Acer)
Task: {3170A46E-A5C7-4C76-B453-4819B0EB39B5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {37AB85BF-6A42-4159-9E8D-16D8B7897D57} - System32\Tasks\{A5554299-9A8D-4AE3-96CF-6E2183AF9AE7} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" -c /uninstall HOMESTUDENTR /dll OSETUP.DLL
Task: {3ED2BD66-37F7-4329-B547-DE31770E6568} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {42673BDF-5B10-437C-A3EE-23ABC6B9B380} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {42F0E6F8-1E99-48A5-871D-95F0D69979C2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {4A51FE84-6D20-42CF-89F9-E92BEFA7792F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50A4AC87-4132-431A-B365-DA32F209D24B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {55B11BE1-3B71-4701-8EDE-39E959211FF7} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-07-13] () <==== ACHTUNG
Task: {57FD507B-AD46-43B8-9079-7E5ACE918522} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {59F40B99-6D52-4608-B74F-AEE4AB6454A5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {63B07890-0099-42C8-A43C-17BE3F5BEA6D} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {64361238-E5AD-4077-880A-CA289CF566A2} - System32\Tasks\McQcModifier-5c47-a7b0 => C:\ProgramData\McQcModifier-5c47-a7b0\McQcModifier-5c47-a7b0.cmd
Task: {65941D03-8FAD-49F2-BB70-1A0038542A9A} - System32\Tasks\FreeDriverScout => C:\Program Files\Covus Freemium\Free Driver Scout\1Click.exe
Task: {6F5BF86F-750F-4987-A30B-C88655AA09D2} - System32\Tasks\{20ACBC56-D469-4950-BF19-319E8572731D} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
Task: {736797CC-AC64-450F-92B8-C642D537A12C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {78C121C6-E9A2-4956-B22E-BE62ECD8F456} - System32\Tasks\DivX-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2013-02-13] ()
Task: {7B5B44B5-264A-41FB-AC85-AE8EAACA1A9F} - System32\Tasks\Egis technology-Online-Aktualisierungsprogramm => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04] (Egis Technology Inc.)
Task: {7D3BE1B9-0C1E-4730-8674-75439CDA4554} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8111D7A7-7B14-4348-BF08-69B8CA84BFF7} - System32\Tasks\{FA1CF3B2-506A-4356-930E-13C02C31453E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium_Download-Version\Videodeluxe.exe" -d C:\Users\Keanu\Desktop
Task: {9A8725D1-4EFF-43E2-81A7-A985666E4A57} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9BD30F93-32DA-4E03-BBC8-980BE82EE2D9} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {9C276723-8B7D-4CE9-A258-399088F77BD6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.)
Task: {9DD863EF-6990-47D1-BD71-40B10CB8CA20} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A56B1049-6142-4278-9D82-90EF9565D197} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AAFCB4DA-11F7-40D1-BE33-0E65C5A3EF7E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {AD703D5A-2456-45F8-8E2F-9DD89526A5AF} - \CCleanerSkipUAC -> Keine Datei <==== ACHTUNG
Task: {B14C61B7-709B-453D-BEFD-FB4AD0F9E42B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B61BC611-82A1-44AA-87D2-0A95554D2B90} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BC0B6200-A1DC-4E08-9A1B-B0BE972EC2DB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BC9B101A-E68D-4E05-BC74-45B384868490} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {BF6877B9-57AB-4B78-AB70-D02277C4D77D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-02-12] (Dropbox, Inc.)
Task: {C5B083C0-066D-4FB4-A497-FDBD09C75461} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {CCF3521B-E529-4E2A-8076-D3A4DCAAD1FC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {CE6B19F4-0173-4D2E-B163-E4061D879B67} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {CE9D7CBF-25F3-49FE-93E9-933DC4B2DD27} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {D15CB037-01A3-4EC4-BC94-C1A310FBE4D5} - \Browser Updater\Browser Updater -> Keine Datei <==== ACHTUNG
Task: {D54456A4-0EDD-4FA4-83BF-BAD5DD19A7CD} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {DDD4C07A-A095-4D1C-B193-FB15AE56CBDE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-02-12] (Dropbox, Inc.)
Task: {DE547D41-6AA3-4878-AB11-E3ED3F02D032} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {E602955F-A1D4-4D61-91FA-A098F4C6C010} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {E85F671A-7710-4052-9EB4-9D4D05DD2A1D} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe <==== ACHTUNG
Task: {E90A25EE-C387-4F0A-9CF6-610C28EDD5C9} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F2FDA3D8-AD5E-4C13-ADEE-0ED37EFA73C5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F38C2C99-E54D-447A-8A9E-59D8612A0A8E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F528A97E-AA3B-4E79-8DD1-1724ABC718B7} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F64C4999-4B14-472A-95E7-E5B2710320A2} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {FAB383D6-70C5-4BA2-B966-C3253C137FC6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FE7D6EFC-082F-465D-9888-34F87C4986F4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-09-01 02:49 - 2017-09-01 02:49 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-10-07 17:03 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-10-07 17:03 - 2017-10-04 13:15 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-08-03 05:49 - 2017-08-03 05:49 - 000562664 _____ () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 06:36 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-10-07 12:18 - 2017-10-07 12:20 - 001226424 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8600.40445.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll
2017-09-09 22:42 - 2017-09-09 22:45 - 001695440 ____N () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8600.40445.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2013-10-07 20:30 - 2016-12-16 20:31 - 000114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2015-01-08 08:53 - 2016-12-16 20:31 - 000108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2015-01-08 08:53 - 2016-12-16 20:31 - 000048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2015-01-08 08:53 - 2016-12-16 20:31 - 000024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2017-10-07 09:29 - 2017-10-03 12:21 - 000771904 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-10-07 09:29 - 2017-10-03 12:21 - 001804608 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-09-22 22:23 - 2017-10-03 12:21 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-09-22 22:23 - 2017-10-03 12:21 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-09-22 22:23 - 2017-10-03 12:21 - 000130512 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 001856848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-10-07 09:30 - 2017-10-03 12:21 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-10-07 09:30 - 2017-10-03 12:21 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-09-22 22:16 - 2017-10-03 12:21 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-10-07 09:30 - 2017-10-03 12:21 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-10-07 09:30 - 2017-10-03 12:21 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-09-22 22:16 - 2017-10-03 12:22 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000026056 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 000021824 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 000022856 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000066392 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 001796920 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000084424 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 001956152 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 003859264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000154440 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000521024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000045888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000042304 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000131384 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000218944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000204096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-10-07 09:29 - 2017-10-03 12:22 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-09-22 22:16 - 2017-10-03 12:21 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000101184 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2017-09-22 22:16 - 2017-10-03 12:22 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000025424 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-10-07 09:30 - 2017-10-03 12:21 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-10-07 09:29 - 2017-10-03 12:22 - 000032600 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-10-07 09:29 - 2017-10-03 12:21 - 000293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-10-07 09:29 - 2017-10-03 12:22 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-09-22 22:16 - 2017-10-03 12:22 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2017-10-07 09:30 - 2017-10-03 12:22 - 001638200 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-09-22 22:16 - 2017-10-03 12:22 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000545080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000359224 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-10-07 09:30 - 2017-10-03 12:22 - 000038208 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.pyd

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Keanu\Desktop\2015-12-24 11.43.04.jpg:com.dropbox.attributes [1052]
AlternateDataStreams: C:\Users\Keanu\Desktop\2015-12-27 14.59.58.jpg:com.dropbox.attributes [274]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Keanu\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{1de39ac1-e646-4908-b08f-c393e04899ac}.JPG
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Sony SCSI Helper Service => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: SynTPEnhService => 2
MSCONFIG\Services: TuneUp.UtilitiesSvc => 2
MSCONFIG\Services: Updater Service => 2
MSCONFIG\Services: XblAuthManager => 3
MSCONFIG\Services: XblGameSave => 3
MSCONFIG\Services: XboxNetApiSvc => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: IAAnotif => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: PLFSetL => C:\Windows\PLFSetL.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Syncios device service => C:\Program Files (x86)\Syncios\SynciosDeviceService.exe
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TRAYSE~1.EXE
MSCONFIG\startupreg: vProt => "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
HKLM\...\StartupApproved\Run: => "SNUVCDSM"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "snuvcdsm"
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\StartupApproved\Run: => "NokiaSuite.exe"
HKU\S-1-5-21-2674947812-2848942503-3172214774-1001\...\StartupApproved\Run: => "Steam"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{598BF9C2-077C-44FD-9F1E-F1304FF8B009}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{92A195C7-F133-4224-92AA-6C777499A75B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{55E7C65B-BD40-4256-968A-D854DB5C6904}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{05999B51-BC34-44C8-89C7-84B4D99D6FCC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AB2C44CE-720A-44B1-90C9-2BCCDACE5266}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3F9966B7-18FF-4564-9EBE-63AD44FA9F26}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{058CFE81-58AE-40FE-97B9-6616492C2044}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{388DE320-A079-4593-B184-38AADBE8A868}] => (Allow) C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{A5F83172-433D-4E90-BB2E-2C6317C9DDBB}] => (Allow) C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{33A3CE9F-D2CB-4F0F-B47D-C6E412D2DF66}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{49E0D6E7-943B-4EFD-AC11-4472379952DA}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{E8359717-B642-468F-A082-BEA5CA3D22EC}] => (Allow) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
FirewallRules: [{E63BBE94-836F-4C5D-BE89-C3B3E9FA50D4}] => (Allow) C:\Program Files (x86)\Acer\Acer VCM\VC.exe
FirewallRules: [{3746EC33-AAE3-499F-A9E3-98F19ED6370E}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{44790A13-3240-4874-9951-9CE7F8CB5FF9}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe
FirewallRules: [{30D7D79C-7036-4289-A2BA-4D3E08078D57}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PlayMovie.exe
FirewallRules: [{92944F2E-699E-402B-A1DE-FA0C0F0E5832}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
FirewallRules: [{CF389DEC-58AC-44EE-9730-63260CD208E6}] => (Allow) C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe
FirewallRules: [{B1A46637-8CC1-4E44-A13F-2A177996AE92}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E81BFEA3-2082-4DEC-90AB-F6B9117B792B}] => (Allow) LPort=2869
FirewallRules: [{E3CD0B5A-0378-4E39-8FA0-D1863CA5C76C}] => (Allow) LPort=1900
FirewallRules: [{7D4BCA43-C07A-4144-98A6-7DB76EAE1FCB}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{A3CF81FB-4421-4CD0-9905-BFF25FDEDC2D}] => (Allow) F:\setup\hpznui40.exe
FirewallRules: [{E383AD70-C505-442D-B794-92F239B8364F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{4D677D39-23BA-4C76-8F83-BAB34E187F43}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{30A19DBB-1392-4B69-81CB-65566598EB2A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{F77C06FF-BAED-48FF-A9F2-0360448A2B73}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{29D6F3DE-C979-4F2A-B068-D4F65CB9D4FB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{5AA68ADD-3DC0-4189-B1E0-31AED520FC02}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{10446975-5F85-4C9D-BA98-A3F16845BFFE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{204535AB-4F2E-48C1-9F03-C16ECBA69EF2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{0E4562F0-AD71-44BB-834B-5B7314BF6034}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7E915DA2-0A24-4358-9309-A51DF66B7B62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{8EE71795-F543-4419-BDE8-21A541A49EF8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{DFEB174B-F493-4E05-90F0-5361217D7FE8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{88CA62C1-403F-4D63-8226-5C668423E708}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{30DE268B-8338-41B9-9757-17AF02A5B778}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{6072ABE4-A91C-46A0-A37D-C65EDC9A9E58}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{55999B4F-8025-45FE-AC22-25C080CA932A}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{7498850A-766D-4700-BC60-EE1AB56B8AA5}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{53FFB9D0-CCF5-40B8-A239-8ACE093B4A34}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{36AEDAB3-0E5E-4897-95BB-EC1653F310CB}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{8F4226C8-2645-4D82-A25A-FB8022F9A13F}] => (Allow) C:\Program Files (x86)\Nero\KM\KwikMedia.exe
FirewallRules: [{E659F6B9-341A-4738-9224-0E4504103A7E}] => (Allow) C:\Program Files (x86)\Nero\KM\KwikMedia.exe
FirewallRules: [{9FB9C23B-A971-4842-A54F-5645E920090F}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{EDC57D3D-0299-4488-BE10-6ADE8243FA42}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{49FBCC33-FFA3-4F24-8597-DFB64CDEB062}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DB7FD281-0428-4592-BB4E-977477342837}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A4949F75-12BE-4E76-A1A7-75D3E8C85648}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5D931616-D45B-40F0-AA31-BBF503B861AE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9E049CCB-DAE9-4579-8E60-B9932B8144D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Bus Simulator 16\BusSimulator16.exe
FirewallRules: [{31BCB4F8-90BD-4996-9D6C-D857BF391190}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Bus Simulator 16\BusSimulator16.exe
FirewallRules: [{02BA4D94-8E53-425B-9C44-A1C5C35A8069}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2233BEC0-08FE-461A-8BAC-1CA39D9A8730}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{70C799C5-113D-438F-8E63-C38CFA6F3868}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Wiederherstellungspunkte =========================

24-09-2017 13:28:26 Windows Update
07-10-2017 11:40:22 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name:
Description:
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Winbond CIR Transceiver
Description: Winbond CIR Transceiver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Winbond Electronics Corporation
Service: winbondcir
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/08/2017 10:04:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 09:01:55 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 08:53:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 08:37:53 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" in Zeile 3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (10/08/2017 08:19:36 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 08:04:20 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 07:47:21 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 07:29:33 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/08/2017 05:57:24 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll". Fehler in Manifest- oder Richtliniendatei "c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" in Zeile 3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (10/08/2017 12:16:29 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Keanu-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


Systemfehler:
=============
Error: (10/08/2017 09:05:13 AM) (Source: DCOM) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Fehler "1053" in DCOM, als der Dienst "TrustedInstaller" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (10/08/2017 09:05:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Modules Installer" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (10/08/2017 09:04:14 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Modules Installer erreicht.

Error: (10/08/2017 08:19:36 AM) (Source: DCOM) (EventID: 10010) (User: Keanu-PC)
Description: Der Server "Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/08/2017 08:04:20 AM) (Source: DCOM) (EventID: 10010) (User: Keanu-PC)
Description: Der Server "Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/08/2017 07:47:21 AM) (Source: DCOM) (EventID: 10010) (User: Keanu-PC)
Description: Der Server "Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/08/2017 07:24:15 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NetMsmqActivator" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (10/08/2017 07:24:15 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst NetMsmqActivator erreicht.

Error: (10/08/2017 07:24:15 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NetPipeActivator" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (10/08/2017 07:24:15 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst NetPipeActivator erreicht.


CodeIntegrity:
===================================
  Date: 2017-10-07 10:23:47.062
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 10:23:47.060
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:54:57.439
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:54:57.437
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:43:16.731
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:43:16.729
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:42:57.935
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:42:57.933
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:36:03.524
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-10-07 09:36:03.523
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7 CPU Q 720 @ 1.60GHz
Prozentuale Nutzung des RAM: 58%
Installierter physikalischer RAM: 4028.55 MB
Verfügbarer physikalischer RAM: 1667.18 MB
Summe virtueller Speicher: 8124.55 MB
Verfügbarer virtueller Speicher: 4673.64 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:578.57 GB) (Free:370.08 GB) NTFS
Drive d: (Sven) (Fixed) (Total:144.04 GB) (Free:98.34 GB) NTFS
Drive e: (Michi) (Fixed) (Total:137.5 GB) (Free:17.97 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 596.2 GB) (Disk ID: 354DF646)
Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
Partition 2: (Not Active) - (Size=3.5 GB) - (Type=12)
Partition 3: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=579.6 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: 4EBF5754)
Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
Partition 2: (Active) - (Size=144 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=137.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=3.5 GB) - (Type=12)

==================== Ende von Addition.txt ============================
Code:
Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 08.10.17
Scan-Zeit: 02:35
Protokolldatei: a6595b72-abc0-11e7-b32c-c80aa93b52cf.json
Administrator: Ja

-Softwaredaten-
Version: 3.2.2.2029
Komponentenversion: 1.0.212
Version des Aktualisierungspakets: 1.0.2971
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 10 (Build 15063.608)
CPU: x64
Dateisystem: NTFS
Benutzer: System

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Ergebnis: Abgeschlossen
Gescannte Objekte: 560549
Erkannte Bedrohungen: 0
(keine bösartigen Elemente erkannt)
In die Quarantäne verschobene Bedrohungen: 0
(keine bösartigen Elemente erkannt)
Abgelaufene Zeit: 3 Std., 42 Min., 16 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Warnen
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswert: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Datei: 0
(keine bösartigen Elemente erkannt)

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)


(end)
Virus scan

Code:
Virenprüfung mit G DATA INTERNET SECURITY
Version 25.4.0.2 (17.07.2017)
Virensignaturen vom 08.10.2017
Startzeit: 08.10.2017 07:30:49
Engine(s): Engine A (AVA 25.14410), Engine B (GD 25.10603)
Heuristik: Ein
Archive: Ein
Systembereiche: Ein
RootKits prüfen: Ein

Prüfung der Systembereiche...
Prüfung aller im Speicher befindlichen Prozesse und Verweise im Autostart...
Prüfung aller lokalen Festplatten...
Analyse vollständig durchgeführt: 08.10.2017 08:57:55
    148634 Dateien überprüft
    1 infizierte Dateien gefunden
    0 verdächtige Dateien gefunden


Objekt: install_app_60.exe
        Pfad: C:\Windows.old\WINDOWS\Temp\DigitalWave.ApplicationUpdater_files
        Status: Junkware (PUP) konnte nicht entfernt werden
        Junkware (PUP): Win32.Application.InstallCore.LE (Engine B)

Der Zugriff auf die folgenden Dateien wurde verweigert:
        ----------------------------------------------------------------
        C:\Windows.old\WINDOWS\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl
        C:\Windows.old\WINDOWS\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl
        C:\Windows.old\WINDOWS\System32\LogFiles\WMI\RtBackup\EtwRTDefenderAuditLogger.etl
        D:\System Volume Information\IndexerVolumeGuid
        D:\System Volume Information\WPSettings.dat
        E:\System Volume Information\IndexerVolumeGuid
        E:\System Volume Information\WPSettings.dat
        ----------------------------------------------------------------

surf24 05.01.2018 10:39
Hi, hast du schon mal in Bochum mit den Support von GDATA Kontakt aufgenommen?


Alle Zeitangaben in WEZ +1. Es ist jetzt 23:58 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27