| Eagle2710 | 27.08.2016 12:42 |
Mailadressbuch wird evtl. ausgelesen
Hi,
von meiner E-Mail werden Spamnachrichten an Leute geschickt, mit denen ich schonmal E-Mail Kontakt hatte. Passwort hab ich schon geändert und sollte (dank Passwort-Generator) relativ sicher sein.
Die E-Mails verwalte ich mit Outlook. Die Spam-Mails gehen auch an Kontakte von meiner zweiten Mail-Adresse, die ich ebenfalls mit Outlook verwalte.
Nun ist meine Frage, wie ich weiter vorgehen kann?
FRST.txt: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 27-08-2016
durchgeführt von fabia (Administrator) auf DEV (27-08-2016 13:35:17)
Gestartet von C:\Users\fabia\Downloads
Geladene Profile: fabia (Verfügbare Profile: fabia)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) E:\Programme\G Data\AVK\AVKWCtlx64.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Steganos Software GmbH) C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
() C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(G DATA Software AG) E:\Programme\G Data\AVK\AVKService.exe
(Scarlet.Crush Productions) E:\Programme\SCPToolkit\ScpService.exe
(VMware, Inc.) E:\Programme\VMWare Workstation\vmware-authd.exe
(G Data Software AG) E:\Programme\G Data\Firewall\GDFwSvcx64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() E:\Programme\VMWare Workstation\vmware-hostd.exe
(G DATA Software AG) E:\Programme\G Data\Firewall\GDFirewallTray.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(G DATA Software AG) E:\Programme\G Data\AVKTray\AVKTray.exe
(Greenshot) E:\Programme\Greenshot\Greenshot.exe
(G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(MATESO GmbH) E:\Programme\Password Safe and Repository\psr.exe
(Valve Corporation) E:\Programme\Steam\Steam.exe
(Flux Software LLC) C:\Users\fabia\AppData\Local\FluxSoftware\Flux\flux.exe
(File-New-Project) C:\Program Files (x86)\Ear Trumpet\EarTrumpet.exe
(Steganos Software GmbH) C:\Program Files (x86)\OkayFreedom\OkayFreedomClient.exe
(ROCCAT GmbH Co., Ltd.) E:\Programme\ROCCAT\Ryos Keyboard\Ryos MK Monitor.exe
(VMware, Inc.) E:\Programme\VMWare Workstation\vmware-tray.exe
(Steganos Software GmbH) C:\Program Files (x86)\OkayFreedom\Notifier.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OFFICE15\CSISYNCCLIENT.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) E:\Programme\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) E:\Programme\Steam\bin\steamwebhelper.exe
(Valve Corporation) E:\Programme\Steam\bin\steamwebhelper.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE
(Microsoft Corporation) E:\Programme\Office\Office15\OUTLOOK.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Apple Inc.) C:\Program Files\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(FileZilla Project) C:\Program Files\FileZilla FTP Client\filezilla.exe
(FileZilla Project) C:\Program Files\FileZilla FTP Client\fzsftp.exe
(Farbar) C:\Users\fabia\Downloads\FRST64(1).exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16475392 2016-06-15] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM\...\Run: [Greenshot] => E:\Programme\Greenshot\Greenshot.exe [528384 2015-11-10] (Greenshot)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6613896 2016-06-24] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [vmware-tray.exe] => E:\Programme\VMWare Workstation\vmware-tray.exe [104128 2016-04-14] (VMware, Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-06-30] ()
HKLM-x32\...\Run: [OKAYFREEDOM Notifier] => C:\Program Files (x86)\OkayFreedom\Notifier.exe [4047888 2016-06-29] (Steganos Software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [4515256 2016-07-01] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [4515256 2016-07-01] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Run: [Password Safe Standard] => E:\Programme\Password Safe and Repository\psr.exe [6307552 2016-02-17] (MATESO GmbH)
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Run: [f.lux] => C:\Users\fabia\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Run: [DAEMON Tools Ultra Agent] => E:\Programme\Daemon Tools\DTAgent.exe [4338880 2016-02-02] (Disc Soft Ltd)
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Run: [OKAYFREEDOM_Agent] => C:\Program Files (x86)\OkayFreedom\OkayFreedomClient.exe [6427144 2016-06-29] (Steganos Software GmbH)
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\MountPoints2: {afb307f9-3e9c-11e6-b55a-d050994ab0f1} - "H:\autorun.exe"
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\MountPoints2: {afb3081f-3e9c-11e6-b55a-d050994ab0f1} - "I:\setup\rsrc\Autorun.exe"
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [4515256 2016-07-01] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [4515256 2016-07-01] (Microsoft Corporation) <==== ACHTUNG
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => E:\Programme\Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => E:\Programme\Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => E:\Programme\Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ear Trumpet.lnk [2016-06-15]
ShortcutTarget: Ear Trumpet.lnk -> C:\Program Files (x86)\Ear Trumpet\EarTrumpet.exe (File-New-Project)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ryos Driver.lnk [2016-07-04]
ShortcutTarget: Ryos Driver.lnk -> E:\Programme\ROCCAT\Ryos Keyboard\Ryos MK Monitor.exe (ROCCAT GmbH Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2016-06-15]
ShortcutTarget: ScpToolkit Tray Notifications.lnk -> E:\Programme\SCPToolkit\ScpTrayApp.exe (Scarlet.Crush Productions)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: 192.168.178.23 leitstelle
Tcpip\..\Interfaces\{55a39ab0-2414-4f84-8a4a-5e821f6de80b}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{c22ce747-072f-492b-b36d-72606ad45877}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-669619637-715361226-809095261-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> E:\Programme\Office\Office15\OCHelper.dll [2016-07-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-08-13] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> E:\Programme\Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-08-13] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-07-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-14] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-14] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - E:\Programme\Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] ()
FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-08-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-08-13] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> E:\Programme\Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Windows\system32\C2MP\npdivx32.dll [Keine Datei]
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-14] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Extension: (PSR) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\extensions\support@mateso.de.xpi [2016-02-17]
FF Extension: (NoScript) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-08-12]
FF Extension: (Greasemonkey) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-08-19]
FF Extension: (FireShot) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2016-08-23]
FF Extension: (Classic Theme Restorer) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2016-08-24]
FF Extension: (Bitdefender QuickScan) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-08-27]
FF Extension: (Firebug) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\firebug@software.joehewitt.com.xpi [2016-06-15]
FF Extension: (BetterTTV) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\firefox@betterttv.net.xpi [2016-06-15]
FF Extension: (Global Twitch Emotes) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\gte@melalawi.com.xpi [2016-06-15]
FF Extension: (ProxTube) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\ich@maltegoetz.de.xpi [2016-08-24]
FF Extension: (magrent) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\jid1-9tZMAIdeuiEjHg@jetpack.xpi [2016-08-07]
FF Extension: (The Addon Bar (restored)) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\the-addon-bar@GeekInTraining-GiT.xpi [2016-06-15]
FF Extension: (uBlock Origin) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\uBlock0@raymondhill.net.xpi [2016-08-07]
FF Extension: (Wappalyzer) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\wappalyzer@crunchlabz.com.xpi [2016-07-26]
FF Extension: (OkayFreedom) - C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Profiles\lqyffy6a.default\Extensions\{DB981CCA-088E-4731-A4A2-2FE218703C0E}.xpi [2016-06-29]
Chrome:
=======
CHR Profile: C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-17]
CHR Extension: (Google Docs) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-17]
CHR Extension: (Google Drive) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-17]
CHR Extension: (YouTube) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-17]
CHR Extension: (Google Tabellen) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-17]
CHR Extension: (Google Docs Offline) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-17]
CHR Extension: (Google Mail) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-17]
CHR Extension: (Chrome Media Router) - C:\Users\fabia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-23]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-06-24] () [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [4677296 2016-05-23] (G DATA Software AG)
R2 AVKService; E:\Programme\G Data\AVK\AVKService.exe [980808 2016-05-02] (G DATA Software AG)
R2 AVKWCtl; E:\Programme\G Data\AVK\AVKWCtlx64.exe [2944240 2016-06-02] (G Data Software AG)
S3 Disc Soft Ultra Bus Service; E:\Programme\Daemon Tools\DiscSoftBusService.exe [1439424 2016-02-02] (Disc Soft Ltd)
R2 Ds3Service; E:\Programme\SCPToolkit\ScpService.exe [389632 2016-01-10] (Scarlet.Crush Productions) [Datei ist nicht signiert]
R3 GDFwSvc; E:\Programme\G Data\Firewall\GDFwSvcx64.exe [3278256 2016-06-02] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [813896 2016-05-02] (G DATA Software AG)
R2 MySQL57; C:\Program Files\MySQL\MySQL Server 5.7\bin\mysqld.exe [39885824 2016-07-12] () [Datei ist nicht signiert]
R2 OkayFreedom VPN Starter Service; C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe [341024 2016-06-29] (Steganos Software GmbH)
S3 Origin Client Service; E:\Programme\Origin\OriginClientService.exe [2122248 2016-06-15] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2016-07-05] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R2 VMAuthdService; E:\Programme\VMWare Workstation\vmware-authd.exe [97864 2016-04-14] (VMware, Inc.)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
R2 VMwareHostd; E:\Programme\VMWare Workstation\vmware-hostd.exe [12471368 2016-04-14] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-06-15] (Advanced Micro Devices)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2016-06-30] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2016-06-30] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d65x64.sys [541672 2016-06-15] (Intel Corporation)
S3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [31832 2016-06-15] (ELAN Microelectronic Corp.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [176712 2016-06-15] (G Data Software AG)
S0 GDElam; C:\Windows\System32\DRIVERS\GDElam.sys [117904 2016-04-21] (G Data Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [37400 2016-06-15] (G Data Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [29720 2016-06-15] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [262112 2016-06-15] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [102984 2016-06-15] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [77384 2016-08-14] (G DATA Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [116296 2016-06-15] (G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [149576 2016-06-15] (G Data Software AG)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-06-15] (REALiX(tm))
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52320 2016-07-03] (hxxp://libusb-win32.sourceforge.net)
R3 libusbK; C:\Windows\System32\drivers\libusbK.sys [47200 2016-06-15] (hxxp://libusb-win32.sourceforge.net)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-11-05] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [34520 2015-07-09] (VMware, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-08-27 13:32 - 2016-08-27 13:33 - 02396672 _____ (Farbar) C:\Users\fabia\Downloads\FRST64(1).exe
2016-08-27 13:08 - 2016-08-27 13:08 - 26660603 _____ C:\Users\fabia\Downloads\typo3_src-7.6.10.zip
2016-08-27 12:55 - 2016-08-27 12:58 - 00000000 ____D C:\Users\fabia\AppData\Roaming\QuickScan
2016-08-27 12:35 - 2016-08-27 12:35 - 00000000 ___HD C:\OneDriveTemp
2016-08-26 15:13 - 2016-08-26 15:13 - 06662856 _____ (Tim Kosse) C:\Users\fabia\Downloads\FileZilla_3.21.0_win64-setup.exe
2016-08-25 18:11 - 2016-08-26 11:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-25 17:41 - 2016-08-25 17:41 - 00003318 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task
2016-08-25 16:19 - 2016-08-25 16:19 - 02146528 _____ C:\Users\fabia\Downloads\FiraCode_1.200.zip
2016-08-25 16:05 - 2016-08-25 16:05 - 00000000 ____D C:\Program Files\MySQL
2016-08-25 16:02 - 2016-08-25 16:09 - 00000000 ____D C:\ProgramData\MySQL
2016-08-25 16:02 - 2016-08-25 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2016-08-25 16:02 - 2016-08-25 16:02 - 00000000 ____D C:\Windows\System32\Tasks\MySQL
2016-08-25 16:02 - 2016-08-25 16:02 - 00000000 ____D C:\Program Files (x86)\MySQL
2016-08-25 16:01 - 2016-08-25 16:01 - 01716224 _____ C:\Users\fabia\Downloads\mysql-installer-web-community-5.7.14.0.msi
2016-08-23 18:28 - 2016-08-23 18:29 - 07529963 _____ C:\Users\fabia\Downloads\0815.7z
2016-08-18 19:03 - 2016-08-18 19:03 - 10945663 _____ C:\Users\fabia\Downloads\apache-tomcat-9.0.0.M9-windows-x64.zip
2016-08-18 18:59 - 2016-08-18 18:59 - 00000000 ____D C:\Users\fabia\.IntelliJIdea2016.2
2016-08-18 18:47 - 2016-08-18 18:56 - 438156376 _____ C:\Users\fabia\Downloads\ideaIU-2016.2.2.exe
2016-08-18 18:43 - 2016-08-18 18:43 - 00000000 ____D C:\Users\fabia\.android
2016-08-16 00:23 - 2016-08-16 00:23 - 04952336 _____ (Advanced Micro Devices, Inc.) C:\Users\fabia\Downloads\autodetectutility.exe
2016-08-14 22:11 - 2016-08-27 13:06 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-08-14 22:11 - 2016-08-14 22:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-14 22:11 - 2016-08-14 22:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-14 22:11 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-08-14 22:11 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-08-14 22:11 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-08-14 22:07 - 2016-08-14 22:10 - 22851472 _____ (Malwarebytes ) C:\Users\fabia\Downloads\mbam-setup-2.2.1.1043(1).exe
2016-08-14 21:02 - 2016-08-14 21:02 - 22851472 _____ (Malwarebytes ) C:\Users\fabia\Downloads\mbam-setup-2.2.1.1043.exe
2016-08-14 18:30 - 2016-08-14 22:04 - 00000000 ____D C:\AdwCleaner
2016-08-14 18:29 - 2016-08-14 18:30 - 03784256 _____ C:\Users\fabia\Downloads\adwcleaner_6.000.exe
2016-08-14 17:16 - 2016-08-14 17:16 - 00000000 ____D C:\Windows\system32\appmgmt
2016-08-14 17:13 - 2016-08-27 13:35 - 00023561 _____ C:\Users\fabia\Downloads\FRST.txt
2016-08-14 17:13 - 2016-08-27 13:33 - 00000000 ____D C:\FRST
2016-08-14 17:13 - 2016-08-14 17:14 - 00049830 _____ C:\Users\fabia\Downloads\Addition.txt
2016-08-14 17:12 - 2016-08-14 17:13 - 02393600 _____ (Farbar) C:\Users\fabia\Downloads\FRST64.exe
2016-08-14 16:13 - 2016-08-14 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY
2016-08-14 16:08 - 2016-08-14 16:08 - 00076504 _____ (AppWork GmbH) C:\Users\fabia\Downloads\WebInstaller_adfree_2016_1.exe
2016-08-14 15:19 - 2016-08-27 13:02 - 00004142 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DA035CEC-372E-4BC2-B193-3B6E0549D9E3}
2016-08-14 15:10 - 2016-08-14 15:10 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-08-14 15:10 - 2016-08-14 15:10 - 00000000 ____D C:\Program Files (x86)\Java
2016-08-14 15:10 - 2016-08-13 22:38 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-08-14 15:09 - 2016-08-14 15:09 - 00739904 _____ (Oracle Corporation) C:\Users\fabia\Downloads\JavaSetup8u101.exe
2016-08-14 12:27 - 2016-08-14 12:27 - 00000000 ____D C:\Program Files\ATI Technologies
2016-08-14 12:27 - 2016-08-14 12:27 - 00000000 ____D C:\Program Files (x86)\AMD
2016-08-14 12:26 - 2016-08-27 07:28 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-08-14 10:15 - 2016-08-14 10:17 - 00000000 ____D C:\Users\fabia\Documents\FIFA 16
2016-08-14 08:42 - 2016-08-14 08:52 - 00000000 ____D C:\Program Files\Recuva
2016-08-14 08:42 - 2016-08-14 08:42 - 00002846 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-08-14 08:42 - 2016-08-14 08:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2016-08-14 08:42 - 2016-08-14 08:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-14 08:42 - 2016-08-14 08:42 - 00000000 ____D C:\Program Files\CCleaner
2016-08-14 08:41 - 2016-08-14 08:41 - 05473600 _____ (Piriform Ltd) C:\Users\fabia\Downloads\rcsetup153.exe
2016-08-14 08:26 - 2016-08-14 08:26 - 00874674 _____ C:\Users\fabia\Downloads\HxDSetupDE.zip
2016-08-13 22:41 - 2016-08-13 22:41 - 00027872 _____ (G DATA Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2016-08-13 22:39 - 2016-08-13 22:39 - 15206592 _____ (IObit ) C:\Users\fabia\Downloads\driver_booster_setup(350785).exe
2016-08-13 21:35 - 2016-08-13 21:35 - 00014706 _____ C:\Users\fabia\Downloads\lss.hassels.eu.zip
2016-08-12 22:47 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-08-12 22:47 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-08-12 22:47 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-08-12 22:47 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-08-12 22:47 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-08-12 22:47 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-08-12 22:47 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-12 22:47 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-08-12 22:47 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-08-12 22:47 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-08-12 22:47 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-08-12 22:47 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-08-12 22:47 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-12 22:47 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-08-12 22:47 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-08-12 22:47 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-08-12 22:47 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-08-12 22:47 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-12 22:47 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-12 22:47 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-08-12 22:47 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-08-12 22:47 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-08-12 22:47 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-08-12 22:47 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-08-12 22:47 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-08-12 22:47 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-08-12 22:47 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-08-12 22:47 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-08-12 22:47 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-08-12 22:47 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-08-12 22:47 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-08-12 22:47 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-08-12 22:47 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-12 22:47 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-08-12 22:47 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-08-12 22:47 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-08-12 22:47 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-08-12 22:47 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-08-12 22:47 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-08-12 22:47 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-08-12 22:47 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-08-12 22:47 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-08-12 22:47 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-08-12 22:47 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-08-12 22:47 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-08-12 22:47 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-12 22:47 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-08-12 22:47 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-08-12 22:47 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-12 22:47 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-08-12 22:47 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-08-12 22:47 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-08-12 22:47 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-12 22:47 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-12 22:47 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-08-12 22:47 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-12 22:47 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-08-12 22:47 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-08-12 22:47 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-08-12 22:47 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-08-12 22:47 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-12 22:47 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-12 22:47 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-08-12 22:47 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-12 22:47 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-12 22:47 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-08-12 22:47 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-08-12 22:47 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-08-12 22:47 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-08-12 22:47 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-08-12 22:47 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-08-12 22:47 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-12 22:47 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-08-12 22:47 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-08-12 22:47 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-08-12 22:47 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-08-12 22:47 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-08-12 22:47 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-08-12 22:47 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-08-12 22:47 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-08-12 22:47 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-12 22:47 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-12 22:47 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-08-12 22:47 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-08-12 22:47 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-12 22:47 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-08-12 22:47 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-08-12 22:47 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-08-12 22:47 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-12 22:47 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-08-12 22:47 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-12 22:47 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-12 22:47 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-08-12 22:47 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-12 22:47 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-08-12 22:47 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-08-12 22:47 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-08-12 22:47 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-12 22:47 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-12 22:47 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-12 22:47 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-08-12 22:47 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-08-12 22:47 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-08-12 22:47 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-12 22:47 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-12 22:47 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-08-12 22:47 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-08-12 22:46 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-08-12 22:46 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-08-12 22:46 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-08-12 22:46 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-08-12 22:46 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-08-12 22:46 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-08-12 22:46 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-08-12 22:46 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-12 22:46 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-08-12 22:46 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-12 22:46 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-08-12 22:46 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-08-12 22:46 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-12 22:46 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-08-12 22:46 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-08-12 22:46 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-12 22:46 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-08-12 22:46 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-12 22:46 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-08-12 22:46 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-12 22:46 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-08-12 22:46 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 09131736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 08892696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 08738920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 07115928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00479368 _____ C:\Windows\system32\amdmiracast.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00164280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00159088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00154920 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00152800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00138688 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00138176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00123120 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00123104 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00105344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-08-12 01:07 - 2016-08-12 01:07 - 00105344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 48819200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 38266368 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 32555512 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 27489280 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 26639360 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 21641216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 15729152 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 14320128 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 08830456 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 08627704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 07076352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 06956032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 02376704 _____ C:\Windows\system32\amdoclvp9lib64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 02286584 _____ C:\Windows\SysWOW64\amdoclvp9lib32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 02147328 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 01837568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00991232 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00883192 _____ (AMD) C:\Windows\system32\coinst_16.30.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00751616 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00627192 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00459776 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00402944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00350208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00292352 _____ C:\Windows\system32\dgtrayicon.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00287744 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00275968 _____ C:\Windows\system32\GameManager64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00270336 _____ C:\Windows\system32\clinfo.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00268792 _____ C:\Windows\system32\hsa-thunk64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00249336 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00234496 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00231424 _____ C:\Windows\system32\atieah64.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00222208 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00209408 _____ C:\Windows\SysWOW64\atieah32.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00202744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00201728 _____ C:\Windows\system32\amdhdl64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00181760 _____ C:\Windows\SysWOW64\amdhdl32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00176640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00159736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00137208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00135168 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00130560 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00123896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00118784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00113664 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00111616 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00109568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00108544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00108544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00104448 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00083960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmcl64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00079864 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00069632 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00068608 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2016-08-12 01:06 - 2016-08-12 01:06 - 00068096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00067584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmcl32.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00066560 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00060920 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00055800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-08-12 01:06 - 2016-08-12 01:06 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
2016-08-07 23:29 - 2016-08-07 23:29 - 06647784 _____ (Tim Kosse) C:\Users\fabia\Downloads\FileZilla_3.20.1_win64-setup.exe
2016-08-07 23:26 - 2016-08-07 23:26 - 00000000 ___HD C:\$WINDOWS.~BT
2016-07-30 17:11 - 2016-07-30 17:12 - 57195008 _____ () C:\Users\fabia\Downloads\Microsoft Toolkit 2.6 Beta 5.exe
2016-07-29 12:46 - 2016-07-29 12:46 - 06638280 _____ (Tim Kosse) C:\Users\fabia\Downloads\FileZilla_3.20.0_win64-setup.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-08-27 13:23 - 2016-06-15 14:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-08-27 13:19 - 2016-06-15 13:59 - 00000000 ____D C:\Users\fabia\AppData\Roaming\FileZilla
2016-08-27 12:41 - 2016-06-15 11:20 - 01807284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-08-27 12:41 - 2016-04-27 07:13 - 00778208 _____ C:\Windows\system32\perfh007.dat
2016-08-27 12:41 - 2016-04-27 07:13 - 00156548 _____ C:\Windows\system32\perfc007.dat
2016-08-27 12:41 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-27 12:41 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-08-27 12:41 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-08-27 12:41 - 2015-10-30 08:28 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-08-27 12:38 - 2016-06-15 13:28 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-27 12:35 - 2016-06-15 22:25 - 00000000 ____D C:\ProgramData\VMware
2016-08-27 12:35 - 2016-06-15 13:55 - 00000814 _____ C:\Users\fabia\Documents\psr7.lic
2016-08-27 12:35 - 2016-06-15 13:28 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-27 12:35 - 2016-06-15 11:18 - 00000000 ___RD C:\Users\fabia\OneDrive
2016-08-27 12:35 - 2016-04-27 07:48 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-08-27 07:28 - 2016-06-15 15:02 - 00000000 ____D C:\Users\fabia\AppData\Roaming\vlc
2016-08-27 07:28 - 2016-06-15 13:55 - 01028096 _____ C:\Users\fabia\Documents\Passwoerter.ps7
2016-08-27 07:28 - 2015-10-30 08:28 - 00786432 ___SH C:\Windows\system32\config\BBI
2016-08-27 06:59 - 2016-06-15 14:53 - 00000000 ____D C:\ProgramData\Origin
2016-08-27 06:59 - 2016-06-15 13:45 - 00000000 ____D C:\Users\fabia\Documents\Euro Truck Simulator 2
2016-08-26 14:58 - 2016-06-15 13:44 - 00000000 ____D C:\Users\fabia\AppData\Roaming\TS3Client
2016-08-26 11:01 - 2016-06-15 13:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-26 08:08 - 2016-04-26 22:44 - 04971360 _____ C:\Windows\system32\FNTCACHE.DAT
2016-08-25 18:28 - 2016-06-15 14:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-08-25 17:41 - 2016-06-15 11:18 - 00002379 _____ C:\Users\fabia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-25 16:16 - 2016-06-15 22:26 - 00000000 ____D C:\Users\fabia\AppData\Roaming\VMware
2016-08-23 20:53 - 2016-06-15 11:15 - 00000000 ____D C:\Users\fabia
2016-08-23 16:46 - 2016-06-15 13:37 - 00000000 ____D C:\Users\fabia\AppData\Roaming\PasswordSafe
2016-08-22 18:20 - 2016-07-03 13:02 - 00000000 ____D C:\Users\fabia\AppData\Roaming\Telegram Desktop
2016-08-20 13:48 - 2016-07-05 21:50 - 00103736 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-08-18 18:57 - 2016-06-15 16:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2016-08-18 18:57 - 2016-06-15 16:40 - 00000000 ____D C:\Program Files (x86)\JetBrains
2016-08-18 18:44 - 2016-06-15 16:49 - 00000000 ____D C:\Users\fabia\.oracle_jre_usage
2016-08-16 18:53 - 2016-06-15 20:43 - 00000000 ____D C:\ProgramData\AMD
2016-08-15 08:14 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-08-15 07:12 - 2015-10-30 09:26 - 00000000 ____D C:\Windows\Setup
2016-08-14 22:05 - 2016-06-15 13:12 - 00000000 ____D C:\Users\fabia\AppData\Roaming\IObit
2016-08-14 22:05 - 2016-06-15 13:12 - 00000000 ____D C:\ProgramData\IObit
2016-08-14 22:05 - 2016-06-15 13:12 - 00000000 ____D C:\Program Files (x86)\IObit
2016-08-14 17:18 - 2016-07-03 12:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-08-14 16:21 - 2016-06-15 14:14 - 00000000 ____D C:\ProgramData\G Data
2016-08-14 16:13 - 2016-06-15 14:22 - 00077384 _____ (G DATA Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2016-08-14 16:10 - 2016-06-15 22:11 - 00000000 ____D C:\Users\fabia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-08-14 15:19 - 2016-06-23 21:51 - 00000000 ____D C:\ProgramData\Oracle
2016-08-14 15:10 - 2016-06-23 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-08-14 15:10 - 2016-06-23 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-08-14 12:30 - 2016-04-27 07:55 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-14 12:28 - 2016-04-27 07:34 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-14 12:28 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-08-14 12:28 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-08-14 12:27 - 2016-06-15 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-08-14 12:26 - 2016-06-15 16:32 - 00000000 ____D C:\Windows\system32\MRT
2016-08-14 12:26 - 2016-06-15 11:20 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-14 12:26 - 2016-06-15 11:20 - 00000000 ____D C:\Program Files\AMD
2016-08-14 12:26 - 2016-06-15 11:20 - 00000000 ____D C:\AMD
2016-08-14 12:26 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-14 12:26 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-08-14 12:23 - 2016-06-15 16:32 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-14 09:14 - 2016-06-15 13:47 - 00000000 ____D C:\Users\fabia\Documents\FIFA 16bak
2016-08-13 22:40 - 2016-06-15 13:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2016-08-13 22:38 - 2016-06-23 21:51 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-08-13 22:37 - 2016-06-23 21:50 - 00000000 ____D C:\Program Files\Java
2016-08-13 11:50 - 2015-10-30 09:24 - 00000167 _____ C:\Windows\win.ini
2016-08-12 22:39 - 2016-06-15 13:28 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-12 22:37 - 2016-06-15 13:25 - 00000141 _____ C:\Users\fabia\Desktop\livestreamer.bat
2016-08-12 01:07 - 2016-06-15 13:19 - 09340136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-08-12 01:07 - 2016-06-15 13:19 - 07258160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-08-12 01:07 - 2016-06-15 13:19 - 01273928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-08-12 01:07 - 2016-06-15 13:19 - 00137224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-08-12 01:07 - 2016-04-22 17:50 - 10995344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-08-12 01:07 - 2016-04-22 17:50 - 10317568 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-08-12 01:07 - 2016-04-22 17:50 - 01547544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-08-12 01:07 - 2016-04-22 17:50 - 00183952 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-08-12 01:06 - 2016-06-15 13:19 - 00991232 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-08-12 01:06 - 2016-06-15 13:19 - 00241152 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-08-12 01:06 - 2016-06-15 13:19 - 00021496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
2016-08-12 01:06 - 2016-04-22 17:52 - 26706432 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-08-12 01:06 - 2016-04-22 17:52 - 01323008 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-08-12 01:06 - 2016-04-22 17:52 - 00521728 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-08-12 01:06 - 2016-04-22 17:52 - 00518656 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-08-12 01:06 - 2016-04-22 17:52 - 00287232 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-08-08 06:25 - 2016-06-16 10:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-07 23:26 - 2016-06-15 12:12 - 00000000 ____D C:\Windows\Panther
2016-07-31 00:14 - 2016-06-15 14:27 - 00000000 ____D C:\Users\fabia\AppData\Roaming\Skype
2016-07-29 09:33 - 2016-06-15 13:28 - 00004184 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-29 09:33 - 2016-06-15 13:28 - 00003952 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-07-25 10:33 - 2016-07-27 09:38 - 0000132 _____ () C:\Users\fabia\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2016-06-15 14:21 - 2016-06-15 14:21 - 0000000 _____ () C:\Users\fabia\AppData\Roaming\gdfw.log
2016-06-15 14:21 - 2016-06-15 14:21 - 0000779 _____ () C:\Users\fabia\AppData\Roaming\gdscan.log
2016-07-03 13:12 - 2016-07-03 13:12 - 0001456 _____ () C:\Users\fabia\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-06-17 11:41 - 2016-08-27 13:32 - 0000600 _____ () C:\Users\fabia\AppData\Local\PUTTY.RND
2016-07-13 09:36 - 2016-07-13 09:36 - 0007601 _____ () C:\Users\fabia\AppData\Local\Resmon.ResmonCfg
2016-06-15 13:20 - 2016-06-15 13:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-08-18 20:23
==================== Ende von FRST.txt ============================
Addition.txt: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 11-08-2016 01
durchgeführt von fabia (2016-08-14 17:13:51)
Gestartet von C:\Users\fabia\Downloads
Windows 10 Pro Version 1511 (X64) (2016-06-15 09:14:41)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-669619637-715361226-809095261-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-669619637-715361226-809095261-503 - Limited - Disabled)
fabia (S-1-5-21-669619637-715361226-809095261-1001 - Administrator - Enabled) => C:\Users\fabia
Gast (S-1-5-21-669619637-715361226-809095261-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: G DATA INTERNET SECURITY (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: G DATA INTERNET SECURITY (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.)
Anno 1404 (HKLM\...\Steam App 33250) (Version: - Blue Byte)
Anno 1404: Venice (HKLM\...\Steam App 33350) (Version: - Blue Byte)
Apple Application Support (32-Bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Bus Simulator 16 Version 0.0.768.7023 (HKLM-x32\...\{5E3BD2FB-C004-4760-814A-A04C7A14D47C}_is1) (Version: 0.0.768.7023 - astragon Entertainment)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7 - Activision) Hidden
Canon MP Navigator EX 1.0 (HKLM-x32\...\MP Navigator EX 1.0) (Version: - )
Canon MP520 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP520_series) (Version: - )
Catalyst Control Center Next Localization BR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
DAEMON Tools Ultra (HKLM\...\DAEMON Tools Ultra) (Version: 4.1.0.0489 - Disc Soft Ltd)
DB Browser for SQLite (HKLM-x32\...\SqliteBrowser3) (Version: 3.8.0 - oldsch00l)
D-i-v-X AVI Codec Pack Pro 2.4.0 (HKLM-x32\...\D-i-v-X - AVI Codec Pack Pro) (Version: - D-i-v-X AVI Codec Pack Pro)
Driver Booster 3.5 (HKLM-x32\...\Driver Booster_is1) (Version: 3.5 - IObit)
Dual Monitor Tools (HKLM-x32\...\{14DF3258-CA2F-4166-9713-EB7BB9D55307}) (Version: 2.3.0.0 - GNE)
DVD Architect Studio 5.0 (HKLM-x32\...\{3870B92E-08F8-11E3-A5E1-F04DA23A5C58}) (Version: 5.0.186 - Sony)
Ear Trumpet (HKLM-x32\...\BA8684A3-9834-4D78-A666-04E88FF0EC82_is1) (Version: 1.3.1.0 - )
Emergency 3 (HKLM-x32\...\{89E0B0D4-DFC3-49B9-8E88-F1B801325C8A}) (Version: 1.03.001 - )
ERS Berlin (HKLM-x32\...\ERSBerlin_is1) (Version: 1.2.0.0 - ERS Berlin Team)
f.lux (HKU\S-1-5-21-669619637-715361226-809095261-1001\...\Flux) (Version: - )
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts)
FileZilla Client 3.18.0 (HKLM-x32\...\FileZilla Client) (Version: 3.18.0 - Tim Kosse)
Freemake Video Converter Version 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
G DATA INTERNET SECURITY (HKLM-x32\...\G DATA INTERNET SECURITY) (Version: 25.2.0.2 - G DATA Software AG)
Git version 2.9.0 (HKLM\...\Git_is1) (Version: 2.9.0 - The Git Development Community)
GitHub (HKU\S-1-5-21-669619637-715361226-809095261-1001\...\5f7eb300e2ea4ebf) (Version: 3.1.1.4 - GitHub, Inc.)
Google Chrome (HKLM-x32\...\{1B1804FD-E82B-3F90-BF06-C790151AA7EB}) (Version: 51.0.2704.84 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Greenshot 1.2.8.12 (HKLM\...\Greenshot_is1) (Version: 1.2.8.12 - Greenshot)
Hatred Incl. Update 9 MULTi9 1.0 (HKLM-x32\...\Hatred Incl. Update 9 MULTi9 1.0) (Version: - )
IntelliJ IDEA 2016.1.3 (HKLM-x32\...\IntelliJ IDEA 2016.1.3) (Version: 145.1617.8 - JetBrains s.r.o.)
IP Camera Adapter (HKLM-x32\...\{6D140BFF-7CC5-4BFE-AD6D-47035FFE5F14}) (Version: 2.0.0.0 - Pavel Khlebovich)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 102 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
Java SE Development Kit 8 Update 91 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180910}) (Version: 8.0.910.15 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
JetBrains CLion 2016.1.3 (HKLM-x32\...\CLion 2016.1.3) (Version: 145.1617.9 - JetBrains s.r.o.)
JetBrains WebStorm 2016.1.3 (HKLM-x32\...\WebStorm 2016.1.3) (Version: 145.1616.9 - JetBrains s.r.o.)
L.A. Noire (HKLM\...\Steam App 110800) (Version: - Team Bondi)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Livestreamer 1.12.2 (HKLM-x32\...\Livestreamer) (Version: - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Studio Platinum 13.0 (HKLM-x32\...\{0A78A7A1-2BE6-11E5-BF1D-F04DA23A5C58}) (Version: 13.0.954 - Sony)
Mozilla Firefox 47.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 de)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla)
MySQL Workbench 6.3 CE (HKLM\...\{0D901124-B910-4985-9D4F-AC5C2FEF7493}) (Version: 6.3.7 - Oracle Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OkayFreedom (HKLM-x32\...\{3F3FB10C-7175-4D38-9335-3488B89C12AF}) (Version: 1.7.3 - Steganos Software GmbH)
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Password Safe and Repository 7 (HKLM\...\{7B6F4DF3-57DA-49AD-8A6B-5639E9D66E8B}) (Version: 7.5.1.2259 - MATESO GmbH)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PuTTY release 0.67 (HKLM-x32\...\PuTTY_is1) (Version: 0.67 - Simon Tatham)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7829 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
ROCCAT Ryos Keyboard Driver (HKLM-x32\...\{70F3EF93-44F4-446A-90B8-33DAB2799AF1}) (Version: 1.29.0006 - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Sharepod 4.1.0.0 (HKLM-x32\...\{085BCFB8-F6FB-4600-AFAB-1F6DBC7F5F99}_is1) (Version: - Macroplant LLC)
Skype™ 7.25 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.25.106 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
Telegram Desktop Version 0.9.56 (HKU\S-1-5-21-669619637-715361226-809095261-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.9.56 - Telegram Messenger LLP)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft)
Vegas Pro 11.0 (64-bit) (HKLM\...\{7E3B2D0F-029B-11E2-BD68-F04DA23A5C58}) (Version: 11.0.701 - Sony)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VMware Workstation (HKLM\...\{F4C0A853-FA3B-4404-954B-799299EB5A98}) (Version: 12.1.1 - VMware, Inc.)
WinAVR 20100110 (remove only) (HKLM-x32\...\WinAVR-20100110) (Version: 20100110 - )
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WizTree v2.01 (HKLM-x32\...\WizTree_is1) (Version: - Antibody Software)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-669619637-715361226-809095261-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\fabia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {15C03BCA-6FFE-4253-8F5B-3750AD3A3BC4} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {196CE746-4B1D-4A08-8A68-A684DEDEFF4F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {2305C976-A000-4AEB-8AE8-53433C7410AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-15] (Google Inc.)
Task: {36D601E9-1DBC-4EA6-9D26-5BCF4C94E477} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-01] (Piriform Ltd)
Task: {3AE36B99-229B-47B8-8DFB-3647BCFD36AD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {3B4CF9A1-4C5F-428F-AC98-1E32FDB94B22} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {40465DDC-D6AF-4220-9C43-2E2216792CFF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {96189C14-FE3B-4CA9-9C41-67E64E278C11} - System32\Tasks\Driver Booster SkipUAC (fabia) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-07-18] (IObit)
Task: {A97D0249-0B6E-442B-BF14-4668795B1E19} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-07-14] (IObit)
Task: {D4F3DB05-6C3F-4176-98BD-7E92DBF7F00D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated)
Task: {DAAD8C08-9E5A-4EBD-83BC-174CC667BD8C} - System32\Tasks\updater => E:\Programme\SCPToolkit\ScpUpdater.exe [2016-01-10] (Nefarius Software Solutions)
Task: {E7084842-68DC-48E9-847A-68D863D80315} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-15] (Google Inc.)
Task: {FFA2DFBF-01CE-4A1E-80D2-318EE7A78CCA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-07-05 21:50 - 2016-07-05 21:53 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2016-06-16 11:00 - 2016-06-16 11:00 - 00307712 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\ReactiveSockets\8646218657a9e1a03dfd1082f11cb43d\ReactiveSockets.ni.dll
2014-05-02 11:52 - 2014-05-02 11:52 - 00599040 _____ () E:\Programme\SCPToolkit\irrKlang\amd64\irrKlang.NET4.dll
2014-05-02 06:55 - 2014-05-02 06:55 - 00185344 _____ () E:\Programme\SCPToolkit\irrKlang\amd64\ikpflac.dll
2014-05-02 06:05 - 2014-05-02 06:05 - 00173056 _____ () E:\Programme\SCPToolkit\irrKlang\amd64\ikpmp3.dll
2016-06-02 05:26 - 2016-06-02 05:26 - 00418632 _____ () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2016-07-13 09:17 - 2016-07-01 06:48 - 02656408 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-07-13 09:17 - 2016-07-01 06:48 - 02656408 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-06-15 11:19 - 2016-06-15 11:19 - 00959168 _____ () C:\Users\fabia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-07-13 09:17 - 2016-07-01 05:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-13 09:17 - 2016-07-01 05:20 - 00349184 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ReminderActionUriHandlers.dll
2016-07-13 09:17 - 2016-07-01 05:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-15 13:45 - 2016-06-15 13:46 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-04-27 07:17 - 2016-04-27 07:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-13 09:18 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-14 17:16 - 2016-04-14 17:16 - 12471368 _____ () E:\Programme\VMWare Workstation\vmware-hostd.exe
2016-07-13 09:17 - 2016-07-01 05:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-13 09:17 - 2016-07-01 05:22 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-07-13 09:17 - 2016-07-01 05:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-30 09:17 - 2015-10-30 09:17 - 01813504 _____ () C:\Windows\System32\speech_onecore\engines\tts\MSTTSEngine_OneCore.dll
2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 15:53 - 2015-06-25 15:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 15:51 - 2015-06-25 15:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-04-25 15:12 - 2016-07-23 10:32 - 00174872 _____ () E:\Programme\Teamspeak\quazip.dll
2016-04-25 15:12 - 2016-07-23 10:32 - 00103192 _____ () E:\Programme\Teamspeak\soundbackends\directsound_win64.dll
2016-04-25 15:12 - 2016-07-23 10:32 - 00107800 _____ () E:\Programme\Teamspeak\soundbackends\windowsaudiosession_win64.dll
2016-04-25 15:13 - 2016-07-23 10:32 - 00312088 _____ () E:\Programme\Teamspeak\plugins\clientquery_plugin.dll
2016-04-25 15:13 - 2016-07-23 10:32 - 00485656 _____ () E:\Programme\Teamspeak\plugins\teamspeak_control_plugin.dll
2016-06-24 12:51 - 2016-06-24 12:51 - 00138752 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2016-04-14 17:16 - 2016-04-14 17:16 - 01309768 _____ () E:\Programme\VMWare Workstation\libxml2.dll
2016-06-15 13:45 - 2016-06-15 13:46 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-06-15 13:45 - 2016-06-15 13:46 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-04-14 17:16 - 2016-04-14 17:16 - 00173128 _____ () E:\Programme\VMWare Workstation\nfc-types.dll
2016-04-14 17:16 - 2016-04-14 17:16 - 00199752 _____ () E:\Programme\VMWare Workstation\LIBEXPAT.dll
2016-04-14 17:16 - 2016-04-14 17:16 - 00396872 _____ () E:\Programme\VMWare Workstation\ssoClient.dll
2016-06-15 11:19 - 2016-06-15 11:19 - 00679624 _____ () C:\Users\fabia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-06-15 16:11 - 2016-05-31 18:27 - 00030208 _____ () C:\Program Files (x86)\Ear Trumpet\EarTrumpet.Interop.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 01016832 _____ () E:\Programme\Origin\platforms\qwindows.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00028160 _____ () E:\Programme\Origin\imageformats\qgif.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00029696 _____ () E:\Programme\Origin\imageformats\qico.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00256000 _____ () E:\Programme\Origin\imageformats\qjpeg.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00266240 _____ () E:\Programme\Origin\imageformats\qmng.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00023552 _____ () E:\Programme\Origin\imageformats\qtga.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00346112 _____ () E:\Programme\Origin\imageformats\qtiff.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00023552 _____ () E:\Programme\Origin\imageformats\qwbmp.dll
2016-06-15 15:08 - 2016-06-15 15:08 - 00243200 _____ () E:\Programme\Origin\mediaservice\wmfengine.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2016-07-23 12:07 - 00000849 ____A C:\Windows\system32\Drivers\etc\hosts
192.168.178.23 leitstelle
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-669619637-715361226-809095261-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\fabia\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\...\StartupApproved\StartupFolder: => "ScpToolkit Tray Notifications.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\StartupApproved\Run: => "DAEMON Tools Ultra Agent"
HKU\S-1-5-21-669619637-715361226-809095261-1001\...\StartupApproved\Run: => "OKAYFREEDOM_Agent"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{44B638CE-FDBE-4365-BA89-193BBF65EBED}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0CA16C99-2FD2-4C10-BC56-661A65BE21D3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{794CCA68-097E-4D0B-A3E4-A4A7DC79A24B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F8AC2336-7066-4916-A4B5-D4BFEC69C79B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{27637EB5-4482-4241-A652-0458BAC8E609}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{18870C33-3B18-4CED-ABE4-9B6F73331A04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{CEC1F520-D522-4620-A8D3-17BF409CF1D7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F72FBE12-6CA3-4B06-BA4A-978475EF5B90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{787A97CA-AD4E-4DD4-8FDB-078A9229CAE4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9B6250AF-F863-4304-836F-0750F63BDB4F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{05A4B841-6CBB-4211-A037-EFC7EE5ABA72}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7F849045-8AC8-4021-97B7-B4E78DA256A1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{354D8B40-EC9E-474E-8547-0DF41E192F38}E:\programme\password safe and repository\psr.exe] => (Allow) E:\programme\password safe and repository\psr.exe
FirewallRules: [UDP Query User{F899BF6B-1FAE-45E9-AA89-8289EACA06D9}E:\programme\password safe and repository\psr.exe] => (Allow) E:\programme\password safe and repository\psr.exe
FirewallRules: [{B5937A3B-0E57-4546-B21F-D0397D3EC079}] => (Allow) E:\Programme\Steam\Steam.exe
FirewallRules: [{6C89C36A-DF5B-4CBF-947B-79E129959F8B}] => (Allow) E:\Programme\Steam\Steam.exe
FirewallRules: [{F67A9CB0-4FFA-4B75-ACD5-360FA9E3BE8A}] => (Allow) E:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{26FBC187-C297-4802-95BB-776D8CCA5922}] => (Allow) E:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{DA2FA73B-1C3E-4717-949D-35A0846819CE}] => (Allow) E:\Programme\Office\Office15\lync.exe
FirewallRules: [{AD1DAA2A-CF47-4440-94DB-58F672F4E799}] => (Allow) E:\Programme\Office\Office15\lync.exe
FirewallRules: [{4CC2541B-DB31-491F-A5FB-D79BB669D1C7}] => (Allow) E:\Programme\Office\Office15\UcMapi.exe
FirewallRules: [{D841E94E-A14E-4DA0-9410-24919ED5D1EF}] => (Allow) E:\Programme\Office\Office15\UcMapi.exe
FirewallRules: [{0E229BC6-AF82-4F95-883F-1E826CBAD43B}] => (Allow) E:\Programme\Office\Office15\outlook.exe
FirewallRules: [{492E3D1F-6B18-4F8C-846B-092A96E299E0}] => (Allow) E:\Programme\VMWare Workstation\vmware-authd.exe
FirewallRules: [{0E9DA8B3-947C-447D-9161-08E4C2376C8A}] => (Allow) E:\Programme\VMWare Workstation\vmware-authd.exe
FirewallRules: [{55C0D8BA-5F7D-407D-90A5-7DD32425CEB3}] => (Allow) E:\Programme\VMWare Workstation\vmware-hostd.exe
FirewallRules: [{09D66EC4-9F89-4AF5-8240-AC0C15DEF5E7}] => (Allow) E:\Programme\VMWare Workstation\vmware-hostd.exe
FirewallRules: [{C7CCE666-BC9D-47CD-9BB2-3E1707A178B4}] => (Allow) E:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{AD24786B-4312-4045-A474-3E20D66F5698}] => (Allow) E:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{771844DE-E227-42B9-8D83-07BDF303A1F4}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{C0A4162D-A506-4A13-AAFB-3E3106895CA0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{A8E7825C-98E1-49E3-BD7B-FA7AA6BECF2F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{86491441-F960-4FCD-9357-53CED7BCE063}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{369C37BF-BCA2-4231-8ABD-6E50D55FDD08}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{1741AEF2-2571-4D04-9747-DB1E263C7DA3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{3101758C-D3C8-4F75-B452-047F070002E4}] => (Allow) E:\Programme\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8ADC4D7B-F16B-4D7B-8AEA-070401B9275D}] => (Allow) E:\Programme\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D849FE6E-08E3-4CB5-8415-E9149B9B3632}] => (Allow) E:\Programme\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{05692DC8-A9BB-4429-9CA6-3D59906773BE}] => (Allow) E:\Programme\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{709C27B6-B402-4812-A0AB-E9AB63C5BD23}] => (Allow) E:\Programme\Steam\steamapps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{89310806-C64C-4680-A995-786D662E9094}] => (Allow) E:\Programme\Steam\steamapps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{82808893-C591-4F17-829A-C38F062109B8}] => (Allow) E:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{AE34331F-B677-4CBB-BB74-87BAB39464A8}] => (Allow) E:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{690A8AB6-0271-4860-B204-ED20AADA0A01}] => (Allow) E:\Programme\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe
FirewallRules: [{C15B0BE9-E4AF-4177-9CD1-1DCCADB0CE33}] => (Allow) E:\Programme\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe
FirewallRules: [{EC0509DB-9873-48E5-A099-E55EE276E436}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{00F1D314-89DB-4847-8E5F-23579C48A75B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9F55C512-B552-4864-8C38-A3D8C6EA52A0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{09B36B74-F5F2-4A35-9672-E037737CEC07}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4FD6E275-8580-46AC-B842-8B65FE80EAA0}] => (Allow) E:\Programme\Steam\steamapps\common\Anno 1404\Anno4.exe
FirewallRules: [{8242D512-AF2B-4980-9B87-B3CC7B472E78}] => (Allow) E:\Programme\Steam\steamapps\common\Anno 1404\Anno4.exe
FirewallRules: [{B30DC511-381B-4814-87F8-D1F2DADA2F6A}] => (Allow) E:\Programme\Steam\steamapps\common\Anno 1404\Addon.exe
FirewallRules: [{DFBD41BD-5622-466A-8B81-5C7FED8F3E69}] => (Allow) E:\Programme\Steam\steamapps\common\Anno 1404\Addon.exe
FirewallRules: [{6EF539FE-20B0-48E8-9160-09FF5337BED9}] => (Allow) E:\Programme\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{64FE1F5B-6787-4209-9565-7CBAE7137CA4}] => (Allow) E:\Programme\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{228082E9-53C9-43BD-BCF6-6637ABCE4A36}] => (Allow) E:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{DDE27BDC-9858-4273-8D54-8EEB25F955AF}] => (Allow) E:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{69CDB001-1F4E-4B7C-85C2-70061744BCD6}] => (Allow) E:\Programme\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{3C136389-B6BB-4CE9-8ECF-739AE1601AA9}] => (Allow) E:\Programme\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{766091B8-F699-4F70-8865-A5DD5BE9293F}] => (Allow) E:\Programme\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{147F9E89-78AA-4C7B-81B1-10109339456A}] => (Allow) E:\Programme\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{6F6375D6-5604-4E8A-9646-DFC924209D38}] => (Allow) E:\Programme\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{98A9FEA0-F180-4F4B-8BE9-5EB7B4A85DD3}] => (Allow) E:\Programme\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{AB1C71F3-E804-422C-BB8F-B7E0B285FA72}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
24-07-2016 11:25:33 Installed IP Camera Adapter
08-08-2016 07:23:57 Geplanter Prüfpunkt
13-08-2016 11:48:29 Windows Update
13-08-2016 22:37:03 Driver Booster : Java Runtime Environment 64 bit
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (08/14/2016 04:15:35 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (08/14/2016 04:15:30 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (08/14/2016 12:27:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MsiExec.exe, Version: 5.0.10586.0, Zeitstempel: 0x5632d7d4
Name des fehlerhaften Moduls: MSIF498.tmp, Version: 1.0.0.1, Zeitstempel: 0x573c3603
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000dd3c
ID des fehlerhaften Prozesses: 0x8a4
Startzeit der fehlerhaften Anwendung: 0xMsiExec.exe0
Pfad der fehlerhaften Anwendung: MsiExec.exe1
Pfad des fehlerhaften Moduls: MsiExec.exe2
Berichtskennung: MsiExec.exe3
Vollständiger Name des fehlerhaften Pakets: MsiExec.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MsiExec.exe5
Error: (08/14/2016 12:27:01 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (08/14/2016 12:26:43 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: NT-AUTORITÄT)
Description: Die Anwendung oder der Dienst "AdaptiveSleepService" konnte nicht neu gestartet werden.
Error: (08/14/2016 12:26:42 PM) (Source: Adaptive Sleep Service) (EventID: 0) (User: )
Description: Failed to stop service! Error code = 1062
Error: (08/14/2016 12:26:31 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (08/14/2016 11:58:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GTA5.exe, Version: 1.0.791.2, Zeitstempel: 0x577bed49
Name des fehlerhaften Moduls: GTA5.exe, Version: 1.0.791.2, Zeitstempel: 0x577bed49
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000009cfb94
ID des fehlerhaften Prozesses: 0x928
Startzeit der fehlerhaften Anwendung: 0xGTA5.exe0
Pfad der fehlerhaften Anwendung: GTA5.exe1
Pfad des fehlerhaften Moduls: GTA5.exe2
Berichtskennung: GTA5.exe3
Vollständiger Name des fehlerhaften Pakets: GTA5.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: GTA5.exe5
Error: (08/14/2016 10:14:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: fifa16.exe, Version: 1.0.0.0, Zeitstempel: 0x577de45c
Name des fehlerhaften Moduls: fifa16.exe, Version: 1.0.0.0, Zeitstempel: 0x577de45c
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000003a345c5
ID des fehlerhaften Prozesses: 0x18fc
Startzeit der fehlerhaften Anwendung: 0xfifa16.exe0
Pfad der fehlerhaften Anwendung: fifa16.exe1
Pfad des fehlerhaften Moduls: fifa16.exe2
Berichtskennung: fifa16.exe3
Vollständiger Name des fehlerhaften Pakets: fifa16.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: fifa16.exe5
Error: (08/14/2016 09:17:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: fifa16.exe, Version: 1.0.0.0, Zeitstempel: 0x577de45c
Name des fehlerhaften Moduls: fifa16.exe, Version: 1.0.0.0, Zeitstempel: 0x577de45c
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000003a345c5
ID des fehlerhaften Prozesses: 0x1230
Startzeit der fehlerhaften Anwendung: 0xfifa16.exe0
Pfad der fehlerhaften Anwendung: fifa16.exe1
Pfad des fehlerhaften Moduls: fifa16.exe2
Berichtskennung: fifa16.exe3
Vollständiger Name des fehlerhaften Pakets: fifa16.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: fifa16.exe5
Systemfehler:
=============
Error: (08/14/2016 04:20:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 14.08.2016 um 16:19:41 unerwartet heruntergefahren.
Error: (08/14/2016 12:28:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "VMware Workstation Server" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2016 12:26:57 PM) (Source: DCOM) (EventID: 10010) (User: DEV)
Description: NLInternal.SharedRecoActivation
Error: (08/14/2016 12:26:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_2b90a" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2016 12:26:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _2b90a" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2016 12:26:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_2b90a" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2016 12:26:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_2b90a" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2016 12:26:56 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (08/14/2016 08:10:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "VMware Workstation Server" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/14/2016 08:10:58 AM) (Source: DCOM) (EventID: 10010) (User: DEV)
Description: NLInternal.SharedRecoActivation
CodeIntegrity:
===================================
Date: 2016-08-14 12:30:01.057
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-08-14 08:11:00.266
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-25 09:55:36.701
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltDll64.dll that did not meet the Store signing level requirements.
Date: 2016-07-16 18:42:05.192
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-14 09:13:16.592
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-13 20:39:46.579
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-03 12:57:57.973
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-26 00:45:05.364
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-23 18:01:27.910
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-22 13:42:22.967
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 16303.11 MB
Verfügbarer physikalischer RAM: 12882.41 MB
Summe virtueller Speicher: 18735.11 MB
Verfügbarer virtueller Speicher: 15105.09 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.4 GB) (Free:122.21 GB) NTFS
Drive d: (Volume) (Fixed) (Total:74.53 GB) (Free:73.69 GB) NTFS
Drive e: (1,5TB) (Fixed) (Total:1396.82 GB) (Free:844.27 GB) NTFS
Drive i: (AVK20160814) (Removable) (Total:0.94 GB) (Free:0.64 GB) FAT
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 1397.3 GB) (Disk ID: 000CDCF2)
Partition: GPT.
========================================================
Disk: 1 (Size: 74.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 491C12A7)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.4 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (MBR Code: Windows XP) (Size: 960.5 MB) (Disk ID: 7D13A94A)
Partition 1: (Active) - (Size=960 MB) - (Type=06)
==================== Ende von Addition.txt ============================
|
Hinweis: