Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Routerproblem oder Virus auf dem PC? (https://www.trojaner-board.de/181973-routerproblem-virus-pc.html)

TheUnknown98 24.09.2016 20:19
Routerproblem oder Virus auf dem PC?
 
Hallo Leute :) ,

ich habe ein Problem mit meinem PC, immer wenn ich einem Onlinespiel bin geht alle ca 7-10 Pakete mein Ping von stabilen 30 auf 100-400 für ein Paket http://www.directupload.net/file/d/4...usfo6k_png.htm, außerhalb beim anpingen von Google bleibt alles normal. http://www.directupload.net/file/d/4...rvqlyo_png.htm

Das alleine hat mich nicht dazu bewogen hier einen Post zu verfassen, aber beim Analysieren der Verbindung mit Netalyzer (auf dem Handy) kam folgendes heraus.hxxp://n1.netalyzr.icsi.berkeley.edu/summary/id=369839a0-17833-9e070bf4-50e6-4db4-853b

Als ich den Test am PC durchführen wollte musste ich Java updaten. Allerdings erschien nach dem klicken auf Update folgendes:http://www.directupload.net/file/d/4...n44znk_png.htm

Nach einem Speedtest konnte ich ein Problem mit der Leistung meines Internets ausschließen: http://www.directupload.net/file/d/4...9ptjid_png.htm

Daraufhin habe ich ADW Cleaner drüber laufen lassen, da ich schon mehrmals beim aufrufen von Chrome auf die Seite: www1.online/?w=RD1213 weitergeleitet wurde die mir aber nichts anzeigt. Daraufhin habe ich bei Chrome in den Eigenschaften unter Verknüpfung-> Ausführen in: den oben angegebenen www1 link entfernt.

Aktuell sieht Chrome trotz Neuinstallation beim starten so aus: http://www.directupload.net/file/d/4...o76ju7_png.htm

Hier der File vom ADW cleaner mit 17 Ergebnissen:(Kopieren-einfügen geht plötzlich nicht [sowohl mit Maus als auch mit Tastatur], File wird nach PC neustart nachgereicht)
Code:
# AdwCleaner v6.020 - Logfile created 24/09/2016 at 20:42:24
# Updated on 14/09/2016 by ToolsLib
# Database : 2016-09-24.1 [Server]
# Operating System : Windows 10 Home  (X64)
# Username : Robert - ROBERT-PC
# Running from : C:\Users\Robert\Downloads\AdwCleaner_6.020.exe
# Mode: Scan
# Support : https://toolslib.net/forum



***** [ Services ] *****

No malicious services found.


***** [ Folders ] *****

No malicious folders found.


***** [ Files ] *****

File Found:  C:\END


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

Shortcut infected:  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk ( www1.online/?w=RD1213 )


***** [ Scheduled Tasks ] *****

No malicious task found.


***** [ Registry ] *****

Data Found:  HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www1.online/?w=RD1213
Data Found:  HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www1.online/?w=RD1213
Data Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www1.online/?w=RD1213
Key Found:  HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B372AD1F-2646-4467-BE92-11E51C6D2439}
Data Found:  HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Key Found:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B372AD1F-2646-4467-BE92-11E51C6D2439}
Data Found:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B372AD1F-2646-4467-BE92-11E51C6D2439}
Data Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Key Found:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B372AD1F-2646-4467-BE92-11E51C6D2439}
Data Found:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] -
Key Found:  HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Key Found:  HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Key Found:  [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1491 Bytes] - [08/05/2016 23:45:59]
C:\AdwCleaner\AdwCleaner[C3].txt - [1506 Bytes] - [13/09/2015 12:37:23]
C:\AdwCleaner\AdwCleaner[C4].txt - [725 Bytes] - [13/09/2015 14:03:38]
C:\AdwCleaner\AdwCleaner[R1].txt - [922 Bytes] - [28/02/2015 22:08:53]
C:\AdwCleaner\AdwCleaner[S1].txt - [2370 Bytes] - [28/02/2015 22:11:15]
C:\AdwCleaner\AdwCleaner[S2].txt - [1411 Bytes] - [08/05/2016 23:57:12]
C:\AdwCleaner\AdwCleaner[S3].txt - [4632 Bytes] - [13/09/2015 12:35:03]
C:\AdwCleaner\AdwCleaner[S4].txt - [654 Bytes] - [13/09/2015 13:16:04]
C:\AdwCleaner\AdwCleaner[S5].txt - [655 Bytes] - [13/09/2015 14:02:53]
C:\AdwCleaner\AdwCleaner[S6].txt - [3259 Bytes] - [24/09/2016 20:42:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [3332 Bytes] ##########
Kaspersky blieb erfolglos, Windowsdefender und Malwarebytes auch.

In der Fritzbox lassen sich Fehlermeldungen finden dass Zugriffe auf IP Adressen gesperrt wurden. Es sind verschiedene Server, einer Google, einer Steam und einer gehört einer Schweizer Bank mit der wir nichts zu tun haben. Diese geblockten Verbindungsversuche treten immer dann auf wenn ich mit dem PC im Internet bin, unregelmäßig.

Bei Bedarf reiche ich Bilder oder einen Log der Box nach, ich hoffe ihr könnt mir helfen.

Freundliche Grüße

M-K-D-B 25.09.2016 11:58
:hallo:


Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort als Administrator zu starten!
  • Einige Programme, die wir hier verwenden, können unter Umständen von deinem Antiviren- oder Anti-Malwareprogramm fälschlicherweise als Bedrohung eingestuft werden. Die Sicherheitsprogramme können aufgrund eines bestimmten Programmverhaltens nicht zwischen "gut" oder "böse" unterscheiden und schlagen Alarm. Dabei handelt es sich um Fehlalarme, welche du getrost ignorieren kannst. Gegebenenfalls musst du deine Sicherheitssoftware vor der Ausführung eines Programms deaktivieren, damit unsere Bereinigungsvorgänge nicht beeinträchtigt werden.



Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

Danke für deine Mitarbeit!




Zur ersten Analyse bitte FRST und TDSS-Killer ausführen:


Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)






Schritt 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.







Bitte poste mit deiner nächsten Antwort
  • die Logdatei von TDSS-Killer,
  • die beiden neuen Logdateien von FRST.

TheUnknown98 25.09.2016 12:39
Hi Matthias,
danke für das Annehmen des Problemes.

Vorneweg: Gestern habe ich die vom ADW cleaner angeschlagenen sachen noch gelöscht, was aber keine Hilfe brachte. Im Ordner D befindet sich auch eine END datei, diese wurde 2 minuten nach der Installation eines bekannten Spieles namens Planetside 2 erstellt. Das Spiel wurde von der Hauptseite heruntergeladen. Außerdem ist dannach in jedem Fenster was grade in Verwendung war alle 30 sekunden die Seite (Explorer, Editor, Website) ganz nach unten gescrollt, auch ohne angesteckter Maus. Eine Suche vom im Abgesicherten Modus installierten und ausgeführten Spybot S&D (auch nach rootkits) blieb ohne nennenswerte Funde.


Addition.txt

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-09-2016 02
durchgeführt von Robert (25-09-2016 13:23:15)
Gestartet von C:\Users\Robert\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-06 13:54:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-602619869-3711632484-3636400857-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-602619869-3711632484-3636400857-503 - Limited - Disabled)
Gast (S-1-5-21-602619869-3711632484-3636400857-501 - Limited - Disabled)
Robert (S-1-5-21-602619869-3711632484-3636400857-1000 - Administrator - Enabled) => C:\Users\Robert

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{b7d2ce14-2f17-410d-bea7-9126b9d4bb31}) (Version: 2.0.2067.0 - Futuremark)
3DMark (Version: 2.0.2067.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
ACP Application (Version: 2016.0321.0955.20 - Advanced Micro Devices, Inc.) Hidden
ACP Application (Version: 2016.0811.0433.30 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
APP Shop v1.0.24 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.24 - ASRock Inc.)
Assassin's Creed IV Black Flag (HKLM\...\Steam App 242050) (Version:  - Ubisoft Montreal)
Broforce (HKLM\...\Steam App 274190) (Version:  - Free Lives)
Catalyst Control Center Next Localization BR (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0811.443.6667 - Advanced Micro Devices, Inc.) Hidden
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Drome Racers (HKLM-x32\...\{EC1DCD6C-3AE0-42CE-8EAA-6886CC4400DC}) (Version:  - )
FIFA 17 DEMO (HKLM-x32\...\{39C00B2C-EA3C-4A6B-AECF-DADA0F09C2AE}) (Version: 1.0.45.26330 - Electronic Arts)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Futuremark SystemInfo (HKLM-x32\...\{5052D282-C9AE-48CC-A9F5-17058BEEAA50}) (Version: 4.45.590.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
Killer Bandwidth Control Filter Driver (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{DB8A465E-67BE-4450-9C9A-FECEA6222B95}) (Version: 1.1.56.1651 - Rivet Networks)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
League-Bildschirmschoner (HKLM-x32\...\LolScreenSaver) (Version: W0.1.19-0.11.13-beta - Riot Games)
Lethal League (HKLM\...\Steam App 261180) (Version:  - Team Reptile)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.6.0.0 - Lightworks)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 47.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 de)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1 - Mozilla)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.12.2807 - Electronic Arts, Inc.)
PlanetSide 2 (HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
PlanetSide 2 (HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\DGC-PlanetSide 2) (Version: 1.0.3.192 - Daybreak Game Company)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.11.2-r113542-release - Plays.tv, LLC)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.6-r115593-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
S.T.R.I.K.E.3 (HKLM\...\{FE7BF330-49DA-4F3C-904A-1729C784B1EF}) (Version: 7.0.46.0 - Mad Catz Inc)
Skype™ 7.23 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.23.105 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.45.2 (HKLM\...\{4646A4CF-BEA5-475D-96D7-70E19E481603}) (Version: 7.0.45.2 - Mad Catz)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Starbound (HKLM\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.8.5 (HKLM\...\SteelSeries Engine 3) (Version: 3.8.5 - SteelSeries ApS)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version:  - )
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version:  - CD PROJEKT RED)
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.0 (HKLM\...\VulkanRT1.0.11.0) (Version: 1.0.11.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-2) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (Version: 1.0.3.1 - LunarG, Inc.) Hidden
Watch_Dogs (HKLM\...\Steam App 243470) (Version:  - Ubisoft)
Websuche (HKLM-x32\...\Websuche) (Version:  - Websuche)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WWE 2K16 (HKLM\...\Steam App 385730) (Version:  - Visual Concepts)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09C2CD33-AAB5-4BDA-8E94-479C1CD5AF3F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0C8D0A3C-E082-4701-9718-FE686F89EB08} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {11E753AD-37F8-43F6-BE36-8120145FE4DF} - System32\Tasks\{A50ACD54-9D1A-4B3C-8A83-6C52B070901A} => Chrome.exe hxxp://ui.skype.com/ui/0/7.23.0.105/de/abandoninstall?page=tsBing
Task: {17632F14-10DB-4C58-A453-C658B92B81E8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {17F791BD-5AD3-4A6F-A317-CA162BA67A09} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {31E1B680-5A2D-4971-BE3F-ACDE32A4CAC1} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3B44299D-72A6-428F-A63A-94C33ED05730} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {3DF1FB73-BA42-4E61-AF2F-1FFBBBED4B9D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {43BB892E-2CE6-40F9-BD4B-BA410F6EBC5E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {44352B7D-C8BF-4A10-A67E-E8669D7D7A82} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {46E2953C-D53A-4DF0-8D00-50D10BFA94CD} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {480DF89F-58D4-480A-96A6-B4BA11E2B03B} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {8397C076-4381-4706-A2FB-A3638CC02B1F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {8556FCB6-C5DB-4F95-8B7D-F5FD56ADE1DD} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {9CC1CB00-A807-4670-9041-667F61AED230} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A6DB36C8-8C23-4A57-9F48-A64CE05C24FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-14] (Google Inc.)
Task: {ACBCB651-1993-4F19-AA88-EC26B036FA3B} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {B5E8B632-80CD-45E1-BD4B-0D7C0AE5B619} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {C265CAEC-6B08-450B-974C-BD36C41AF6BB} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-08-11] (Advanced Micro Devices, Inc.)
Task: {C7A81D48-F59F-4B51-9144-18D38CB0370E} - System32\Tasks\AsrAPPShop => D:\Programme\ASRock\APP Shop\AsrAPPShop.exe [2016-02-05] ()
Task: {C86906AE-C98A-45FF-8EEB-2517E858FE57} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {C9BA6FDA-F69A-42F8-8517-16FE1EAAB6DA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {C9BBCD29-F8C4-4520-B580-FE5150B4F4B2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {CEE30A00-1612-4D03-ADBA-D4BA3A2ABAF2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {D0033271-1498-4EB5-A7B7-F66AA429450E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {D28FC26A-F488-49EA-B989-36BDE26433D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-14] (Google Inc.)
Task: {D6F21276-B55B-4696-BD14-4CC871B691A6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E51387D7-EBC4-44F7-B031-6CA92C9D7660} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F49EDD12-3400-4B4D-A97C-43D8DCCC2DE8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job =>
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job =>
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job =>

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-03-30 20:25 - 2016-03-30 20:25 - 00707072 _____ () C:\Riot Games\LolScreenSaver\service\service.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-14 21:08 - 2016-02-05 16:38 - 06134024 _____ () D:\Programme\ASRock\APP Shop\AsrAPPShop.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 01864384 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2014-05-01 16:13 - 2016-07-21 12:28 - 00592384 _____ () C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll
2016-05-27 15:50 - 2016-05-27 15:50 - 00402520 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-14 20:43 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-08-31 17:04 - 2016-08-31 17:05 - 00071168 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-08-31 17:04 - 2016-08-31 17:04 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-08-31 17:04 - 2016-08-31 17:05 - 35288064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-10-13 12:01 - 2015-10-13 12:01 - 12451840 _____ () C:\Program Files\Mad Catz\S.T.R.I.K.E.3\Pr0fileEditor_Forms.dll
2015-10-13 12:02 - 2015-10-13 12:02 - 00315392 _____ () C:\Program Files\Mad Catz\S.T.R.I.K.E.3\de\Pr0fileEditor_Forms.resources.dll
2015-07-08 23:18 - 2015-07-08 23:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd
2015-12-07 22:57 - 2015-12-07 22:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd
2016-09-24 23:16 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-09-24 23:16 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-09-24 23:16 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-09-24 23:16 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2016-09-24 23:16 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2016-09-16 13:20 - 2016-09-16 13:19 - 02493440 _____ () D:\Programme\Origin\libGLESv2.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 01383616 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 00118976 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-07-21 12:28 - 2016-07-21 12:28 - 00482304 _____ () C:\Users\Robert\AppData\Local\MEGAsync\libsodium.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\winsound.pyd
2015-10-21 22:29 - 2015-10-21 22:29 - 00113171 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlc.dll
2015-10-21 22:29 - 2015-10-21 22:29 - 02396691 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlccore.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PIL._imaging.pyd
2015-06-27 01:09 - 2015-06-27 01:09 - 00271872 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\amd_ags.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00024064 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32pipe.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\gobject._gobject.pyd
2016-04-19 19:08 - 2016-04-19 19:08 - 02717595 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl.dll
2016-09-17 11:34 - 2016-09-14 02:38 - 01806152 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll
2016-09-17 11:34 - 2016-09-14 02:38 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.42.129
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{BCBB0E84-34A4-4AF6-950B-86D64A735F82}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3ACE8694-A204-4952-866A-6A9B4C2141EE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0D634C0C-8EA0-430F-B187-DC82B6BF3B4B}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{9E304C16-2036-44DD-8164-CE32FB27BFEA}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{BDA475DA-FF5F-4B6C-A2AE-96FBE5616517}] => (Allow) D:\Programme\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{1A3C05C3-194C-49A8-A712-9316AE8F73EB}] => (Allow) D:\Programme\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E34FD60B-E34F-4B5F-831E-233F4326AB2C}] => (Allow) D:\Programme\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{930DDF24-B0A4-4185-B772-63057B0F2831}] => (Allow) D:\Programme\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{52953158-5E69-4DCC-98C4-1A517F9B8A2F}] => (Allow) D:\Programme\Steam\steamapps\common\WWE2K16\WWE2K16.exe
FirewallRules: [{EC2DE4CB-7C42-490D-BDCB-FCD48C2B878C}] => (Allow) D:\Programme\Steam\steamapps\common\WWE2K16\WWE2K16.exe
FirewallRules: [UDP Query User{F03AF432-EAD4-4418-8317-5A604F052AC1}C:\program files (x86)\dayz sa\dta\client.bin] => (Allow) C:\program files (x86)\dayz sa\dta\client.bin
FirewallRules: [TCP Query User{220124B9-2538-4CA3-BE4C-89BA60D20A5F}C:\program files (x86)\dayz sa\dta\client.bin] => (Allow) C:\program files (x86)\dayz sa\dta\client.bin
FirewallRules: [{FC748102-5582-4792-A5CB-1DFDF4562BA1}] => (Allow) C:\Program Files (x86)\DayZ SA\DayZ_Launcher.bat
FirewallRules: [{AFABE39E-EBE7-400D-A35A-911F2452330E}] => (Allow) C:\Program Files (x86)\DayZ SA\DayZ_Launcher.bat
FirewallRules: [{EEE0EB21-199E-4385-BC8F-AEEED1456839}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{66BFD2CC-9CA1-48CA-B2A5-1F6C16550CD0}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{693B4683-C7D3-41A3-B823-70408799721F}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{25F6BAB1-0DE5-41EE-8E0C-6F2F43951986}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [UDP Query User{9D4EADD7-33E0-4E2E-A549-C87CA5826A69}D:\spiele_original\gtav\gta5.exe] => (Allow) D:\spiele_original\gtav\gta5.exe
FirewallRules: [TCP Query User{C2DE8548-E29F-4FA6-805F-B1D9D4B6E46B}D:\spiele_original\gtav\gta5.exe] => (Allow) D:\spiele_original\gtav\gta5.exe
FirewallRules: [{941A5AEC-13D8-4C55-BBFF-75CBE6BE97D7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{7C37E6F1-7643-4895-BC83-4FB133085E3D}D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{67FF877D-4C69-4467-A6FD-4EBF0A9B41B2}D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{447A66D0-A02B-4FF8-ACDC-8EB1E50F0FB6}] => (Allow) LPort=1900
FirewallRules: [{5863DFC0-0D4C-4641-8251-73A39370CC5B}] => (Allow) LPort=2869
FirewallRules: [{1CAE5C9C-90A1-4C25-A120-41042285A303}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{07D16F92-CF93-4231-B0C3-673E4F1A16AB}] => (Allow) D:\Programme\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{7DB31681-D463-4597-B720-8C06923B2F03}] => (Allow) D:\Programme\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{8625D69B-42CD-4582-A94B-38853D68B8A9}] => (Allow) D:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{B18C9E49-8BAE-455F-BE7E-72F40D35EBBF}] => (Allow) D:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{75FA9935-9FBF-49FF-AE27-C24B956FAD80}] => (Allow) D:\Programme\Steam\Steam.exe
FirewallRules: [{B38C0955-3554-4865-9398-E2A918DC61FA}] => (Allow) D:\Programme\Steam\Steam.exe
FirewallRules: [{574A36E4-0CE6-4427-8E00-F12774ACBAA1}] => (Allow) C:\Users\Robert\Desktop\bin\steamwebhelper.exe
FirewallRules: [{A1CEB717-5AFA-4A04-B632-C109C216732D}] => (Allow) C:\Users\Robert\Desktop\bin\steamwebhelper.exe
FirewallRules: [{15AEB7CA-F05C-487A-9318-CD6E1DE6E96A}] => (Allow) C:\Users\Robert\Desktop\Steam.exe
FirewallRules: [{ADAA6F5C-79EB-4430-B65A-A4C351A8BAC0}] => (Allow) C:\Users\Robert\Desktop\Steam.exe
FirewallRules: [{E80FFAF9-0BAD-4B97-9154-3B2FB6011B6E}] => (Allow) D:\Programme\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{65113C81-ACE1-4C21-81C0-3320886D8E70}] => (Allow) D:\Programme\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{EA5472D3-7A13-4B0D-AFE7-FB7F4E4C514A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{8F2558B3-D649-4A70-B4D2-0A1DBB47D426}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6831B005-9630-4D74-AA0F-8D5F42400AEB}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{072EE914-B95F-40D1-8CDF-4FB36152AF20}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{DFC3AC44-82FF-4067-B36B-49FF130D32B6}] => (Allow) D:\Programme\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{C352662F-133D-4738-A363-38B9A276DA96}] => (Allow) D:\Programme\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{7D92CE4A-3220-48E1-B73A-FE9496A67E2D}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{80EEB321-5252-4A78-8929-108F7C462103}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{5D21DAB0-5401-4F94-A595-121D89C58371}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{8C849A75-AC74-456B-B924-4062744E309E}D:\spiele\wop\world of padman 1.5\wop.exe] => (Allow) D:\spiele\wop\world of padman 1.5\wop.exe
FirewallRules: [UDP Query User{713847AD-8732-4F22-9560-07D58AB5114C}D:\spiele\wop\world of padman 1.5\wop.exe] => (Allow) D:\spiele\wop\world of padman 1.5\wop.exe
FirewallRules: [{A3D6B625-F80D-43AD-9433-45601C5A1FC2}] => (Allow) D:\Programme\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{F0E26344-C637-4E05-8998-933047D7252B}] => (Allow) D:\Programme\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{0F1831F9-6426-4D7F-8863-F9F6413FDE34}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{1E426C5B-F72C-473B-9240-8A389D48CB2C}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{B30F7430-C13D-4132-A4EE-1E68F58E85DB}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{EF0224AB-BF87-4F59-ACFB-5A353D1C46DC}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{9E04B87A-FA08-4201-8660-650106665BBC}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{93BD187E-AD6E-4ECC-959D-EF5BA6E94E8D}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{6AC14A4B-27D6-4277-A5BA-782082724345}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{53BC520B-F309-4897-9EFA-9822C7FD40D6}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{76149DD0-1BCD-44A4-8773-7CA79CB453A3}] => (Allow) D:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C56BC153-6F1A-4A5F-A59F-475A3CC56B8E}] => (Allow) D:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Wiederherstellungspunkte =========================

11-09-2016 11:29:38 Geplanter Prüfpunkt
14-09-2016 20:42:01 Windows Update
17-09-2016 15:49:33 Installiert Drome Racers
24-09-2016 22:26:49 zoek.exe restore point

==================== Fehlerhafte Geräte im Gerätemanager =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/25/2016 12:47:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/25/2016 12:47:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/25/2016 12:25:45 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca“ ist folgender Fehler aufgetreten: -2144927149. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/25/2016 12:25:42 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca“ ist folgender Fehler aufgetreten: -2144927149. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/25/2016 12:25:26 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy:App.AppXc99k5qnnsvxj5szemm7fp3g7y08we5vm.mca“ ist folgender Fehler aufgetreten: -2144927149. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/24/2016 11:21:40 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe:App.AppX65n3t4j73ch7cremsjxn7q8bph1ma8jw.mca“ ist folgender Fehler aufgetreten: -2144927149. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/24/2016 10:27:06 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (09/24/2016 09:47:42 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "QueryFullProcessImageNameW" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070006, Das Handle ist ungültig.
.


Vorgang:
  Asynchroner Vorgang wird ausgeführt

Kontext:
  Aktueller Status: DoSnapshotSet

Error: (09/24/2016 09:47:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (09/24/2016 09:20:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


Systemfehler:
=============
Error: (09/25/2016 01:17:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (09/25/2016 12:47:48 AM) (Source: DCOM) (EventID: 10010) (User: ROBERT-PC)
Description: Der Server "App.AppXx4zfy1ffv3wctgdz2vypnybzjkh27jhw.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (09/25/2016 12:47:48 AM) (Source: DCOM) (EventID: 10010) (User: ROBERT-PC)
Description: Der Server "App.AppXx4zfy1ffv3wctgdz2vypnybzjkh27jhw.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (09/25/2016 12:30:06 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (09/25/2016 12:28:46 AM) (Source: DCOM) (EventID: 10005) (User: ROBERT-PC)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/25/2016 12:28:31 AM) (Source: DCOM) (EventID: 10005) (User: ROBERT-PC)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/25/2016 12:28:22 AM) (Source: DCOM) (EventID: 10005) (User: ROBERT-PC)
Description: Fehler "1084" in DCOM, als der Dienst "WSearch" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (09/25/2016 12:27:19 AM) (Source: DCOM) (EventID: 10005) (User: ROBERT-PC)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/25/2016 12:26:57 AM) (Source: DCOM) (EventID: 10005) (User: ROBERT-PC)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (09/25/2016 12:25:49 AM) (Source: DCOM) (EventID: 10005) (User: ROBERT-PC)
Description: Fehler "1084" in DCOM, als der Dienst "ShellHWDetection" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
{DD522ACC-F821-461A-A407-50B198B896DC}


CodeIntegrity:
===================================
  Date: 2016-09-24 21:34:42.546
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 21:27:02.624
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:10:57.068
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:09:54.719
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:09:54.207
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-08-25 17:32:03.834
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.

  Date: 2016-08-25 17:32:03.465
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.

  Date: 2016-08-24 17:33:42.855
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 32%
Installierter physikalischer RAM: 7884.84 MB
Verfügbarer physikalischer RAM: 5356.51 MB
Summe virtueller Speicher: 15820.84 MB
Verfügbarer virtueller Speicher: 12652.29 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:249.12 GB) (Free:183.22 GB) NTFS
Drive d: () (Fixed) (Total:681.51 GB) (Free:215.88 GB) NTFS
Drive e: () (Fixed) (Total:931.41 GB) (Free:344.6 GB) NTFS
Drive g: () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 68D7788C)
Partition 1: (Not Active) - (Size=249.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=681.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 68D778F5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

TheUnknown98 25.09.2016 12:39
FRST.txt
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-09-2016 02
durchgeführt von Robert (Administrator) auf ROBERT-PC (25-09-2016 13:21:40)
Gestartet von C:\Users\Robert\Downloads
Geladene Profile: Robert (Verfügbare Profile: Robert)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
() C:\Riot Games\LolScreenSaver\service\service.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Electronic Arts) D:\Programme\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
() D:\Programme\ASRock\APP Shop\AsrAPPShop.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Mega Limited) C:\Users\Robert\AppData\Local\MEGAsync\MEGAsync.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.82_none_5be7b69702339d1d\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [S.T.R.I.K.E.3] => C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe [40448 2015-10-13] (Mad Catz Inc)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-10-01] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-10-01] (Saitek)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6625672 2016-08-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-06-07] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-08-23] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [2858272 2016-09-20] (Valve Corporation)
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\RunOnce: [Uninstall C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\MountPoints2: {333b1e1d-0261-11e6-b731-806e6f6e6963} - "F:\Start_CD1.exe"
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\SysWOW64\lol.scr [3721216 2016-03-30] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-04-14]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-09-23]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-05-06]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Robert\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7898c733-eea9-4619-b8a2-87d74268126c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8977439c-420c-4690-92a0-1c3fd828c708}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9c99597d-8865-4142-a507-7bff4e5db1e2}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKU\S-1-5-21-602619869-3711632484-3636400857-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-08] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-05] (Oracle Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-12-08] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-05] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-12-08] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-12-08] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\klby26cg.default
FF Homepage: google.de
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Extension: (Firefox Hotfix) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\klby26cg.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-24]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-05-25]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default [2016-09-25]
CHR Extension: (Google Präsentationen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-14]
CHR Extension: (Google Docs) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-14]
CHR Extension: (Google Drive) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-14]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-14]
CHR Extension: (Adblock Plus) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-25]
CHR Extension: (Kaspersky Protection) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2016-05-10]
CHR Extension: (Google Tabellen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-14]
CHR Extension: (Google Docs Offline) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-14]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-14]
CHR Extension: (Google Mail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-14]
CHR Extension: (Chrome Media Router) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-23]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-08-11] (Advanced Micro Devices) [Datei ist nicht signiert]
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-12-08] (Kaspersky Lab ZAO)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [374360 2016-05-27] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-11-24] (Rivet Networks) [Datei ist nicht signiert]
R2 LolScreenSaverService; C:\Riot Games\LolScreenSaver\service\service.exe [707072 2016-03-30] () [Datei ist nicht signiert]
S3 Origin Client Service; D:\Programme\Origin\OriginClientService.exe [2130440 2016-09-16] (Electronic Arts)
R2 Origin Web Helper Service; D:\Programme\Origin\OriginWebHelperService.exe [2195472 2016-09-16] (Electronic Arts)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-06-07] (Plays.tv, LLC)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [314392 2016-08-11] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
R3 AsrAutoChkUpdDrv; C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys [22280 2016-09-25] (ASRock Incorporation)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [118848 2016-07-28] (Advanced Micro Devices)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [146504 2015-11-20] (Rivet Networks, LLC.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 KillerEth; C:\Windows\System32\drivers\e22w10x64.sys [156744 2015-09-24] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [77728 2016-05-10] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2015-12-08] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [238000 2016-05-25] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [933808 2016-05-25] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [49240 2016-08-06] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-12-08] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87984 2016-05-25] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 SaiK1112; C:\Windows\system32\DRIVERS\SaiK1112.sys [180928 2015-10-13] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2015-12-08] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2015-12-08] (Saitek)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [40568 2016-06-15] (SteelSeries ApS)
S3 sshid; C:\Windows\System32\drivers\sshid.sys [52952 2016-08-31] (SteelSeries ApS)
R3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-09-25 13:21 - 2016-09-25 13:22 - 00019600 _____ C:\Users\Robert\Downloads\FRST.txt
2016-09-25 13:21 - 2016-09-25 13:21 - 02402816 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2016-09-25 13:21 - 2016-09-25 13:21 - 00000000 ____D C:\FRST
2016-09-25 13:18 - 2016-09-25 13:18 - 00000000 ___HD C:\OneDriveTemp
2016-09-24 23:18 - 2016-09-24 23:18 - 00000000 ____D C:\Program Files\Common Files\AV
2016-09-24 23:18 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2016-09-24 23:16 - 2016-09-25 00:29 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-09-24 23:16 - 2016-09-24 23:18 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-09-24 23:16 - 2016-09-24 23:16 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-09-24 23:16 - 2016-09-24 23:16 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-09-24 23:16 - 2016-09-24 23:16 - 00000656 _____ C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000628 _____ C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000458 _____ C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-09-24 23:16 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-09-24 23:13 - 2016-09-24 23:13 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-09-24 23:09 - 2016-09-24 23:09 - 00000000 ____D C:\WINDOWS\pss
2016-09-24 23:03 - 2016-09-24 23:03 - 01474568 _____ C:\Users\Robert\Downloads\SpyBot Search Destroy - CHIP-Installer.exe
2016-09-24 22:47 - 2016-09-24 22:47 - 01474568 _____ C:\Users\Robert\Downloads\HijackThis - CHIP-Installer.exe
2016-09-24 22:36 - 2016-09-24 22:36 - 00000000 ____D C:\Users\Robert\AppData\Local\VirtualStore
2016-09-24 22:34 - 2016-09-24 22:34 - 00000000 ____D C:\zoek
2016-09-24 22:25 - 2016-09-24 22:37 - 00003157 _____ C:\runcheck.txt
2016-09-24 22:25 - 2016-09-24 22:35 - 00000000 ____D C:\zoek_backup
2016-09-24 22:25 - 2016-09-24 22:25 - 01309184 _____ C:\Users\Robert\Downloads\zoek.exe
2016-09-24 22:18 - 2016-09-24 22:18 - 03861056 _____ C:\Users\Robert\Downloads\adwcleaner_6.020 (2).exe
2016-09-24 22:18 - 2016-09-24 22:18 - 03861056 _____ C:\Users\Robert\Downloads\adwcleaner_6.020 (1).exe
2016-09-24 20:41 - 2016-09-24 20:41 - 03861056 _____ C:\Users\Robert\Downloads\AdwCleaner_6.020.exe
2016-09-24 20:37 - 2016-09-24 20:38 - 00038434 _____ C:\Users\Robert\Downloads\MTB.txt
2016-09-24 20:37 - 2016-09-24 20:37 - 00892416 _____ (Farbar) C:\Users\Robert\Downloads\MiniToolBox.exe
2016-09-24 20:07 - 2016-09-24 20:07 - 00000209 _____ C:\Users\Robert\Desktop\Counter-Strike Global Offensive.url
2016-09-18 16:52 - 2016-09-18 16:52 - 00000000 ____D C:\Users\Robert\Downloads\10_mp3_files (online-audio-converter.com)
2016-09-18 16:47 - 2016-09-18 16:47 - 73530200 _____ C:\Users\Robert\Downloads\10_mp3_files (online-audio-converter.com).zip
2016-09-17 15:55 - 2016-09-17 15:55 - 00000000 ____D C:\Users\Robert\Documents\LEGO Interactive
2016-09-17 15:53 - 2016-09-17 15:53 - 00000347 _____ C:\Users\Public\Desktop\Drome Racers.lnk
2016-09-17 15:53 - 2016-09-17 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO Interactive
2016-09-17 13:22 - 2016-09-17 13:22 - 00000212 _____ C:\Users\Robert\Desktop\Lethal League.url
2016-09-17 12:42 - 2016-09-17 12:42 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Padman
2016-09-16 17:17 - 2016-09-16 17:26 - 00000000 ____D C:\Users\Robert\Documents\FIFA 17 Demo
2016-09-16 15:56 - 2016-09-16 15:56 - 00000919 _____ C:\Users\Public\Desktop\FIFA 17 DEMO.lnk
2016-09-16 15:56 - 2016-09-16 15:56 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller
2016-09-16 15:56 - 2016-09-16 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17 DEMO
2016-09-16 13:20 - 2016-09-16 13:20 - 00000000 ____D C:\Users\Robert\.QtWebEngineProcess
2016-09-16 13:20 - 2016-09-16 13:20 - 00000000 ____D C:\Users\Robert\.Origin
2016-09-14 20:44 - 2016-09-07 07:49 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-09-14 20:44 - 2016-09-07 07:43 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-09-14 20:44 - 2016-09-07 07:41 - 00303968 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-14 20:44 - 2016-09-07 07:34 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-14 20:44 - 2016-09-07 07:34 - 01280352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-14 20:44 - 2016-09-07 07:33 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-14 20:44 - 2016-09-07 07:24 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-14 20:44 - 2016-09-07 07:18 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-09-14 20:44 - 2016-09-07 07:17 - 00853344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-09-14 20:44 - 2016-09-07 07:04 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-14 20:44 - 2016-09-07 07:01 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-09-14 20:44 - 2016-09-07 06:57 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-09-14 20:44 - 2016-09-07 06:56 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-09-14 20:44 - 2016-09-07 06:53 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-09-14 20:44 - 2016-09-07 06:53 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-09-14 20:44 - 2016-09-07 06:53 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-09-14 20:44 - 2016-09-07 06:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-09-14 20:44 - 2016-09-07 06:52 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-09-14 20:44 - 2016-09-07 06:52 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-09-14 20:44 - 2016-09-07 06:51 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-14 20:44 - 2016-09-07 06:51 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-09-14 20:44 - 2016-09-07 06:50 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-14 20:44 - 2016-09-07 06:50 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-09-14 20:44 - 2016-09-07 06:50 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-09-14 20:44 - 2016-09-07 06:49 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-09-14 20:44 - 2016-09-07 06:49 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-09-14 20:44 - 2016-09-07 06:48 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-14 20:44 - 2016-09-07 06:48 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-09-14 20:44 - 2016-09-07 06:46 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-14 20:44 - 2016-09-07 06:45 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-09-14 20:44 - 2016-09-07 06:45 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-14 20:44 - 2016-09-07 06:44 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-09-14 20:44 - 2016-09-07 06:43 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-09-14 20:44 - 2016-09-07 06:42 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-09-14 20:44 - 2016-09-07 06:39 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-14 20:44 - 2016-09-07 06:39 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-09-14 20:44 - 2016-09-07 06:36 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-09-14 20:44 - 2016-09-07 06:33 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-14 20:44 - 2016-09-07 06:31 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-09-14 20:44 - 2016-09-07 06:11 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-09-14 20:44 - 2016-08-06 06:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-14 20:44 - 2016-08-06 05:50 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-09-14 20:44 - 2016-08-06 05:48 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-14 20:44 - 2016-08-06 05:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-09-14 20:44 - 2016-08-06 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-09-14 20:44 - 2016-08-06 05:47 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-14 20:44 - 2016-08-06 05:43 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-09-14 20:44 - 2016-08-06 05:42 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-09-14 20:44 - 2016-08-06 05:40 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-14 20:44 - 2016-08-06 05:35 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-09-14 20:44 - 2016-08-06 05:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-14 20:44 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-09-14 20:44 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-09-14 20:44 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-14 20:44 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-09-14 20:44 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-09-14 20:44 - 2016-07-22 02:49 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-14 20:43 - 2016-09-07 08:10 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-09-14 20:43 - 2016-09-07 07:55 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-14 20:43 - 2016-09-07 07:54 - 01046976 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-14 20:43 - 2016-09-07 07:54 - 00885824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-14 20:43 - 2016-09-07 07:54 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-14 20:43 - 2016-09-07 07:54 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-14 20:43 - 2016-09-07 07:53 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-14 20:43 - 2016-09-07 07:53 - 02183792 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-14 20:43 - 2016-09-07 07:51 - 02214784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-14 20:43 - 2016-09-07 07:51 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-14 20:43 - 2016-09-07 07:51 - 01163696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-14 20:43 - 2016-09-07 07:50 - 07813472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-14 20:43 - 2016-09-07 07:50 - 00773200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-14 20:43 - 2016-09-07 07:48 - 02256224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-14 20:43 - 2016-09-07 07:48 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-09-14 20:43 - 2016-09-07 07:46 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 05622600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-14 20:43 - 2016-09-07 07:41 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-14 20:43 - 2016-09-07 07:39 - 01217880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-09-14 20:43 - 2016-09-07 07:39 - 00996192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-09-14 20:43 - 2016-09-07 07:37 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-09-14 20:43 - 2016-09-07 07:36 - 00405344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-14 20:43 - 2016-09-07 07:36 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-09-14 20:43 - 2016-09-07 07:34 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-09-14 20:43 - 2016-09-07 07:34 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-14 20:43 - 2016-09-07 07:33 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-14 20:43 - 2016-09-07 07:33 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-14 20:43 - 2016-09-07 07:33 - 00224096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-14 20:43 - 2016-09-07 07:32 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 01099616 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-09-14 20:43 - 2016-09-07 07:32 - 00988000 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-09-14 20:43 - 2016-09-07 07:32 - 00942432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-09-14 20:43 - 2016-09-07 07:32 - 00807776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-09-14 20:43 - 2016-09-07 07:30 - 01707512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-14 20:43 - 2016-09-07 07:30 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-14 20:43 - 2016-09-07 07:30 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 22218808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 08156592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 04130944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01990640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01066104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-09-14 20:43 - 2016-09-07 07:29 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-09-14 20:43 - 2016-09-07 07:27 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:27 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-09-14 20:43 - 2016-09-07 07:25 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-14 20:43 - 2016-09-07 07:24 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-14 20:43 - 2016-09-07 07:20 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-14 20:43 - 2016-09-07 07:18 - 01430208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 05721808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 02251432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-14 20:43 - 2016-09-07 07:17 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-09-14 20:43 - 2016-09-07 07:16 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-09-14 20:43 - 2016-09-07 07:15 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-14 20:43 - 2016-09-07 07:15 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 20965248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 06653592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01123360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00955520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-14 20:43 - 2016-09-07 07:12 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-09-14 20:43 - 2016-09-07 07:09 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-09-14 20:43 - 2016-09-07 07:08 - 07220224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-14 20:43 - 2016-09-07 07:07 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-14 20:43 - 2016-09-07 07:04 - 22566400 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-09-14 20:43 - 2016-09-07 07:04 - 05684736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-14 20:43 - 2016-09-07 07:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-09-14 20:43 - 2016-09-07 07:01 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-09-14 20:43 - 2016-09-07 07:00 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-09-14 20:43 - 2016-09-07 06:56 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-09-14 20:43 - 2016-09-07 06:54 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 01014784 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 17187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-14 20:43 - 2016-09-07 06:51 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-14 20:43 - 2016-09-07 06:51 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-09-14 20:43 - 2016-09-07 06:51 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-09-14 20:43 - 2016-09-07 06:49 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 09128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 03776512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 01905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-14 20:43 - 2016-09-07 06:49 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-14 20:43 - 2016-09-07 06:49 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 13434368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 07623680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 13081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 08122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01780736 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-14 20:43 - 2016-09-07 06:40 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01006080 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 00959488 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 12174336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 04747776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 02264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02630144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-14 20:43 - 2016-09-07 06:38 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-14 20:43 - 2016-09-07 06:38 - 01491968 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 07468032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-14 20:43 - 2016-09-07 06:37 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 03299328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-14 20:43 - 2016-09-07 06:35 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-09-14 20:43 - 2016-09-07 06:34 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-09-14 20:43 - 2016-09-07 06:33 - 02217472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-09-14 20:43 - 2016-09-07 06:32 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-09-14 20:43 - 2016-09-07 06:32 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-14 20:43 - 2016-09-07 06:31 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-09-14 20:43 - 2016-09-07 06:31 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-09-14 20:43 - 2016-08-06 06:26 - 00409944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-09-14 20:43 - 2016-08-06 06:16 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-09-14 20:43 - 2016-08-06 06:16 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-09-14 20:43 - 2016-08-06 06:13 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-14 20:43 - 2016-08-06 05:39 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-09-14 20:43 - 2016-08-06 05:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 20:43 - 2016-08-06 05:38 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-14 20:43 - 2016-08-06 05:37 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 20:43 - 2016-08-06 05:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-09-14 20:43 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-09-14 20:43 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-14 20:43 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-14 20:43 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-09-14 20:43 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-09-14 20:43 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-14 20:43 - 2016-07-22 03:27 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-14 20:43 - 2016-07-22 03:27 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-31 19:48 - 2016-08-27 07:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-31 19:48 - 2016-08-27 06:58 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-08-31 19:48 - 2016-08-27 06:39 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-08-31 19:48 - 2016-08-27 06:38 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-08-31 19:48 - 2016-08-27 06:38 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-08-31 19:48 - 2016-08-27 06:37 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-08-31 19:48 - 2016-08-27 06:25 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-08-31 19:48 - 2016-08-20 08:05 - 01377008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-31 19:48 - 2016-08-20 07:34 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-08-31 19:48 - 2016-08-20 07:22 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-08-31 19:48 - 2016-08-20 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-08-31 19:48 - 2016-08-20 07:21 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-08-31 19:48 - 2016-08-20 07:20 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-08-31 19:48 - 2016-08-20 07:19 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:19 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-08-31 19:48 - 2016-08-20 07:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-08-31 19:48 - 2016-08-20 07:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-08-31 19:48 - 2016-08-20 07:17 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-08-31 19:48 - 2016-08-20 07:17 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-08-31 19:48 - 2016-08-20 07:16 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-08-31 19:48 - 2016-08-20 07:15 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-08-31 19:48 - 2016-08-20 07:14 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-08-31 19:48 - 2016-08-20 07:12 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-08-31 19:48 - 2016-08-20 07:12 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-08-31 19:48 - 2016-08-20 07:11 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-08-31 19:48 - 2016-08-20 07:08 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-08-31 19:48 - 2016-08-20 07:07 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-08-31 19:48 - 2016-08-20 07:07 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-08-31 19:48 - 2016-08-20 07:06 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-08-31 19:48 - 2016-08-20 07:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 03245056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-08-31 19:48 - 2016-08-20 07:03 - 02846208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-08-31 19:48 - 2016-08-20 07:01 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-08-31 19:48 - 2016-08-20 07:00 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-08-31 19:48 - 2016-08-20 06:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-08-31 19:48 - 2016-08-20 06:58 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-08-31 19:48 - 2016-08-20 06:58 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 02711040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 02143232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-08-31 19:48 - 2016-08-20 06:55 - 00726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-31 19:48 - 2016-08-20 06:54 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-08-31 19:48 - 2016-08-20 06:51 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-08-31 19:48 - 2016-08-06 06:18 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-08-31 19:48 - 2016-08-06 06:13 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-08-31 19:48 - 2016-08-06 06:08 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-08-31 19:48 - 2016-08-06 06:03 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-08-31 19:48 - 2016-08-06 05:48 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-08-31 19:48 - 2016-08-06 05:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-08-31 19:48 - 2016-08-06 05:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-31 19:48 - 2016-08-06 05:47 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-08-31 19:48 - 2016-08-06 05:46 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-08-31 19:48 - 2016-08-06 05:46 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-08-31 19:48 - 2016-08-06 05:44 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-08-31 19:48 - 2016-08-06 05:44 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-08-31 19:48 - 2016-08-06 05:43 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-31 19:48 - 2016-08-06 05:43 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-08-31 19:48 - 2016-08-06 05:39 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-08-31 19:48 - 2016-08-06 05:39 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-08-31 19:48 - 2016-08-06 05:36 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 01052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-08-31 19:48 - 2016-08-06 05:29 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-08-31 19:48 - 2016-08-06 05:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-08-31 19:48 - 2016-08-06 05:28 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-08-31 19:48 - 2016-08-06 05:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-08-31 19:48 - 2016-08-06 05:23 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-31 19:48 - 2016-08-06 05:21 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-31 19:47 - 2016-08-27 14:45 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-08-31 19:47 - 2016-08-27 11:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-08-31 19:47 - 2016-08-27 06:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-08-31 19:47 - 2016-08-27 06:43 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-08-31 19:47 - 2016-08-20 08:06 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-31 19:47 - 2016-08-20 08:03 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-08-31 19:47 - 2016-08-20 07:46 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-08-31 19:47 - 2016-08-20 07:21 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-08-31 19:47 - 2016-08-20 07:20 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-08-31 19:47 - 2016-08-20 07:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-31 19:47 - 2016-08-20 07:14 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-08-31 19:47 - 2016-08-20 07:14 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-08-31 19:47 - 2016-08-20 07:13 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-08-31 19:47 - 2016-08-20 07:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-31 19:47 - 2016-08-20 07:11 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-08-31 19:47 - 2016-08-20 07:11 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-08-31 19:47 - 2016-08-20 07:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-31 19:47 - 2016-08-20 07:07 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-08-31 19:47 - 2016-08-20 07:04 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-31 19:47 - 2016-08-19 03:33 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-08-31 19:47 - 2016-08-06 06:33 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-08-31 19:47 - 2016-08-06 06:31 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-31 19:47 - 2016-08-06 06:31 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-08-31 19:47 - 2016-08-06 06:29 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-08-31 19:47 - 2016-08-06 06:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-08-31 19:47 - 2016-08-06 06:26 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-08-31 19:47 - 2016-08-06 06:23 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-31 19:47 - 2016-08-06 06:17 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-08-31 19:47 - 2016-08-06 06:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-31 19:47 - 2016-08-06 06:16 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-31 19:47 - 2016-08-06 06:15 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-08-31 19:47 - 2016-08-06 06:13 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-08-31 19:47 - 2016-08-06 06:09 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-31 19:47 - 2016-08-06 06:04 - 00361096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-08-31 19:47 - 2016-08-06 06:03 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-08-31 19:47 - 2016-08-06 05:48 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-08-31 19:47 - 2016-08-06 05:48 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-08-31 19:47 - 2016-08-06 05:48 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-08-31 19:47 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-08-31 19:47 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-08-31 19:47 - 2016-08-06 05:47 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-08-31 19:47 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-08-31 19:47 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-08-31 19:47 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-08-31 19:47 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-08-31 19:47 - 2016-08-06 05:46 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-08-31 19:47 - 2016-08-06 05:46 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-31 19:47 - 2016-08-06 05:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-08-31 19:47 - 2016-08-06 05:45 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-08-31 19:47 - 2016-08-06 05:45 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-08-31 19:47 - 2016-08-06 05:45 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-08-31 19:47 - 2016-08-06 05:44 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-08-31 19:47 - 2016-08-06 05:43 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-08-31 19:47 - 2016-08-06 05:43 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-08-31 19:47 - 2016-08-06 05:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-08-31 19:47 - 2016-08-06 05:39 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-08-31 19:47 - 2016-08-06 05:33 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-08-31 19:47 - 2016-08-06 05:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-08-31 19:47 - 2016-08-06 05:26 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-31 19:47 - 2016-08-06 05:23 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-08-31 19:47 - 2016-08-05 11:14 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-08-31 19:47 - 2016-08-05 11:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-08-31 19:47 - 2016-08-05 11:05 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-08-31 19:47 - 2016-08-05 10:29 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-08-31 19:47 - 2016-08-05 10:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-08-31 19:47 - 2016-08-05 10:23 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-08-31 19:47 - 2016-08-05 10:22 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-08-31 19:47 - 2016-08-05 10:20 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-08-31 19:47 - 2016-08-05 10:20 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-08-31 19:47 - 2016-08-05 10:18 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-08-31 19:47 - 2016-08-05 10:08 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-08-31 19:45 - 2016-08-06 05:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-08-31 19:45 - 2016-08-06 05:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-31 19:29 - 2016-08-31 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-08-31 18:27 - 2016-08-31 19:18 - 00000000 ____D C:\Users\Robert\Documents\Battlefield 1 Open Beta
2016-08-27 16:19 - 2016-08-27 16:19 - 00000212 _____ C:\Users\Robert\Desktop\Broforce.url
2016-08-27 13:16 - 2016-08-27 13:16 - 00000863 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublime Text 2.lnk
2016-08-27 13:16 - 2016-08-27 13:16 - 00000000 ____D C:\Program Files\Sublime Text 2
2016-08-27 13:15 - 2016-08-27 13:16 - 06515968 _____ ( ) C:\Users\Robert\Downloads\Sublime Text 2.0.2a x64 Setup.exe
2016-08-27 12:16 - 2016-08-27 12:16 - 00003559 _____ C:\Users\Robert\Downloads\neoncube.ini
2016-08-27 12:05 - 2016-08-27 12:09 - 276013056 _____ C:\Users\Robert\Downloads\Pokémon Uranium 1.0.msi

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-09-25 13:21 - 2016-07-17 00:51 - 01374528 _____ C:\WINDOWS\system32\perfh007.dat
2016-09-25 13:21 - 2016-07-17 00:51 - 00340970 _____ C:\WINDOWS\system32\perfc007.dat
2016-09-25 13:21 - 2016-04-14 19:00 - 03100820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-25 13:18 - 2016-08-06 15:48 - 00002992 _____ C:\WINDOWS\System32\Tasks\AsrAPPShop
2016-09-25 13:18 - 2016-04-21 17:23 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Raptr
2016-09-25 13:18 - 2016-04-14 19:04 - 00000000 ___RD C:\Users\Robert\OneDrive
2016-09-25 13:17 - 2016-08-06 15:36 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-25 13:17 - 2016-05-10 16:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-09-25 13:17 - 2016-04-21 20:46 - 00000000 __SHD C:\Users\Robert\IntelGraphicsProfiles
2016-09-25 13:17 - 2016-04-14 21:09 - 00022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys
2016-09-25 00:29 - 2016-08-06 15:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-25 00:28 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-09-25 00:26 - 2015-02-17 03:16 - 00000000 ____D C:\AdwCleaner
2016-09-25 00:24 - 2016-05-06 13:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-24 23:32 - 2016-08-06 15:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-09-24 23:09 - 2016-08-06 15:36 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-09-24 22:19 - 2016-08-06 15:40 - 00000000 ____D C:\Users\Robert
2016-09-24 22:18 - 2016-04-14 19:18 - 00001367 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-24 21:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-24 20:21 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-09-24 20:07 - 2016-04-14 22:11 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-09-24 18:09 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-24 18:09 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-23 14:45 - 2016-06-25 10:19 - 00000000 ____D C:\Users\Robert\AppData\Roaming\steelseries-engine-3-client
2016-09-17 15:49 - 2016-04-14 23:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-17 11:34 - 2016-04-14 19:18 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-16 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-09-16 19:24 - 2016-05-19 16:29 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-09-16 18:43 - 2016-04-14 22:26 - 00000000 ____D C:\ProgramData\Origin
2016-09-16 18:39 - 2016-04-14 23:21 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Origin
2016-09-16 17:19 - 2016-04-14 21:20 - 00000000 ____D C:\Users\Robert\AppData\Local\AMD
2016-09-16 17:17 - 2016-04-14 22:26 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-09-16 13:20 - 2016-04-14 23:21 - 00000000 ____D C:\Users\Robert\AppData\Local\Origin
2016-09-15 20:26 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-09-14 22:41 - 2016-08-06 15:34 - 00231944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-09-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-09-14 20:48 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-14 20:48 - 2016-04-14 20:02 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-14 20:46 - 2016-04-14 20:02 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-07 18:32 - 2016-07-16 13:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-09-07 18:32 - 2016-07-16 13:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-03 16:55 - 2016-06-25 10:18 - 00000000 ____D C:\WINDOWS\Cnxt
2016-09-03 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-08-31 19:39 - 2016-07-16 13:43 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-31 19:38 - 2016-07-16 13:43 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-31 19:38 - 2016-07-16 13:42 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-31 19:38 - 2016-07-16 13:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-31 19:31 - 2016-08-06 15:48 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-08-31 19:27 - 2016-08-06 15:36 - 00000000 ____D C:\Program Files\AMD
2016-08-31 19:25 - 2015-07-09 13:31 - 00000000 ____D C:\AMD
2016-08-31 00:39 - 2016-07-27 23:07 - 01804680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-08-31 00:39 - 2016-07-27 23:07 - 00052952 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys
2016-08-27 19:46 - 2016-04-24 20:25 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-08-27 19:46 - 2016-04-24 20:24 - 00000000 ____D C:\Program Files\Rockstar Games
2016-08-27 18:21 - 2016-05-19 13:11 - 00000000 ____D C:\Users\Robert\Documents\The Witcher 3
2016-08-26 00:02 - 2016-07-17 00:52 - 00000000 ____D C:\WINDOWS\OCR

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-08-06 15:36 - 2016-08-06 15:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Robert\AppData\Local\Temp\7za.exe
C:\Users\Robert\AppData\Local\Temp\DaS_21.exe
C:\Users\Robert\AppData\Local\Temp\hijackthis.exe
C:\Users\Robert\AppData\Local\Temp\NirCmd.exe
C:\Users\Robert\AppData\Local\Temp\PEVZ.EXE
C:\Users\Robert\AppData\Local\Temp\remove.exe
C:\Users\Robert\AppData\Local\Temp\sed.exe
C:\Users\Robert\AppData\Local\Temp\shortcut.exe
C:\Users\Robert\AppData\Local\Temp\swreg.exe
C:\Users\Robert\AppData\Local\Temp\swxcacls.exe
C:\Users\Robert\AppData\Local\Temp\wget.exe
C:\Users\Robert\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-09-21 22:07

==================== Ende von FRST.txt ============================

TheUnknown98 25.09.2016 12:41
TDSSKiller

Code:
13:31:38.0154 0x30f4  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
13:31:41.0879 0x30f4  ============================================================
13:31:41.0879 0x30f4  Current date / time: 2016/09/25 13:31:41.0879
13:31:41.0879 0x30f4  SystemInfo:
13:31:41.0925 0x30f4 
13:31:41.0925 0x30f4  OS Version: 10.0.14393 ServicePack: 0.0
13:31:41.0925 0x30f4  Product type: Workstation
13:31:41.0925 0x30f4  ComputerName: ROBERT-PC
13:31:41.0926 0x30f4  UserName: Robert
13:31:41.0926 0x30f4  Windows directory: C:\WINDOWS
13:31:41.0926 0x30f4  System windows directory: C:\WINDOWS
13:31:41.0926 0x30f4  Running under WOW64
13:31:41.0926 0x30f4  Processor architecture: Intel x64
13:31:41.0926 0x30f4  Number of processors: 8
13:31:41.0926 0x30f4  Page size: 0x1000
13:31:41.0926 0x30f4  Boot type: Normal boot
13:31:41.0926 0x30f4  CodeIntegrityOptions = 0x00000001
13:31:41.0926 0x30f4  ============================================================
13:31:42.0364 0x30f4  KLMD registered as C:\WINDOWS\system32\drivers\28225751.sys
13:31:42.0364 0x30f4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.187, osProperties = 0x19
13:31:42.0580 0x30f4  System UUID: {D08ED60C-316D-8E51-2F18-7B3B42B29918}
13:31:43.0114 0x30f4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:31:43.0130 0x30f4  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:31:43.0130 0x30f4  ============================================================
13:31:43.0130 0x30f4  \Device\Harddisk0\DR0:
13:31:43.0130 0x30f4  MBR partitions:
13:31:43.0130 0x30f4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1F23E000
13:31:43.0130 0x30f4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1F400800, BlocksNum 0x55305800
13:31:43.0130 0x30f4  \Device\Harddisk1\DR1:
13:31:43.0130 0x30f4  MBR partitions:
13:31:43.0130 0x30f4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:31:43.0130 0x30f4  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
13:31:43.0130 0x30f4  ============================================================
13:31:43.0130 0x30f4  C: <-> \Device\Harddisk0\DR0\Partition1
13:31:43.0165 0x30f4  D: <-> \Device\Harddisk0\DR0\Partition2
13:31:43.0167 0x30f4  E: <-> \Device\Harddisk1\DR1\Partition2
13:31:43.0182 0x30f4  G: <-> \Device\Harddisk1\DR1\Partition1
13:31:43.0182 0x30f4  ============================================================
13:31:43.0182 0x30f4  Initialize success
13:31:43.0182 0x30f4  ============================================================
13:32:32.0419 0x2fd0  ============================================================
13:32:32.0419 0x2fd0  Scan started
13:32:32.0419 0x2fd0  Mode: Manual; SigCheck; TDLFS;
13:32:32.0419 0x2fd0  ============================================================
13:32:32.0419 0x2fd0  KSN ping started
13:32:32.0499 0x2fd0  KSN ping finished: true
13:32:35.0202 0x2fd0  ================ Scan system memory ========================
13:32:35.0202 0x2fd0  System memory - ok
13:32:35.0204 0x2fd0  ================ Scan services =============================
13:32:35.0335 0x2fd0  1394ohci - ok
13:32:35.0335 0x2fd0  3ware - ok
13:32:35.0351 0x2fd0  ACPI - ok
13:32:35.0351 0x2fd0  AcpiDev - ok
13:32:35.0367 0x2fd0  acpiex - ok
13:32:35.0367 0x2fd0  acpipagr - ok
13:32:35.0404 0x2fd0  AcpiPmi - ok
13:32:35.0404 0x2fd0  acpitime - ok
13:32:35.0404 0x2fd0  ADP80XX - ok
13:32:35.0420 0x2fd0  AFD - ok
13:32:35.0420 0x2fd0  ahcache - ok
13:32:35.0436 0x2fd0  AJRouter - ok
13:32:35.0451 0x2fd0  ALG - ok
13:32:35.0482 0x2fd0  [ 571C226116E9508398739CB47DA6D6EA, CBAE8DA4C305A643DF269DC9A3C4D9AD0F1837A105702A30C2844D5939417CD9 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
13:32:35.0551 0x2fd0  AMD External Events Utility - ok
13:32:35.0567 0x2fd0  [ 8DE4A1A4CAE62E688D7592936BDA6CD4, 1FD38706613A9B1EEE3B7FF769B2699AFC61C1F886C5CB90D8F7A62E40787E70 ] amdacpksd      C:\WINDOWS\system32\drivers\amdacpksd.sys
13:32:35.0582 0x2fd0  amdacpksd - ok
13:32:35.0651 0x2fd0  [ 0850D67FFD53D228E107E0E56F4851CC, 8A5973B68EDE3A1B723FAC509B02826AD839CB3C496B3FAEC3006EE5B5CEBD20 ] amdacpusrsvc    C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
13:32:35.0682 0x2fd0  amdacpusrsvc - detected UnsignedFile.Multi.Generic ( 1 )
13:32:35.0736 0x2fd0  Detect skipped due to KSN trusted
13:32:35.0736 0x2fd0  amdacpusrsvc - ok
13:32:35.0767 0x2fd0  AmdK8 - ok
13:32:35.0799 0x2fd0  [ B28145E732EDEBBEDABC311DBA56D52A, 43745C17A3AC2A7A6FB0DBF1A2158C6B365198581E8E3B1F7E7E9EE9763A2735 ] amdkmafd        C:\WINDOWS\system32\drivers\amdkmafd.sys
13:32:35.0804 0x2fd0  amdkmafd - ok
13:32:35.0804 0x2fd0  amdkmdag - ok
13:32:35.0836 0x2fd0  [ 9CC52BB8D02B76BB7841FB8FF210DD83, 9F419D7084D60B55FB47E1EF5D31F1D71A4D7A2F81DE8CC4C2C864D171BEA444 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
13:32:35.0867 0x2fd0  amdkmdap - ok
13:32:35.0867 0x2fd0  AmdPPM - ok
13:32:35.0867 0x2fd0  amdsata - ok
13:32:35.0867 0x2fd0  amdsbs - ok
13:32:35.0867 0x2fd0  amdxata - ok
13:32:35.0883 0x2fd0  AppID - ok
13:32:35.0898 0x2fd0  AppIDSvc - ok
13:32:35.0900 0x2fd0  Appinfo - ok
13:32:35.0904 0x2fd0  applockerfltr - ok
13:32:35.0920 0x2fd0  AppReadiness - ok
13:32:35.0936 0x2fd0  AppXSvc - ok
13:32:35.0936 0x2fd0  arcsas - ok
13:32:36.0004 0x2fd0  [ 75D6C3469347DE1CDFA3B1B9F1544208, 2AA1B08F47FBB1E2BD2E4A492F5D616968E703E1359A921F62B38B8E4662F0C4 ] AsrAutoChkUpdDrv C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys
13:32:36.0036 0x2fd0  AsrAutoChkUpdDrv - ok
13:32:36.0036 0x2fd0  AsyncMac - ok
13:32:36.0067 0x2fd0  atapi - ok
13:32:36.0104 0x2fd0  [ C5A4F2317DCD5004F1CF3E6B0102554F, DA777780BFDC48A53BE2876AFBB02CA29FB38903F8E03EB6458315EA2978F663 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
13:32:36.0120 0x2fd0  AtiHDAudioService - ok
13:32:36.0136 0x2fd0  AudioEndpointBuilder - ok
13:32:36.0152 0x2fd0  Audiosrv - ok
13:32:36.0205 0x2fd0  [ 50C3C62FFE6337E6E4F2F01CB07DF63C, CC9C7D2827E872F22A2A79D42195530F61DF6EA6A1C8F520E25DB35537574FAB ] AVP16.0.0      C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
13:32:36.0236 0x2fd0  AVP16.0.0 - ok
13:32:36.0236 0x2fd0  AxInstSV - ok
13:32:36.0251 0x2fd0  b06bdrv - ok
13:32:36.0255 0x2fd0  BasicDisplay - ok
13:32:36.0260 0x2fd0  BasicRender - ok
13:32:36.0265 0x2fd0  bcmfn - ok
13:32:36.0267 0x2fd0  bcmfn2 - ok
13:32:36.0274 0x2fd0  BDESVC - ok
13:32:36.0277 0x2fd0  Beep - ok
13:32:36.0295 0x2fd0  BFE - ok
13:32:36.0312 0x2fd0  [ 1C5E0DA5E19A854D24FD1BCCFE98D67A, 3FE041CB33FD7BD63BC54DF7ED520C485F8C11E2205FADD2A2F122250036BA85 ] BfLwf          C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys
13:32:36.0320 0x2fd0  BfLwf - ok
13:32:36.0327 0x2fd0  BITS - ok
13:32:36.0327 0x2fd0  bowser - ok
13:32:36.0327 0x2fd0  BrokerInfrastructure - ok
13:32:36.0343 0x2fd0  Browser - ok
13:32:36.0343 0x2fd0  BthAvrcpTg - ok
13:32:36.0343 0x2fd0  BthHFEnum - ok
13:32:36.0359 0x2fd0  bthhfhid - ok
13:32:36.0359 0x2fd0  BthHFSrv - ok
13:32:36.0359 0x2fd0  BTHMODEM - ok
13:32:36.0359 0x2fd0  bthserv - ok
13:32:36.0374 0x2fd0  buttonconverter - ok
13:32:36.0374 0x2fd0  CapImg - ok
13:32:36.0394 0x2fd0  cdfs - ok
13:32:36.0396 0x2fd0  CDPSvc - ok
13:32:36.0397 0x2fd0  CDPUserSvc - ok
13:32:36.0405 0x2fd0  cdrom - ok
13:32:36.0421 0x2fd0  CertPropSvc - ok
13:32:36.0421 0x2fd0  cht4iscsi - ok
13:32:36.0421 0x2fd0  cht4vbd - ok
13:32:36.0421 0x2fd0  circlass - ok
13:32:36.0421 0x2fd0  CLFS - ok
13:32:36.0421 0x2fd0  ClipSVC - ok
13:32:36.0421 0x2fd0  clreg - ok
13:32:36.0437 0x2fd0  CmBatt - ok
13:32:36.0452 0x2fd0  [ B2A6D2A30E93B6F215F74AC7E1733C9C, 960299F7BF2501B46296EDEA050BF30313C17A9B785574B56B79C070BD1B6E1A ] cm_km          C:\WINDOWS\system32\DRIVERS\cm_km.sys
13:32:36.0468 0x2fd0  cm_km - ok
13:32:36.0484 0x2fd0  CNG - ok
13:32:36.0484 0x2fd0  cnghwassist - ok
13:32:36.0521 0x2fd0  CompositeBus - ok
13:32:36.0537 0x2fd0  COMSysApp - ok
13:32:36.0537 0x2fd0  condrv - ok
13:32:36.0555 0x2fd0  CoreMessagingRegistrar - ok
13:32:36.0668 0x2fd0  [ 00431929A879841E642A626DBD8311C6, E77C3CE24DA8748F96A0F6F8E410BAC484A6393EC969EF30D79E0D71FF36967A ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
13:32:36.0705 0x2fd0  cphs - ok
13:32:36.0721 0x2fd0  CryptSvc - ok
13:32:36.0737 0x2fd0  dam - ok
13:32:36.0752 0x2fd0  DcomLaunch - ok
13:32:36.0768 0x2fd0  DcpSvc - ok
13:32:36.0768 0x2fd0  defragsvc - ok
13:32:36.0784 0x2fd0  DeviceAssociationService - ok
13:32:36.0784 0x2fd0  DeviceInstall - ok
13:32:36.0784 0x2fd0  DevQueryBroker - ok
13:32:36.0805 0x2fd0  Dfsc - ok
13:32:36.0836 0x2fd0  [ 0F4A5D01156B948B54550375498B08A2, 1CAE3D744429A06E9C9EC46AC6B216AB68154EF8FACDD0721C47902B83820F56 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
13:32:36.0869 0x2fd0  dg_ssudbus - ok
13:32:36.0876 0x2fd0  Dhcp - ok
13:32:36.0900 0x2fd0  diagnosticshub.standardcollector.service - ok
13:32:36.0903 0x2fd0  DiagTrack - ok
13:32:36.0905 0x2fd0  disk - ok
13:32:36.0921 0x2fd0  DmEnrollmentSvc - ok
13:32:36.0937 0x2fd0  dmvsc - ok
13:32:36.0937 0x2fd0  dmwappushservice - ok
13:32:36.0937 0x2fd0  Dnscache - ok
13:32:36.0937 0x2fd0  dot3svc - ok
13:32:36.0937 0x2fd0  DPS - ok
13:32:36.0937 0x2fd0  drmkaud - ok
13:32:36.0937 0x2fd0  DsmSvc - ok
13:32:36.0952 0x2fd0  DsSvc - ok
13:32:36.0952 0x2fd0  DXGKrnl - ok
13:32:36.0952 0x2fd0  EapHost - ok
13:32:36.0952 0x2fd0  ebdrv - ok
13:32:36.0968 0x2fd0  EFS - ok
13:32:36.0968 0x2fd0  EhStorClass - ok
13:32:36.0968 0x2fd0  EhStorTcgDrv - ok
13:32:36.0984 0x2fd0  embeddedmode - ok
13:32:36.0984 0x2fd0  EntAppSvc - ok
13:32:36.0984 0x2fd0  ErrDev - ok
13:32:36.0984 0x2fd0  EventSystem - ok
13:32:36.0984 0x2fd0  exfat - ok
13:32:37.0000 0x2fd0  fastfat - ok
13:32:37.0001 0x2fd0  Fax - ok
13:32:37.0003 0x2fd0  fdc - ok
13:32:37.0005 0x2fd0  fdPHost - ok
13:32:37.0006 0x2fd0  FDResPub - ok
13:32:37.0006 0x2fd0  fhsvc - ok
13:32:37.0021 0x2fd0  FileCrypt - ok
13:32:37.0021 0x2fd0  FileInfo - ok
13:32:37.0021 0x2fd0  Filetrace - ok
13:32:37.0021 0x2fd0  flpydisk - ok
13:32:37.0021 0x2fd0  FltMgr - ok
13:32:37.0021 0x2fd0  FontCache - ok
13:32:37.0084 0x2fd0  FontCache3.0.0.0 - ok
13:32:37.0121 0x2fd0  FrameServer - ok
13:32:37.0121 0x2fd0  FsDepends - ok
13:32:37.0137 0x2fd0  Fs_Rec - ok
13:32:37.0201 0x2fd0  [ 4FE59CCAC4916CEF02DAFA58B6A7E10E, 27B7AA6108F175A4636E4E8455C5FFC17D98872517335A89D3DA2BD4A9A8E7C8 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
13:32:37.0237 0x2fd0  Futuremark SystemInfo Service - ok
13:32:37.0237 0x2fd0  fvevol - ok
13:32:37.0253 0x2fd0  gencounter - ok
13:32:37.0253 0x2fd0  genericusbfn - ok
13:32:37.0268 0x2fd0  GPIOClx0101 - ok
13:32:37.0268 0x2fd0  gpsvc - ok
13:32:37.0268 0x2fd0  GpuEnergyDrv - ok
13:32:37.0306 0x2fd0  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:32:37.0337 0x2fd0  gupdate - ok
13:32:37.0353 0x2fd0  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:32:37.0368 0x2fd0  gupdatem - ok
13:32:37.0368 0x2fd0  HDAudBus - ok
13:32:37.0368 0x2fd0  HidBatt - ok
13:32:37.0384 0x2fd0  HidBth - ok
13:32:37.0384 0x2fd0  hidi2c - ok
13:32:37.0384 0x2fd0  hidinterrupt - ok
13:32:37.0384 0x2fd0  HidIr - ok
13:32:37.0400 0x2fd0  hidserv - ok
13:32:37.0406 0x2fd0  HidUsb - ok
13:32:37.0406 0x2fd0  HomeGroupListener - ok
13:32:37.0421 0x2fd0  HomeGroupProvider - ok
13:32:37.0421 0x2fd0  HpSAMD - ok
13:32:37.0421 0x2fd0  HTTP - ok
13:32:37.0437 0x2fd0  HvHost - ok
13:32:37.0437 0x2fd0  hvservice - ok
13:32:37.0452 0x2fd0  hwpolicy - ok
13:32:37.0452 0x2fd0  hyperkbd - ok
13:32:37.0452 0x2fd0  i8042prt - ok
13:32:37.0452 0x2fd0  iagpio - ok
13:32:37.0452 0x2fd0  iai2c - ok
13:32:37.0452 0x2fd0  iaLPSS2i_GPIO2 - ok
13:32:37.0452 0x2fd0  iaLPSS2i_I2C - ok
13:32:37.0452 0x2fd0  iaLPSSi_GPIO - ok
13:32:37.0468 0x2fd0  iaLPSSi_I2C - ok
13:32:37.0468 0x2fd0  iaStorAV - ok
13:32:37.0468 0x2fd0  iaStorV - ok
13:32:37.0468 0x2fd0  ibbus - ok
13:32:37.0484 0x2fd0  icssvc - ok
13:32:37.0684 0x2fd0  [ DCADFA880DF77BB103F7A034A4B33577, 4AA267EE18104AEBA40A98A1D2DE2E10F1BB84F6FB4C5496600A45C072E18EC9 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
13:32:37.0800 0x2fd0  igfx - ok
13:32:37.0826 0x2fd0  [ E1C55B9A0BC573F95CBB0FE981C390D2, C19BAB0E55DD23F0CC106D73DAA1154D359D8033E065832E41B9D710E241FCF0 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
13:32:37.0831 0x2fd0  igfxCUIService2.0.0.0 - ok
13:32:37.0846 0x2fd0  IKEEXT - ok
13:32:37.0846 0x2fd0  IndirectKmd - ok
13:32:37.0947 0x2fd0  [ 7F08B78B1516626869FB44A61EFDF566, C585902D4F6E36A44097C192CCF19F1947F99C86A7BB77E83C0BE475F0151161 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
13:32:38.0030 0x2fd0  IntcAzAudAddService - ok
13:32:38.0047 0x2fd0  [ 47577F77C8DD9CF4265B944CAFE1F172, A3F48F01ECFDF8E609D26754E517C06AD6382DA231F42BF64B6746D50F02FC6A ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
13:32:38.0062 0x2fd0  IntcDAud - ok
13:32:38.0078 0x2fd0  intelide - ok
13:32:38.0078 0x2fd0  intelpep - ok
13:32:38.0078 0x2fd0  intelppm - ok
13:32:38.0094 0x2fd0  iorate - ok
13:32:38.0094 0x2fd0  IpFilterDriver - ok
13:32:38.0109 0x2fd0  iphlpsvc - ok
13:32:38.0109 0x2fd0  IPMIDRV - ok
13:32:38.0109 0x2fd0  IPNAT - ok
13:32:38.0128 0x2fd0  irda - ok
13:32:38.0131 0x2fd0  IRENUM - ok
13:32:38.0131 0x2fd0  irmon - ok
13:32:38.0131 0x2fd0  isapnp - ok
13:32:38.0131 0x2fd0  iScsiPrt - ok
13:32:38.0131 0x2fd0  kbdclass - ok
13:32:38.0147 0x2fd0  kbdhid - ok
13:32:38.0147 0x2fd0  kdnic - ok
13:32:38.0163 0x2fd0  KeyIso - ok
13:32:38.0228 0x2fd0  [ AAA45FAA95D2F54923C694BBACDEBB23, 57959CAA7824409DAFDB64AA5D6AFDA8A7600A73BCDB8C51D723E4BB4DD99917 ] Killer Service V2 C:\Program Files\Killer Networking\Network Manager\KillerService.exe
13:32:38.0247 0x2fd0  Killer Service V2 - detected UnsignedFile.Multi.Generic ( 1 )
13:32:38.0410 0x2fd0  Killer Service V2 ( UnsignedFile.Multi.Generic ) - warning
13:32:38.0532 0x2fd0  [ C94FB70AA81EF5D64B11E61B567F5AF2, 6488014691F19FE8E8EAE9C540A6C7791AA96715D9A5720B2B84360D834F6963 ] KillerEth      C:\WINDOWS\System32\drivers\e22w10x64.sys
13:32:38.0563 0x2fd0  KillerEth - ok
13:32:38.0595 0x2fd0  [ BEE1682DA217A4AD46C36896769AA580, 4D853D78E459F7BFE4F4217FCAD47CDACFAC19C2F6CF8261FBAA46BDB387FFDC ] kl1            C:\WINDOWS\system32\DRIVERS\kl1.sys
13:32:38.0628 0x2fd0  kl1 - ok
13:32:38.0632 0x2fd0  [ 86F40D79CE80ACBE6BEBAC8CE89D75A0, 8B800425160D1AF3C32EF7B5CA794658EE09CD3EE782473D8D38E1C7706076B3 ] klbackupdisk    C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys
13:32:38.0648 0x2fd0  klbackupdisk - ok
13:32:38.0648 0x2fd0  [ 2B4BC41223326FF440E2DB32B9239138, E95D5BB3388D6B219A4C175D5DA77CEB620A27A13F5AA4E7E2C05694B6E26947 ] klbackupflt    C:\WINDOWS\system32\DRIVERS\klbackupflt.sys
13:32:38.0664 0x2fd0  klbackupflt - ok
13:32:38.0695 0x2fd0  [ 80D7529E1CF09261FADF55E69EFDA90B, 2FE5EC38866E12D78AE3F4AD8CF647BDED616E8A36D9D737F9B6564DDA4685E7 ] kldisk          C:\WINDOWS\system32\DRIVERS\kldisk.sys
13:32:38.0695 0x2fd0  kldisk - ok
13:32:38.0711 0x2fd0  [ E2097C8F18F1E8E3B7D09F12B51843A3, 0506A99BD0962AAE64692BD7F080DB080F8B678DC59685CF22830A47B486430C ] klelam          C:\WINDOWS\system32\DRIVERS\klelam.sys
13:32:38.0731 0x2fd0  klelam - ok
13:32:38.0748 0x2fd0  [ BACE50477C184A3AA0755702C23B8B27, 5708A1B7C22702AD2E5DD4491A911A51D2FB768E46857639C0C5D8736E487D0F ] klflt          C:\WINDOWS\system32\DRIVERS\klflt.sys
13:32:38.0748 0x2fd0  klflt - ok
13:32:38.0780 0x2fd0  [ BE1DF4E950FF00A19BB72FA29CAEE32E, 24D8111B8782B4FB8612AB9DCE6A3A5EA63CE4B75DC717D0ECC5C6BCBCCF01AA ] klhk            C:\WINDOWS\system32\DRIVERS\klhk.sys
13:32:38.0780 0x2fd0  klhk - ok
13:32:38.0833 0x2fd0  [ B72D1864B3EC6E429DB127A642CFB8BB, 43954F7E04158D79D44D0D6866838043A2B49B49EBF15A57DB120DB7AC3C19CE ] KLIF            C:\WINDOWS\system32\DRIVERS\klif.sys
13:32:38.0864 0x2fd0  KLIF - ok
13:32:38.0896 0x2fd0  [ 161573B8BE82D24ED8B5B8EBA01245EA, 3CC124C717C2484A4DE0D415A2564D62D1A4B6E9DED65136B094304FCDE74CE0 ] KLIM6          C:\WINDOWS\system32\DRIVERS\klim6.sys
13:32:38.0896 0x2fd0  KLIM6 - ok
13:32:38.0911 0x2fd0  [ DAE5768E6FD34A36E3B9D1AF1FCA682B, 24DA0B71E3B4AC0FABEE0BF687DF8D35283DBF808CA3AB6F86E72B37471F6B33 ] klkbdflt        C:\WINDOWS\system32\DRIVERS\klkbdflt.sys
13:32:38.0933 0x2fd0  klkbdflt - ok
13:32:38.0949 0x2fd0  [ FD47C92A63B6EADEA830BFA96C06EAEE, C15C39B6FA53CBD01A2F95243845C4B706B4229F8FFB75C7128819B9CEE5B2CB ] klmouflt        C:\WINDOWS\system32\DRIVERS\klmouflt.sys
13:32:38.0965 0x2fd0  klmouflt - ok
13:32:38.0980 0x2fd0  [ F610F5F17BC87D61EF8954CCD793BAE4, A77FE26B4A474FE799C3D569BDD7858319C57FC14C1BB43ECFAB1FDB19AF5DC6 ] klpd            C:\WINDOWS\system32\DRIVERS\klpd.sys
13:32:38.0980 0x2fd0  klpd - ok
13:32:38.0996 0x2fd0  [ 8334692AFEB3289984B40898B6B30C06, 6A337CC33B0EFC3B61BFCABFDFE305BE1D334620FB4D87DDEDBC8214966D6DDE ] klwfp          C:\WINDOWS\system32\DRIVERS\klwfp.sys
13:32:39.0011 0x2fd0  klwfp - ok
13:32:39.0033 0x2fd0  [ 91234D71CEED29F2DBA16942CABDCA4F, 5D71BAC86C33BC77EEBF1ECB8F372DFE631991E4C5F36EAF0C8C957150BD6D52 ] Klwtp          C:\WINDOWS\system32\DRIVERS\klwtp.sys
13:32:39.0034 0x2fd0  Klwtp - ok
13:32:39.0049 0x2fd0  [ 1686DE8288052316EFDD49EEA8929065, AD43D6ACCD8693BD76F218E1A4EE088BA061C1309A3E7DAA7EC94D875985D895 ] kneps          C:\WINDOWS\system32\DRIVERS\kneps.sys
13:32:39.0049 0x2fd0  kneps - ok
13:32:39.0065 0x2fd0  KSecDD - ok
13:32:39.0080 0x2fd0  KSecPkg - ok
13:32:39.0080 0x2fd0  ksthunk - ok
13:32:39.0096 0x2fd0  KtmRm - ok
13:32:39.0096 0x2fd0  LanmanServer - ok
13:32:39.0112 0x2fd0  LanmanWorkstation - ok
13:32:39.0127 0x2fd0  lfsvc - ok
13:32:39.0133 0x2fd0  LicenseManager - ok
13:32:39.0133 0x2fd0  lltdio - ok
13:32:39.0133 0x2fd0  lltdsvc - ok
13:32:39.0149 0x2fd0  lmhosts - ok
13:32:39.0196 0x2fd0  [ 513E3588C0ACAB09AD4DA933E7554C63, 29522D921683228FF31E6161A2F6AA536D23FC5F7E692873D44BC633638F41F1 ] LolScreenSaverService C:\Riot Games\LolScreenSaver\service\service.exe
13:32:39.0212 0x2fd0  LolScreenSaverService - detected UnsignedFile.Multi.Generic ( 1 )
13:32:39.0296 0x2fd0  Detect skipped due to KSN trusted
13:32:39.0296 0x2fd0  LolScreenSaverService - ok
13:32:39.0312 0x2fd0  LSI_SAS - ok
13:32:39.0329 0x2fd0  LSI_SAS2i - ok
13:32:39.0334 0x2fd0  LSI_SAS3i - ok
13:32:39.0334 0x2fd0  LSI_SSS - ok
13:32:39.0334 0x2fd0  LSM - ok
13:32:39.0350 0x2fd0  luafv - ok
13:32:39.0366 0x2fd0  MapsBroker - ok
13:32:39.0366 0x2fd0  megasas - ok
13:32:39.0381 0x2fd0  megasr - ok
13:32:39.0381 0x2fd0  [ 5AC258A5845A72B91C675F44050058B2, 69D298B5774F299DE2EECF7B9238BFD36CDC0BAFB167FD0927398E4A89A5D63B ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
13:32:39.0413 0x2fd0  MEIx64 - ok
13:32:39.0413 0x2fd0  MessagingService - ok
13:32:39.0413 0x2fd0  mlx4_bus - ok
13:32:39.0431 0x2fd0  MMCSS - ok
13:32:39.0434 0x2fd0  Modem - ok
13:32:39.0435 0x2fd0  monitor - ok
13:32:39.0435 0x2fd0  mouclass - ok
13:32:39.0450 0x2fd0  mouhid - ok
13:32:39.0450 0x2fd0  mountmgr - ok
13:32:39.0466 0x2fd0  [ 69E23C730974BAC8C11DF2B7C4C9D37B, 8DC4448EC9C9647381952D7822B39C89E0997B4B964A785AE274144FADEE3C02 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:32:39.0482 0x2fd0  MozillaMaintenance - ok
13:32:39.0497 0x2fd0  mpsdrv - ok
13:32:39.0497 0x2fd0  MpsSvc - ok
13:32:39.0513 0x2fd0  MRxDAV - ok
13:32:39.0535 0x2fd0  mrxsmb - ok
13:32:39.0535 0x2fd0  mrxsmb10 - ok
13:32:39.0555 0x2fd0  mrxsmb20 - ok
13:32:39.0570 0x2fd0  MsBridge - ok
13:32:39.0586 0x2fd0  MSDTC - ok
13:32:39.0601 0x2fd0  Msfs - ok
13:32:39.0617 0x2fd0  msgpiowin32 - ok
13:32:39.0617 0x2fd0  mshidkmdf - ok
13:32:39.0617 0x2fd0  mshidumdf - ok
13:32:39.0635 0x2fd0  msisadrv - ok
13:32:39.0635 0x2fd0  MSiSCSI - ok
13:32:39.0651 0x2fd0  msiserver - ok
13:32:39.0651 0x2fd0  MSKSSRV - ok
13:32:39.0651 0x2fd0  MsLldp - ok
13:32:39.0651 0x2fd0  MSPCLOCK - ok
13:32:39.0666 0x2fd0  MSPQM - ok
13:32:39.0666 0x2fd0  MsRPC - ok
13:32:39.0666 0x2fd0  mssmbios - ok
13:32:39.0682 0x2fd0  MSTEE - ok
13:32:39.0682 0x2fd0  MTConfig - ok
13:32:39.0682 0x2fd0  Mup - ok
13:32:39.0682 0x2fd0  mvumis - ok
13:32:39.0698 0x2fd0  NativeWifiP - ok
13:32:39.0698 0x2fd0  NcaSvc - ok
13:32:39.0713 0x2fd0  NcbService - ok
13:32:39.0713 0x2fd0  NcdAutoSetup - ok
13:32:39.0713 0x2fd0  ndfltr - ok
13:32:39.0713 0x2fd0  NDIS - ok
13:32:39.0713 0x2fd0  NdisCap - ok
13:32:39.0713 0x2fd0  NdisImPlatform - ok
13:32:39.0713 0x2fd0  NdisTapi - ok
13:32:39.0731 0x2fd0  Ndisuio - ok
13:32:39.0733 0x2fd0  NdisVirtualBus - ok
13:32:39.0735 0x2fd0  NdisWan - ok
13:32:39.0735 0x2fd0  ndiswanlegacy - ok
13:32:39.0735 0x2fd0  ndproxy - ok
13:32:39.0735 0x2fd0  Ndu - ok
13:32:39.0735 0x2fd0  NetAdapterCx - ok
13:32:39.0735 0x2fd0  NetBIOS - ok
13:32:39.0735 0x2fd0  NetBT - ok
13:32:39.0735 0x2fd0  Netlogon - ok
13:32:39.0751 0x2fd0  Netman - ok
13:32:39.0751 0x2fd0  netprofm - ok
13:32:39.0766 0x2fd0  NetSetupSvc - ok
13:32:39.0784 0x2fd0  NetTcpPortSharing - ok
13:32:39.0784 0x2fd0  NgcCtnrSvc - ok
13:32:39.0800 0x2fd0  NgcSvc - ok
13:32:39.0800 0x2fd0  NlaSvc - ok
13:32:39.0800 0x2fd0  Npfs - ok
13:32:39.0800 0x2fd0  npsvctrig - ok
13:32:39.0800 0x2fd0  nsi - ok
13:32:39.0815 0x2fd0  nsiproxy - ok
13:32:39.0815 0x2fd0  NTFS - ok
13:32:39.0815 0x2fd0  Null - ok
13:32:39.0815 0x2fd0  nvraid - ok
13:32:39.0815 0x2fd0  nvstor - ok
13:32:39.0850 0x2fd0  OneSyncSvc - ok
13:32:39.0982 0x2fd0  [ BCD6A1F2A5653572225BE9E001DABD8B, ED85B6775BAE1D8C321C42DDB4EBCEDDC25958F1E8FF63E313F1D5C7BA477B67 ] Origin Client Service D:\Programme\Origin\OriginClientService.exe
13:32:40.0013 0x2fd0  Origin Client Service - ok
13:32:40.0113 0x2fd0  [ B689AC2D3E1F80D6D72A9699D35ABA5A, C77E2AB0899B6A4FE1C6DE9CBCB6E89A20A4AC5A4D2B4C308FD362E976F0034A ] Origin Web Helper Service D:\Programme\Origin\OriginWebHelperService.exe
13:32:40.0150 0x2fd0  Origin Web Helper Service - ok
13:32:40.0150 0x2fd0  p2pimsvc - ok
13:32:40.0150 0x2fd0  p2psvc - ok
13:32:40.0150 0x2fd0  Parport - ok
13:32:40.0166 0x2fd0  partmgr - ok
13:32:40.0182 0x2fd0  PcaSvc - ok
13:32:40.0197 0x2fd0  pci - ok
13:32:40.0197 0x2fd0  pciide - ok
13:32:40.0213 0x2fd0  pcmcia - ok
13:32:40.0213 0x2fd0  pcw - ok
13:32:40.0213 0x2fd0  pdc - ok
13:32:40.0234 0x2fd0  PEAUTH - ok
13:32:40.0234 0x2fd0  percsas2i - ok
13:32:40.0234 0x2fd0  percsas3i - ok
13:32:40.0297 0x2fd0  PerfHost - ok
13:32:40.0333 0x2fd0  PhoneSvc - ok
13:32:40.0335 0x2fd0  PimIndexMaintenanceSvc - ok
13:32:40.0350 0x2fd0  pla - ok
13:32:40.0397 0x2fd0  [ 4808ACE4B2C161AF2667F6C1AC45B434, 7C8F570721BA9827D2F4E5E48545D8A062484783091D7B1340BEE1F78AC90117 ] PlaysService    C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
13:32:40.0435 0x2fd0  PlaysService - ok
13:32:40.0435 0x2fd0  PlugPlay - ok
13:32:40.0450 0x2fd0  PNRPAutoReg - ok
13:32:40.0450 0x2fd0  PNRPsvc - ok
13:32:40.0466 0x2fd0  PolicyAgent - ok
13:32:40.0466 0x2fd0  Power - ok
13:32:40.0482 0x2fd0  PptpMiniport - ok
13:32:40.0635 0x2fd0  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify    C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
13:32:40.0697 0x2fd0  PrintNotify - ok
13:32:40.0713 0x2fd0  Processor - ok
13:32:40.0713 0x2fd0  ProfSvc - ok
13:32:40.0713 0x2fd0  Psched - ok
13:32:40.0732 0x2fd0  QWAVE - ok
13:32:40.0735 0x2fd0  QWAVEdrv - ok
13:32:40.0735 0x2fd0  RasAcd - ok
13:32:40.0735 0x2fd0  RasAgileVpn - ok
13:32:40.0751 0x2fd0  RasAuto - ok
13:32:40.0751 0x2fd0  Rasl2tp - ok
13:32:40.0751 0x2fd0  RasMan - ok
13:32:40.0751 0x2fd0  RasPppoe - ok
13:32:40.0751 0x2fd0  RasSstp - ok
13:32:40.0766 0x2fd0  rdbss - ok
13:32:40.0766 0x2fd0  rdpbus - ok
13:32:40.0766 0x2fd0  RDPDR - ok
13:32:40.0782 0x2fd0  RdpVideoMiniport - ok
13:32:40.0798 0x2fd0  rdyboost - ok
13:32:40.0798 0x2fd0  ReFSv1 - ok
13:32:40.0813 0x2fd0  RemoteAccess - ok
13:32:40.0813 0x2fd0  RemoteRegistry - ok
13:32:40.0851 0x2fd0  RetailDemo - ok
13:32:40.0851 0x2fd0  RmSvc - ok
13:32:40.0866 0x2fd0  RpcEptMapper - ok
13:32:40.0885 0x2fd0  RpcLocator - ok
13:32:40.0885 0x2fd0  RpcSs - ok
13:32:40.0900 0x2fd0  rspndr - ok
13:32:40.0916 0x2fd0  s3cap - ok
13:32:40.0951 0x2fd0  [ AFF8A812F0FAD0DA5438AB1F5D72DF50, 563692B9C30737519010CB082EFFA0BAFCC6A1604FBCA601D20941AB306F6E1A ] SaiK1112        C:\WINDOWS\system32\DRIVERS\SaiK1112.sys
13:32:40.0982 0x2fd0  SaiK1112 - ok
13:32:40.0998 0x2fd0  [ BF5926AD4050E29CDD8787CC1112010A, 3A7D8A476B491A74F862718096D8E1CC8C2DAEB85C6925D69A9D45AFDD0E225D ] SaiMini        C:\WINDOWS\System32\drivers\SaiMini.sys
13:32:41.0014 0x2fd0  SaiMini - ok
13:32:41.0034 0x2fd0  [ 59128BF5C72885109ECF8EC40A3B4DA8, 07E4CFA141039D5078C29C5309F516B6F1F19C6DF521DEE25866217016B43E95 ] SaiNtBus        C:\WINDOWS\system32\drivers\SaiBus.sys
13:32:41.0036 0x2fd0  SaiNtBus - ok
13:32:41.0051 0x2fd0  SamSs - ok
13:32:41.0067 0x2fd0  sbp2port - ok
13:32:41.0083 0x2fd0  SCardSvr - ok
13:32:41.0083 0x2fd0  ScDeviceEnum - ok
13:32:41.0098 0x2fd0  scfilter - ok
13:32:41.0098 0x2fd0  Schedule - ok
13:32:41.0098 0x2fd0  scmbus - ok
13:32:41.0098 0x2fd0  scmdisk0101 - ok
13:32:41.0114 0x2fd0  SCPolicySvc - ok
13:32:41.0134 0x2fd0  sdbus - ok
13:32:41.0136 0x2fd0  SDRSVC - ok
13:32:41.0236 0x2fd0  [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
13:32:41.0268 0x2fd0  SDScannerService - ok
13:32:41.0268 0x2fd0  sdstor - ok
13:32:41.0414 0x2fd0  [ 94653C9CFDC15B30EEECD94BA7219654, 59F54AC9BC79C1BFBEA84992181C58AF434A3DDDF473C9BE942D3462875A8375 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
13:32:41.0483 0x2fd0  SDUpdateService - ok
13:32:41.0499 0x2fd0  [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
13:32:41.0499 0x2fd0  SDWSCService - ok
13:32:41.0499 0x2fd0  seclogon - ok
13:32:41.0499 0x2fd0  SENS - ok
13:32:41.0515 0x2fd0  SensorDataService - ok
13:32:41.0552 0x2fd0  SensorService - ok
13:32:41.0552 0x2fd0  SensrSvc - ok
13:32:41.0568 0x2fd0  SerCx - ok
13:32:41.0583 0x2fd0  SerCx2 - ok
13:32:41.0583 0x2fd0  Serenum - ok
13:32:41.0583 0x2fd0  Serial - ok
13:32:41.0583 0x2fd0  sermouse - ok
13:32:41.0599 0x2fd0  SessionEnv - ok
13:32:41.0614 0x2fd0  sfloppy - ok
13:32:41.0637 0x2fd0  SharedAccess - ok
13:32:41.0652 0x2fd0  ShellHWDetection - ok
13:32:41.0652 0x2fd0  shpamsvc - ok
13:32:41.0668 0x2fd0  SiSRaid2 - ok
13:32:41.0677 0x2fd0  SiSRaid4 - ok
13:32:41.0715 0x2fd0  [ 9A66A87BBC0EC4463042959B7C0D4AC1, 2E61DC50AD4A4D4782F3271BAD010137DA9A6AFC46C7568C709F68C7621DCD40 ] SkypeUpdate    C:\Program Files (x86)\Skype\Updater\Updater.exe
13:32:41.0753 0x2fd0  SkypeUpdate - ok
13:32:41.0769 0x2fd0  smphost - ok
13:32:41.0769 0x2fd0  SmsRouter - ok
13:32:41.0784 0x2fd0  SNMPTRAP - ok
13:32:41.0787 0x2fd0  spaceport - ok
13:32:41.0787 0x2fd0  SpbCx - ok
13:32:41.0787 0x2fd0  Spooler - ok
13:32:41.0803 0x2fd0  sppsvc - ok
13:32:41.0819 0x2fd0  srv - ok
13:32:41.0835 0x2fd0  srv2 - ok
13:32:41.0838 0x2fd0  srvnet - ok
13:32:41.0853 0x2fd0  [ AFC159BDB8CD5A804D015D8A3624ECC6, 863150170D7F84D793C7CECD40439A5B46D337A8B904183ED8C53FDA9FB71091 ] ssdevfactory    C:\WINDOWS\System32\drivers\ssdevfactory.sys
13:32:41.0869 0x2fd0  ssdevfactory - ok
13:32:41.0869 0x2fd0  SSDPSRV - ok
13:32:41.0900 0x2fd0  [ B7A505796AFBBC11987C6B9DF87994B3, 25D1AE78F80C661135B52DDCAA020933F802D85EA305082B4C91FF8D850D2146 ] sshid          C:\WINDOWS\System32\drivers\sshid.sys
13:32:41.0916 0x2fd0  sshid - ok
13:32:41.0936 0x2fd0  SstpSvc - ok
13:32:41.0954 0x2fd0  [ 9B74226E10CD57E965F87014841016F9, 95C76049DBBF3B31A9B01CFD0EDAAC47DE9A1F096B61D05C47FB85E1AFC07288 ] ssudmdm        C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
13:32:41.0969 0x2fd0  ssudmdm - ok
13:32:41.0985 0x2fd0  StateRepository - ok
13:32:42.0085 0x2fd0  [ 04F9B53224689BB3638CC2D3DA721E5C, D073C8D5CEFD59CC3D4834A6B92EA8FE113A73C400C27BB6B3D215522FAE17C3 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
13:32:42.0101 0x2fd0  Steam Client Service - ok
13:32:42.0116 0x2fd0  stexstor - ok
13:32:42.0138 0x2fd0  stisvc - ok
13:32:42.0138 0x2fd0  storahci - ok
13:32:42.0138 0x2fd0  storflt - ok
13:32:42.0153 0x2fd0  stornvme - ok
13:32:42.0153 0x2fd0  storqosflt - ok
13:32:42.0169 0x2fd0  StorSvc - ok
13:32:42.0169 0x2fd0  storufs - ok
13:32:42.0169 0x2fd0  storvsc - ok
13:32:42.0169 0x2fd0  svsvc - ok
13:32:42.0169 0x2fd0  swenum - ok
13:32:42.0169 0x2fd0  swprv - ok
13:32:42.0200 0x2fd0  Synth3dVsc - ok
13:32:42.0200 0x2fd0  SysMain - ok
13:32:42.0216 0x2fd0  SystemEventsBroker - ok
13:32:42.0233 0x2fd0  TabletInputService - ok
13:32:42.0238 0x2fd0  TapiSrv - ok
13:32:42.0238 0x2fd0  Tcpip - ok
13:32:42.0254 0x2fd0  Tcpip6 - ok
13:32:42.0254 0x2fd0  tcpipreg - ok
13:32:42.0270 0x2fd0  tdx - ok
13:32:42.0270 0x2fd0  terminpt - ok
13:32:42.0270 0x2fd0  TermService - ok
13:32:42.0285 0x2fd0  Themes - ok
13:32:42.0301 0x2fd0  TieringEngineService - ok
13:32:42.0301 0x2fd0  tiledatamodelsvc - ok
13:32:42.0301 0x2fd0  TimeBrokerSvc - ok
13:32:42.0317 0x2fd0  TPM - ok
13:32:42.0317 0x2fd0  TrkWks - ok
13:32:42.0338 0x2fd0  TrustedInstaller - ok
13:32:42.0338 0x2fd0  tsusbflt - ok
13:32:42.0338 0x2fd0  TsUsbGD - ok
13:32:42.0338 0x2fd0  tunnel - ok
13:32:42.0338 0x2fd0  tzautoupdate - ok
13:32:42.0354 0x2fd0  UASPStor - ok
13:32:42.0354 0x2fd0  UcmCx0101 - ok
13:32:42.0354 0x2fd0  UcmTcpciCx0101 - ok
13:32:42.0354 0x2fd0  UcmUcsi - ok
13:32:42.0354 0x2fd0  Ucx01000 - ok
13:32:42.0354 0x2fd0  UdeCx - ok
13:32:42.0354 0x2fd0  udfs - ok
13:32:42.0369 0x2fd0  UEFI - ok
13:32:42.0369 0x2fd0  Ufx01000 - ok
13:32:42.0369 0x2fd0  UfxChipidea - ok
13:32:42.0369 0x2fd0  ufxsynopsys - ok
13:32:42.0369 0x2fd0  UI0Detect - ok
13:32:42.0369 0x2fd0  umbus - ok
13:32:42.0385 0x2fd0  UmPass - ok
13:32:42.0385 0x2fd0  UmRdpService - ok
13:32:42.0385 0x2fd0  UnistoreSvc - ok
13:32:42.0385 0x2fd0  upnphost - ok
13:32:42.0385 0x2fd0  UrsChipidea - ok
13:32:42.0385 0x2fd0  UrsCx01000 - ok
13:32:42.0385 0x2fd0  UrsSynopsys - ok
13:32:42.0400 0x2fd0  usbccgp - ok
13:32:42.0400 0x2fd0  usbcir - ok
13:32:42.0400 0x2fd0  usbehci - ok
13:32:42.0400 0x2fd0  usbhub - ok
13:32:42.0400 0x2fd0  USBHUB3 - ok
13:32:42.0400 0x2fd0  usbohci - ok
13:32:42.0400 0x2fd0  usbprint - ok
13:32:42.0416 0x2fd0  usbrndis6 - ok
13:32:42.0416 0x2fd0  usbser - ok
13:32:42.0416 0x2fd0  USBSTOR - ok
13:32:42.0416 0x2fd0  usbuhci - ok
13:32:42.0432 0x2fd0  USBXHCI - ok
13:32:42.0435 0x2fd0  UserDataSvc - ok
13:32:42.0438 0x2fd0  UserManager - ok
13:32:42.0438 0x2fd0  UsoSvc - ok
13:32:42.0438 0x2fd0  VaultSvc - ok
13:32:42.0438 0x2fd0  vdrvroot - ok
13:32:42.0438 0x2fd0  vds - ok
13:32:42.0438 0x2fd0  VerifierExt - ok
13:32:42.0438 0x2fd0  vhdmp - ok
13:32:42.0438 0x2fd0  vhf - ok
13:32:42.0454 0x2fd0  vmbus - ok
13:32:42.0454 0x2fd0  VMBusHID - ok
13:32:42.0454 0x2fd0  vmgid - ok
13:32:42.0469 0x2fd0  vmicguestinterface - ok
13:32:42.0469 0x2fd0  vmicheartbeat - ok
13:32:42.0469 0x2fd0  vmickvpexchange - ok
13:32:42.0469 0x2fd0  vmicrdv - ok
13:32:42.0469 0x2fd0  vmicshutdown - ok
13:32:42.0469 0x2fd0  vmictimesync - ok
13:32:42.0485 0x2fd0  vmicvmsession - ok
13:32:42.0485 0x2fd0  vmicvss - ok
13:32:42.0485 0x2fd0  volmgr - ok
13:32:42.0485 0x2fd0  volmgrx - ok
13:32:42.0485 0x2fd0  volsnap - ok
13:32:42.0485 0x2fd0  volume - ok
13:32:42.0485 0x2fd0  vpci - ok
13:32:42.0501 0x2fd0  vsmraid - ok
13:32:42.0501 0x2fd0  VSS - ok
13:32:42.0538 0x2fd0  [ 79F4D90FAA0ACC1866F2F3E03E39CA89, EE08BCBF29A7E4AFFF520B8DF067281425F433EC275F8C86CE8F20F000E92E3D ] vssbrigde64    C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe
13:32:42.0569 0x2fd0  vssbrigde64 - ok
13:32:42.0585 0x2fd0  VSTXRAID - ok
13:32:42.0600 0x2fd0  vwifibus - ok
13:32:42.0616 0x2fd0  vwififlt - ok
13:32:42.0632 0x2fd0  W32Time - ok
13:32:42.0637 0x2fd0  WacomPen - ok
13:32:42.0670 0x2fd0  WalletService - ok
13:32:42.0670 0x2fd0  wanarp - ok
13:32:42.0686 0x2fd0  wanarpv6 - ok
13:32:42.0686 0x2fd0  wbengine - ok
13:32:42.0686 0x2fd0  WbioSrvc - ok
13:32:42.0686 0x2fd0  wcifs - ok
13:32:42.0701 0x2fd0  Wcmsvc - ok
13:32:42.0701 0x2fd0  wcncsvc - ok
13:32:42.0701 0x2fd0  wcnfs - ok
13:32:42.0717 0x2fd0  WdBoot - ok
13:32:42.0717 0x2fd0  Wdf01000 - ok
13:32:42.0717 0x2fd0  WdFilter - ok
13:32:42.0717 0x2fd0  WdiServiceHost - ok
13:32:42.0717 0x2fd0  WdiSystemHost - ok
13:32:42.0717 0x2fd0  wdiwifi - ok
13:32:42.0717 0x2fd0  WdNisDrv - ok
13:32:42.0738 0x2fd0  WdNisSvc - ok
13:32:42.0754 0x2fd0  WebClient - ok
13:32:42.0754 0x2fd0  Wecsvc - ok
13:32:42.0754 0x2fd0  WEPHOSTSVC - ok
13:32:42.0754 0x2fd0  wercplsupport - ok
13:32:42.0754 0x2fd0  WerSvc - ok
13:32:42.0754 0x2fd0  WFPLWFS - ok
13:32:42.0754 0x2fd0  WiaRpc - ok
13:32:42.0770 0x2fd0  WIMMount - ok
13:32:42.0770 0x2fd0  WinDefend - ok
13:32:42.0785 0x2fd0  WindowsTrustedRT - ok
13:32:42.0785 0x2fd0  WindowsTrustedRTProxy - ok
13:32:42.0801 0x2fd0  WinHttpAutoProxySvc - ok
13:32:42.0801 0x2fd0  WinMad - ok
13:32:42.0817 0x2fd0  Winmgmt - ok
13:32:42.0817 0x2fd0  WinRM - ok
13:32:42.0839 0x2fd0  WINUSB - ok
13:32:42.0854 0x2fd0  WinVerbs - ok
13:32:42.0870 0x2fd0  wisvc - ok
13:32:42.0890 0x2fd0  WlanSvc - ok
13:32:42.0890 0x2fd0  wlidsvc - ok
13:32:42.0906 0x2fd0  WmiAcpi - ok
13:32:42.0906 0x2fd0  wmiApSrv - ok
13:32:42.0922 0x2fd0  WMPNetworkSvc - ok
13:32:42.0939 0x2fd0  Wof - ok
13:32:42.0970 0x2fd0  workfolderssvc - ok
13:32:42.0970 0x2fd0  WPDBusEnum - ok
13:32:42.0986 0x2fd0  WpdUpFltr - ok
13:32:43.0001 0x2fd0  WpnService - ok
13:32:43.0001 0x2fd0  WpnUserService - ok
13:32:43.0001 0x2fd0  ws2ifsl - ok
13:32:43.0017 0x2fd0  wscsvc - ok
13:32:43.0017 0x2fd0  WSearch - ok
13:32:43.0034 0x2fd0  wuauserv - ok
13:32:43.0036 0x2fd0  WudfPf - ok
13:32:43.0039 0x2fd0  WUDFRd - ok
13:32:43.0040 0x2fd0  wudfsvc - ok
13:32:43.0040 0x2fd0  WUDFWpdFs - ok
13:32:43.0040 0x2fd0  WUDFWpdMtp - ok
13:32:43.0040 0x2fd0  WwanSvc - ok
13:32:43.0055 0x2fd0  XblAuthManager - ok
13:32:43.0055 0x2fd0  XblGameSave - ok
13:32:43.0055 0x2fd0  xboxgip - ok
13:32:43.0055 0x2fd0  XboxNetApiSvc - ok
13:32:43.0071 0x2fd0  xinputhid - ok
13:32:43.0071 0x2fd0  ================ Scan global ===============================
13:32:43.0102 0x2fd0  [ Global ] - ok
13:32:43.0102 0x2fd0  ================ Scan MBR ==================================
13:32:43.0118 0x2fd0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:32:43.0233 0x2fd0  \Device\Harddisk0\DR0 - ok
13:32:43.0239 0x2fd0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
13:32:43.0502 0x2fd0  \Device\Harddisk1\DR1 - ok
13:32:43.0502 0x2fd0  ================ Scan VBR ==================================
13:32:43.0502 0x2fd0  [ 8125EB08668304D4B6C7F49322B9F29E ] \Device\Harddisk0\DR0\Partition1
13:32:43.0502 0x2fd0  \Device\Harddisk0\DR0\Partition1 - ok
13:32:43.0518 0x2fd0  [ 405843A6CE5CA3BBA02D3127B8A88E90 ] \Device\Harddisk0\DR0\Partition2
13:32:43.0518 0x2fd0  \Device\Harddisk0\DR0\Partition2 - ok
13:32:43.0518 0x2fd0  [ 17B8C9379CA087F13E13D18A19BC6C47 ] \Device\Harddisk1\DR1\Partition1
13:32:43.0518 0x2fd0  \Device\Harddisk1\DR1\Partition1 - ok
13:32:43.0535 0x2fd0  [ 222FCFBBDE9000E92207A9030B722463 ] \Device\Harddisk1\DR1\Partition2
13:32:43.0536 0x2fd0  \Device\Harddisk1\DR1\Partition2 - ok
13:32:43.0537 0x2fd0  ================ Scan generic autorun ======================
13:32:43.0841 0x2fd0  [ 4878D4D36D683EBE2F1E5F83C6A3BDB3, 82DA7BFED5F61DF4B679B06339E4065CCE0DA0D6741287F93A2EF1BCC85AB1E1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
13:32:44.0036 0x2fd0  RTHDVCPL - ok
13:32:44.0057 0x2fd0  [ 40ACF2393D2E19F5F5A02E70C41417B8, C02BF28B7F4ED95D87381EC2B9BC45AEB29D26D9DCF2EE745D587A6E1A4C176B ] C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe
13:32:44.0073 0x2fd0  S.T.R.I.K.E.3 - detected UnsignedFile.Multi.Generic ( 1 )
13:32:44.0237 0x2fd0  S.T.R.I.K.E.3 ( UnsignedFile.Multi.Generic ) - warning
13:32:44.0237 0x2fd0  Force sending object to P2P due to detect: C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe
13:32:44.0404 0x2fd0  Object send P2P result: true
13:32:44.0558 0x2fd0  [ 6EE3715365088DEA045C3435980D7898, 188882D7C2385DDAAD2C717A2198BF8B23C6BF772D96912FEF3CAF72D8442E7B ] C:\Program Files\SmartTechnology\Software\ProfilerU.exe
13:32:44.0589 0x2fd0  ProfilerU - detected UnsignedFile.Multi.Generic ( 1 )
13:32:44.0721 0x2fd0  Detect skipped due to KSN trusted
13:32:44.0721 0x2fd0  ProfilerU - ok
13:32:44.0743 0x2fd0  [ 7AB0F78E4A11AA37B1E58F613F4164F6, FF6238EAACBF0F50889BE964C8DA0D715B5975351F87EB97A3C90F810DB09734 ] C:\Program Files\SmartTechnology\Software\SaiMfd.exe
13:32:44.0790 0x2fd0  SaiMfd - detected UnsignedFile.Multi.Generic ( 1 )
13:32:44.0921 0x2fd0  Detect skipped due to KSN trusted
13:32:44.0921 0x2fd0  SaiMfd - ok
13:32:45.0144 0x2fd0  [ 0F920C5990215DE2EB370C7C8F39B6CE, 5B1C7450AA949261D0659AAE2CCB7AE56A3919F641AEF800BA6B1714336AB295 ] C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
13:32:45.0222 0x2fd0  StartCN - ok
13:32:45.0275 0x2fd0  [ 8AB64F458494D8606BC5C9D0A9CE9362, 36E286E4850806E893F2B7B2A6111C9AB14F768F1BD4C1260478B6E62F71D30F ] C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe
13:32:45.0290 0x2fd0  PlaysTV - ok
13:32:45.0306 0x2fd0  [ 5F4FE49E3C07C1D0F0A98FB8CE066D50, 90AA7422C21C3DB3D9433F24F558D975735C6CC5C548398B2CE26113AF510BDD ] C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe
13:32:45.0322 0x2fd0  Raptr - ok
13:32:45.0374 0x2fd0  [ 059B8158C08C82C78DC6A8153A2467A4, 8E88DBC785CF679D238DC5CCBF0C79B03B30F742CF0FC6427AD0AD2AD5943169 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
13:32:45.0390 0x2fd0  SunJavaUpdateSched - ok
13:32:45.0544 0x2fd0  [ 7EE68A122ED08E4AAD8DA551E34D2515, B3C9AB270AF595D3DBAFBF4A312B96CBF00C16F0A03CCC86BE56825CD1EB7143 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
13:32:45.0593 0x2fd0  SDTray - ok
13:32:45.0674 0x2fd0  OneDriveSetup - ok
13:32:45.0674 0x2fd0  OneDriveSetup - ok
13:32:45.0794 0x2fd0  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Robert\AppData\Local\Microsoft\OneDrive\OneDrive.exe
13:32:45.0825 0x2fd0  OneDrive - ok
13:32:45.0960 0x2fd0  [ 6F4E4E5B2C2B9922ED022CBA4266B375, 6B646D7ED0E14F21DC52FB6701837A8C1553AE4F4BD89682F21BB8B23161BB03 ] D:\Programme\Steam\steam.exe
13:32:46.0007 0x2fd0  Steam - ok
13:32:46.0075 0x2fd0  [ F51BB12D8977D26C1A4CDA348770D9F1, DDA35CD8F8A6591B83821B5180D457740E0B820CCE000BC7FB1B78FB4AEAD3BA ] C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
13:32:46.0106 0x2fd0  SpybotPostWindows10UpgradeReInstall - detected UnsignedFile.Multi.Generic ( 1 )
13:32:46.0175 0x2fd0  Detect skipped due to KSN trusted
13:32:46.0175 0x2fd0  SpybotPostWindows10UpgradeReInstall - ok
13:32:46.0291 0x2fd0  Uninstall C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 - ok
13:32:46.0291 0x2fd0  Waiting for KSN requests completion. In queue: 60
13:32:47.0343 0x2fd0  AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41000 ( enabled : updated )
13:32:47.0345 0x2fd0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x62100 ( disabled : updated )
13:32:47.0347 0x2fd0  FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41010 ( enabled )
13:32:47.0463 0x2fd0  ============================================================
13:32:47.0463 0x2fd0  Scan finished
13:32:47.0463 0x2fd0  ============================================================
13:32:47.0479 0x254c  Detected object count: 2
13:32:47.0479 0x254c  Actual detected object count: 2
13:33:18.0199 0x254c  Killer Service V2 ( UnsignedFile.Multi.Generic ) - skipped by user
13:33:18.0199 0x254c  Killer Service V2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:33:18.0199 0x254c  S.T.R.I.K.E.3 ( UnsignedFile.Multi.Generic ) - skipped by user
13:33:18.0199 0x254c  S.T.R.I.K.E.3 ( UnsignedFile.Multi.Generic ) - User select action: Skip

M-K-D-B 26.09.2016 15:31
Servus,


Logdateien sehen bis auf das bisschen Adware bei AdwCleaner eigentlich gut aus, daher vermute ich eher ein Problem mit dem Router oder einer anderer Hardware.

Aber wir schauen alles durch:




Schritt 1
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.







Schritt 2

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.







Schritt 3
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
  • FRST erstellt nun zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von MBAM,
  • die Logdatei von JRT,
  • die beiden neuen Logdateien von FRST.

TheUnknown98 26.09.2016 17:18
Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 26.09.2016
Suchlaufzeit: 17:55
Protokolldatei:
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.09.26.07
Rootkit-Datenbank: v2016.09.26.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Robert

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 345332
Abgelaufene Zeit: 14 Min., 57 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
Code:
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.8 (09.20.2016)
Operating System: Windows 10 Home x64
Ran by Robert (Administrator) on 26.09.2016 at 18:11:28,17
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 3

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{093F479D-712E-46CD-9E06-62E734A05F68} (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.09.2016 at 18:12:58,41
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
# AdwCleaner v6.020 - Bericht erstellt am 26/09/2016 um 18:15:15
# Aktualisiert am 14/09/2016 von ToolsLib
# Datenbank : 2016-09-26.1 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Robert - ROBERT-PC
# Gestartet von : C:\Users\Robert\Downloads\adwcleaner_6.020 (2).exe
# Modus: Löschen
# Unterstützung : https://toolslib.net/forum



***** [ Dienste ] *****



***** [ Ordner ] *****



***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com


***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1491 Bytes] - [08/05/2016 23:45:59]
C:\AdwCleaner\AdwCleaner[C3].txt - [1506 Bytes] - [13/09/2015 12:37:23]
C:\AdwCleaner\AdwCleaner[C4].txt - [725 Bytes] - [13/09/2015 14:03:38]
C:\AdwCleaner\AdwCleaner[C5].txt - [3604 Bytes] - [24/09/2016 22:19:00]
C:\AdwCleaner\AdwCleaner[C6].txt - [1638 Bytes] - [26/09/2016 18:15:15]
C:\AdwCleaner\AdwCleaner[R1].txt - [922 Bytes] - [28/02/2015 22:08:53]
C:\AdwCleaner\AdwCleaner[S10].txt - [2672 Bytes] - [25/09/2016 14:03:40]
C:\AdwCleaner\AdwCleaner[S11].txt - [2746 Bytes] - [26/09/2016 18:14:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [2370 Bytes] - [28/02/2015 22:11:15]
C:\AdwCleaner\AdwCleaner[S2].txt - [1411 Bytes] - [08/05/2016 23:57:12]
C:\AdwCleaner\AdwCleaner[S3].txt - [4632 Bytes] - [13/09/2015 12:35:03]
C:\AdwCleaner\AdwCleaner[S4].txt - [654 Bytes] - [13/09/2015 13:16:04]
C:\AdwCleaner\AdwCleaner[S5].txt - [655 Bytes] - [13/09/2015 14:02:53]
C:\AdwCleaner\AdwCleaner[S6].txt - [3439 Bytes] - [24/09/2016 20:42:24]
C:\AdwCleaner\AdwCleaner[S7].txt - [3516 Bytes] - [24/09/2016 22:18:51]
C:\AdwCleaner\AdwCleaner[S8].txt - [2318 Bytes] - [24/09/2016 23:41:46]
C:\AdwCleaner\AdwCleaner[S9].txt - [2596 Bytes] - [25/09/2016 00:26:56]

########## EOF - C:\AdwCleaner\AdwCleaner[C6].txt - [2586 Bytes] ##########
Das war dann alles an Logfiles. Was hat es mit dem komischen Chromebild an sich? (der screenshot oben)

M-K-D-B 27.09.2016 15:39
Zitat:
Zitat von TheUnknown98 (Beitrag 1612448)
Das war dann alles an Logfiles.
neue FRST Logfiles fehlen noch.


Zitat:
Zitat von TheUnknown98 (Beitrag 1612448)
Was hat es mit dem komischen Chromebild an sich? (der screenshot oben)
Ich glaube ich bin blind... wo soll weiter oben ein Screenshot sein :confused:


Router schon zurückgesetzt?

TheUnknown98 27.09.2016 19:29
Huch sorry stimmt ja.
In meinem Startbeitrag sind 4 Bilder, 2x vom CMD Ping,1x Speedtest und 1x Chrome beim start. Hier der Link zum Chromebild: hxxp://www.directupload.net/file/d/4488/vmo76ju7_png.htm (geht nicht als link einzustellen)

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2016
durchgeführt von Robert (Administrator) auf ROBERT-PC (27-09-2016 20:27:02)
Gestartet von C:\Users\Robert\Downloads
Geladene Profile: Robert (Verfügbare Profile: Robert)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
() C:\Riot Games\LolScreenSaver\service\service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Electronic Arts) D:\Programme\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
() D:\Programme\ASRock\APP Shop\AsrAPPShop.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Mega Limited) C:\Users\Robert\AppData\Local\MEGAsync\MEGAsync.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.82_none_5be7b69702339d1d\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
(Microsoft Corporation) C:\Windows\Temp\13450A75-28D1-43DE-9D81-092F0C1FADDF\DismHost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [S.T.R.I.K.E.3] => C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe [40448 2015-10-13] (Mad Catz Inc)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-10-01] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-10-01] (Saitek)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8027016 2016-09-16] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-06-07] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-08-23] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [2858272 2016-09-20] (Valve Corporation)
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\RunOnce: [Uninstall C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\MountPoints2: {333b1e1d-0261-11e6-b731-806e6f6e6963} - "F:\Start_CD1.exe"
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\SysWOW64\lol.scr [3721216 2016-03-30] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-04-14]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-09-23]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-05-06]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Robert\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7898c733-eea9-4619-b8a2-87d74268126c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8977439c-420c-4690-92a0-1c3fd828c708}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9c99597d-8865-4142-a507-7bff4e5db1e2}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKU\S-1-5-21-602619869-3711632484-3636400857-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-06-28] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-05] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-05] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-06-28] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\klby26cg.default
FF Homepage: google.de
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Extension: (Firefox Hotfix) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\klby26cg.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-24]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-06-28]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default [2016-09-27]
CHR Extension: (Google Präsentationen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-14]
CHR Extension: (Google Docs) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-14]
CHR Extension: (Google Drive) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-14]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-14]
CHR Extension: (Adblock Plus) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-25]
CHR Extension: (Google Tabellen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-14]
CHR Extension: (Kaspersky Protection) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-09-26]
CHR Extension: (Google Docs Offline) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-14]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-14]
CHR Extension: (Google Mail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-14]
CHR Extension: (Chrome Media Router) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-23]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-08-11] (Advanced Micro Devices) [Datei ist nicht signiert]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [374360 2016-05-27] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-11-24] (Rivet Networks) [Datei ist nicht signiert]
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 LolScreenSaverService; C:\Riot Games\LolScreenSaver\service\service.exe [707072 2016-03-30] () [Datei ist nicht signiert]
S3 Origin Client Service; D:\Programme\Origin\OriginClientService.exe [2130440 2016-09-16] (Electronic Arts)
R2 Origin Web Helper Service; D:\Programme\Origin\OriginWebHelperService.exe [2195472 2016-09-16] (Electronic Arts)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-06-07] (Plays.tv, LLC)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [314392 2016-08-11] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0307101.inf_amd64_4e33c7b9edea4480\atikmdag.sys [26560144 2016-09-21] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0307101.inf_amd64_4e33c7b9edea4480\atikmpag.sys [527896 2016-09-21] (Advanced Micro Devices, Inc.)
R3 AsrAutoChkUpdDrv; C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys [22280 2016-09-27] (ASRock Incorporation)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-07-24] (Advanced Micro Devices)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [146504 2015-11-20] (Rivet Networks, LLC.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 KillerEth; C:\Windows\System32\drivers\e22w10x64.sys [156744 2015-09-24] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [191312 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [435032 2016-09-26] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [182360 2016-09-26] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1012056 2016-09-26] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [50008 2016-09-26] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
U0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [223528 2016-09-26] (AO Kaspersky Lab)
U3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [252560 2016-09-26] (AO Kaspersky Lab)
U0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [112336 2016-09-26] (AO Kaspersky Lab)
U3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [167904 2016-09-26] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [127896 2016-09-26] (AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 SaiK1112; C:\Windows\system32\DRIVERS\SaiK1112.sys [180928 2015-10-13] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2015-12-08] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2015-12-08] (Saitek)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [40568 2016-06-15] (SteelSeries ApS)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [52952 2016-08-31] (SteelSeries ApS)
R3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-09-27 20:26 - 2016-09-27 20:26 - 00000000 ____D C:\Users\Robert\Downloads\FRST-OlderVersion
2016-09-27 20:24 - 2016-09-27 20:24 - 00000000 ___HD C:\OneDriveTemp
2016-09-26 18:12 - 2016-09-26 18:12 - 00001015 _____ C:\Users\Robert\Desktop\JRT.txt
2016-09-26 17:51 - 2016-09-26 18:10 - 01615456 _____ (Malwarebytes) C:\Users\Robert\Downloads\JRT.exe
2016-09-26 16:35 - 2016-09-26 16:35 - 00252560 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2016-09-26 16:25 - 2016-09-26 16:25 - 00223528 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2016-09-26 16:25 - 2016-09-26 16:25 - 00167904 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2016-09-26 16:25 - 2016-09-26 16:25 - 00112336 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2016-09-26 16:12 - 2016-09-26 16:12 - 00001473 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2016-09-26 16:12 - 2016-09-26 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2016-09-26 16:12 - 2016-09-26 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-09-26 16:12 - 2016-09-26 16:11 - 00002275 _____ C:\Users\Public\Desktop\Sicherer Zahlungsverkehr.lnk
2016-09-26 16:12 - 2016-09-26 16:11 - 00002213 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2016-09-26 16:08 - 2016-09-26 16:08 - 00000000 ____D C:\Users\Robert\AppData\LocalLow\AMD
2016-09-25 20:18 - 2016-09-25 20:18 - 00000000 ____D C:\WINDOWS\system32\ÿÿÿÿÿÿÿÿerStore
2016-09-25 20:17 - 2016-09-25 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-09-25 20:16 - 2016-09-25 20:17 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-09-25 13:31 - 2016-09-25 13:43 - 00083158 _____ C:\TDSSKiller.3.1.0.11_25.09.2016_13.31.38_log.txt
2016-09-25 13:31 - 2016-09-25 13:31 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Robert\Downloads\tdsskiller.exe
2016-09-25 13:23 - 2016-09-25 13:24 - 00054681 _____ C:\Users\Robert\Downloads\Addition.txt
2016-09-25 13:21 - 2016-09-27 20:27 - 00021124 _____ C:\Users\Robert\Downloads\FRST.txt
2016-09-25 13:21 - 2016-09-27 20:27 - 00000000 ____D C:\FRST
2016-09-25 13:21 - 2016-09-27 20:26 - 02403328 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2016-09-24 23:18 - 2016-09-26 16:28 - 00000000 ____D C:\Program Files\Common Files\AV
2016-09-24 23:18 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2016-09-24 23:16 - 2016-09-25 00:29 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-09-24 23:16 - 2016-09-24 23:18 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-09-24 23:16 - 2016-09-24 23:16 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-09-24 23:16 - 2016-09-24 23:16 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-09-24 23:16 - 2016-09-24 23:16 - 00000656 _____ C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000628 _____ C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000458 _____ C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-09-24 23:16 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-09-24 23:13 - 2016-09-24 23:13 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-09-24 23:09 - 2016-09-24 23:09 - 00000000 ____D C:\WINDOWS\pss
2016-09-24 23:03 - 2016-09-24 23:03 - 01474568 _____ C:\Users\Robert\Downloads\SpyBot Search Destroy - CHIP-Installer.exe
2016-09-24 22:47 - 2016-09-24 22:47 - 01474568 _____ C:\Users\Robert\Downloads\HijackThis - CHIP-Installer.exe
2016-09-24 22:36 - 2016-09-24 22:36 - 00000000 ____D C:\Users\Robert\AppData\Local\VirtualStore
2016-09-24 22:34 - 2016-09-24 22:34 - 00000000 ____D C:\zoek
2016-09-24 22:25 - 2016-09-24 22:37 - 00003157 _____ C:\runcheck.txt
2016-09-24 22:25 - 2016-09-24 22:35 - 00000000 ____D C:\zoek_backup
2016-09-24 22:25 - 2016-09-24 22:25 - 01309184 _____ C:\Users\Robert\Downloads\zoek.exe
2016-09-24 22:18 - 2016-09-25 14:02 - 03861056 _____ C:\Users\Robert\Downloads\adwcleaner_6.020 (2).exe
2016-09-24 22:18 - 2016-09-24 22:18 - 03861056 _____ C:\Users\Robert\Downloads\adwcleaner_6.020 (1).exe
2016-09-24 20:41 - 2016-09-24 20:41 - 03861056 _____ C:\Users\Robert\Downloads\AdwCleaner_6.020.exe
2016-09-24 20:37 - 2016-09-24 20:38 - 00038434 _____ C:\Users\Robert\Downloads\MTB.txt
2016-09-24 20:37 - 2016-09-24 20:37 - 00892416 _____ (Farbar) C:\Users\Robert\Downloads\MiniToolBox.exe
2016-09-24 20:07 - 2016-09-24 20:07 - 00000209 _____ C:\Users\Robert\Desktop\Counter-Strike Global Offensive.url
2016-09-21 20:56 - 2016-09-21 20:56 - 09396768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 07580696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-09-21 20:56 - 2016-09-21 20:56 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-09-21 20:56 - 2016-09-21 20:56 - 02454552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 02142232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 01342488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 01007128 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00900640 _____ (AMD) C:\WINDOWS\system32\coinst_16.40.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00759320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00751344 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-09-21 20:56 - 2016-09-21 20:56 - 00751344 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-09-21 20:56 - 2016-09-21 20:56 - 00634400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00532504 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00475624 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00467992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00411672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00302104 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00296472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00284704 _____ C:\WINDOWS\system32\GameManager64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00278552 _____ C:\WINDOWS\system32\clinfo.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00277016 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00257568 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00249376 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00242712 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00239640 _____ C:\WINDOWS\system32\atieah64.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00230432 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00217624 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00210968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00169504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00156248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00152096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00145944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00144416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00138776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00135920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00127000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00121888 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00120376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00120376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00119832 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00117808 _____ C:\WINDOWS\system32\kapp_ci.sbin
2016-09-21 20:56 - 2016-09-21 20:56 - 00117792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00113872 _____ C:\WINDOWS\system32\kapp_si.sbin
2016-09-21 20:56 - 2016-09-21 20:56 - 00112672 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00102672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00102672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00098848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00092184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00075800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00069144 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00017671 _____ C:\WINDOWS\system32\AMDKernelEvents.man
2016-09-21 20:56 - 2016-09-21 20:56 - 00000144 _____ C:\WINDOWS\SysWOW64\amd-vulkan32.json
2016-09-21 20:56 - 2016-09-21 20:56 - 00000144 _____ C:\WINDOWS\system32\amd-vulkan64.json
2016-09-18 16:52 - 2016-09-18 16:52 - 00000000 ____D C:\Users\Robert\Downloads\10_mp3_files (online-audio-converter.com)
2016-09-18 16:47 - 2016-09-18 16:47 - 73530200 _____ C:\Users\Robert\Downloads\10_mp3_files (online-audio-converter.com).zip
2016-09-17 15:55 - 2016-09-17 15:55 - 00000000 ____D C:\Users\Robert\Documents\LEGO Interactive
2016-09-17 15:53 - 2016-09-17 15:53 - 00000347 _____ C:\Users\Public\Desktop\Drome Racers.lnk
2016-09-17 15:53 - 2016-09-17 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO Interactive
2016-09-17 13:22 - 2016-09-17 13:22 - 00000212 _____ C:\Users\Robert\Desktop\Lethal League.url
2016-09-17 12:42 - 2016-09-17 12:42 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Padman
2016-09-16 17:17 - 2016-09-16 17:26 - 00000000 ____D C:\Users\Robert\Documents\FIFA 17 Demo
2016-09-16 15:56 - 2016-09-16 15:56 - 00000919 _____ C:\Users\Public\Desktop\FIFA 17 DEMO.lnk
2016-09-16 15:56 - 2016-09-16 15:56 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller
2016-09-16 15:56 - 2016-09-16 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17 DEMO
2016-09-16 13:20 - 2016-09-16 13:20 - 00000000 ____D C:\Users\Robert\.QtWebEngineProcess
2016-09-16 13:20 - 2016-09-16 13:20 - 00000000 ____D C:\Users\Robert\.Origin
2016-09-14 20:44 - 2016-09-07 07:49 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-09-14 20:44 - 2016-09-07 07:43 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-09-14 20:44 - 2016-09-07 07:41 - 00303968 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-14 20:44 - 2016-09-07 07:34 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-14 20:44 - 2016-09-07 07:34 - 01280352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-14 20:44 - 2016-09-07 07:33 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-14 20:44 - 2016-09-07 07:24 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-14 20:44 - 2016-09-07 07:18 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-09-14 20:44 - 2016-09-07 07:17 - 00853344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-09-14 20:44 - 2016-09-07 07:04 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-14 20:44 - 2016-09-07 07:01 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-09-14 20:44 - 2016-09-07 06:57 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-09-14 20:44 - 2016-09-07 06:56 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-09-14 20:44 - 2016-09-07 06:53 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-09-14 20:44 - 2016-09-07 06:53 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-09-14 20:44 - 2016-09-07 06:53 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-09-14 20:44 - 2016-09-07 06:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-09-14 20:44 - 2016-09-07 06:52 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-09-14 20:44 - 2016-09-07 06:52 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-09-14 20:44 - 2016-09-07 06:51 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-14 20:44 - 2016-09-07 06:51 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-09-14 20:44 - 2016-09-07 06:50 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-14 20:44 - 2016-09-07 06:50 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-09-14 20:44 - 2016-09-07 06:50 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-09-14 20:44 - 2016-09-07 06:49 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-09-14 20:44 - 2016-09-07 06:49 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-09-14 20:44 - 2016-09-07 06:48 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-14 20:44 - 2016-09-07 06:48 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-09-14 20:44 - 2016-09-07 06:46 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-14 20:44 - 2016-09-07 06:45 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-09-14 20:44 - 2016-09-07 06:45 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-14 20:44 - 2016-09-07 06:44 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-09-14 20:44 - 2016-09-07 06:43 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-09-14 20:44 - 2016-09-07 06:42 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-09-14 20:44 - 2016-09-07 06:39 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-14 20:44 - 2016-09-07 06:39 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-09-14 20:44 - 2016-09-07 06:36 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-09-14 20:44 - 2016-09-07 06:33 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-14 20:44 - 2016-09-07 06:31 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-09-14 20:44 - 2016-09-07 06:11 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-09-14 20:44 - 2016-08-06 06:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-14 20:44 - 2016-08-06 05:50 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-09-14 20:44 - 2016-08-06 05:48 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-14 20:44 - 2016-08-06 05:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-09-14 20:44 - 2016-08-06 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-09-14 20:44 - 2016-08-06 05:47 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-14 20:44 - 2016-08-06 05:43 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-09-14 20:44 - 2016-08-06 05:42 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-09-14 20:44 - 2016-08-06 05:40 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-14 20:44 - 2016-08-06 05:35 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-09-14 20:44 - 2016-08-06 05:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-14 20:44 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-09-14 20:44 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-09-14 20:44 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-14 20:44 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-09-14 20:44 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-09-14 20:44 - 2016-07-22 02:49 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-14 20:43 - 2016-09-07 08:10 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-09-14 20:43 - 2016-09-07 07:55 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-14 20:43 - 2016-09-07 07:54 - 01046976 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-14 20:43 - 2016-09-07 07:54 - 00885824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-14 20:43 - 2016-09-07 07:54 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-14 20:43 - 2016-09-07 07:54 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-14 20:43 - 2016-09-07 07:53 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-14 20:43 - 2016-09-07 07:53 - 02183792 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-14 20:43 - 2016-09-07 07:51 - 02214784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-14 20:43 - 2016-09-07 07:51 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-14 20:43 - 2016-09-07 07:51 - 01163696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-14 20:43 - 2016-09-07 07:50 - 07813472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-14 20:43 - 2016-09-07 07:50 - 00773200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-14 20:43 - 2016-09-07 07:48 - 02256224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-14 20:43 - 2016-09-07 07:48 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-09-14 20:43 - 2016-09-07 07:46 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 05622600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-14 20:43 - 2016-09-07 07:41 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-14 20:43 - 2016-09-07 07:39 - 01217880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-09-14 20:43 - 2016-09-07 07:39 - 00996192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-09-14 20:43 - 2016-09-07 07:37 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-09-14 20:43 - 2016-09-07 07:36 - 00405344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-14 20:43 - 2016-09-07 07:36 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-09-14 20:43 - 2016-09-07 07:34 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-09-14 20:43 - 2016-09-07 07:34 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-14 20:43 - 2016-09-07 07:33 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-14 20:43 - 2016-09-07 07:33 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-14 20:43 - 2016-09-07 07:33 - 00224096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-14 20:43 - 2016-09-07 07:32 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 01099616 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-09-14 20:43 - 2016-09-07 07:32 - 00988000 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-09-14 20:43 - 2016-09-07 07:32 - 00942432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-09-14 20:43 - 2016-09-07 07:32 - 00807776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-09-14 20:43 - 2016-09-07 07:30 - 01707512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-14 20:43 - 2016-09-07 07:30 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-14 20:43 - 2016-09-07 07:30 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 22218808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 08156592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 04130944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01990640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01066104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-09-14 20:43 - 2016-09-07 07:29 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-09-14 20:43 - 2016-09-07 07:27 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:27 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-09-14 20:43 - 2016-09-07 07:25 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-14 20:43 - 2016-09-07 07:24 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-14 20:43 - 2016-09-07 07:20 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-14 20:43 - 2016-09-07 07:18 - 01430208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 05721808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 02251432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-14 20:43 - 2016-09-07 07:17 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-09-14 20:43 - 2016-09-07 07:16 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-09-14 20:43 - 2016-09-07 07:15 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-14 20:43 - 2016-09-07 07:15 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 20965248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 06653592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01123360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00955520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-14 20:43 - 2016-09-07 07:12 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-09-14 20:43 - 2016-09-07 07:09 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-09-14 20:43 - 2016-09-07 07:08 - 07220224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-14 20:43 - 2016-09-07 07:07 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-14 20:43 - 2016-09-07 07:04 - 22566400 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-09-14 20:43 - 2016-09-07 07:04 - 05684736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-14 20:43 - 2016-09-07 07:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-09-14 20:43 - 2016-09-07 07:01 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-09-14 20:43 - 2016-09-07 07:00 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-09-14 20:43 - 2016-09-07 06:56 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-09-14 20:43 - 2016-09-07 06:54 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 01014784 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 17187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-14 20:43 - 2016-09-07 06:51 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-14 20:43 - 2016-09-07 06:51 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-09-14 20:43 - 2016-09-07 06:51 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-09-14 20:43 - 2016-09-07 06:49 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 09128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 03776512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 01905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-14 20:43 - 2016-09-07 06:49 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-14 20:43 - 2016-09-07 06:49 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 13434368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 07623680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 13081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 08122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01780736 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-14 20:43 - 2016-09-07 06:40 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01006080 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 00959488 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 12174336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 04747776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 02264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02630144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-14 20:43 - 2016-09-07 06:38 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-14 20:43 - 2016-09-07 06:38 - 01491968 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 07468032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-14 20:43 - 2016-09-07 06:37 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 03299328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-14 20:43 - 2016-09-07 06:35 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-09-14 20:43 - 2016-09-07 06:34 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-09-14 20:43 - 2016-09-07 06:33 - 02217472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-09-14 20:43 - 2016-09-07 06:32 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-09-14 20:43 - 2016-09-07 06:32 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-14 20:43 - 2016-09-07 06:31 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-09-14 20:43 - 2016-09-07 06:31 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-09-14 20:43 - 2016-08-06 06:26 - 00409944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-09-14 20:43 - 2016-08-06 06:16 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-09-14 20:43 - 2016-08-06 06:16 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-09-14 20:43 - 2016-08-06 06:13 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-14 20:43 - 2016-08-06 05:39 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-09-14 20:43 - 2016-08-06 05:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 20:43 - 2016-08-06 05:38 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-14 20:43 - 2016-08-06 05:37 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 20:43 - 2016-08-06 05:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-09-14 20:43 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-09-14 20:43 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-14 20:43 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-14 20:43 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-09-14 20:43 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-09-14 20:43 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-14 20:43 - 2016-07-22 03:27 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-14 20:43 - 2016-07-22 03:27 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-31 19:48 - 2016-08-27 07:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-31 19:48 - 2016-08-27 06:58 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-08-31 19:48 - 2016-08-27 06:39 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-08-31 19:48 - 2016-08-27 06:38 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-08-31 19:48 - 2016-08-27 06:38 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-08-31 19:48 - 2016-08-27 06:37 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-08-31 19:48 - 2016-08-27 06:25 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-08-31 19:48 - 2016-08-20 08:05 - 01377008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-31 19:48 - 2016-08-20 07:34 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-08-31 19:48 - 2016-08-20 07:22 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-08-31 19:48 - 2016-08-20 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-08-31 19:48 - 2016-08-20 07:21 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-08-31 19:48 - 2016-08-20 07:20 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-08-31 19:48 - 2016-08-20 07:19 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:19 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-08-31 19:48 - 2016-08-20 07:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-08-31 19:48 - 2016-08-20 07:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-08-31 19:48 - 2016-08-20 07:17 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-08-31 19:48 - 2016-08-20 07:17 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-08-31 19:48 - 2016-08-20 07:16 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-08-31 19:48 - 2016-08-20 07:15 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-08-31 19:48 - 2016-08-20 07:14 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-08-31 19:48 - 2016-08-20 07:12 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-08-31 19:48 - 2016-08-20 07:12 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-08-31 19:48 - 2016-08-20 07:11 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-08-31 19:48 - 2016-08-20 07:08 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-08-31 19:48 - 2016-08-20 07:07 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-08-31 19:48 - 2016-08-20 07:07 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-08-31 19:48 - 2016-08-20 07:06 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-08-31 19:48 - 2016-08-20 07:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 03245056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-08-31 19:48 - 2016-08-20 07:03 - 02846208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-08-31 19:48 - 2016-08-20 07:01 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-08-31 19:48 - 2016-08-20 07:00 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-08-31 19:48 - 2016-08-20 06:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-08-31 19:48 - 2016-08-20 06:58 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-08-31 19:48 - 2016-08-20 06:58 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 02711040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 02143232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-08-31 19:48 - 2016-08-20 06:55 - 00726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-31 19:48 - 2016-08-20 06:54 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-08-31 19:48 - 2016-08-20 06:51 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-08-31 19:48 - 2016-08-06 06:18 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-08-31 19:48 - 2016-08-06 06:13 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-08-31 19:48 - 2016-08-06 06:08 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-08-31 19:48 - 2016-08-06 06:03 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-08-31 19:48 - 2016-08-06 05:48 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-08-31 19:48 - 2016-08-06 05:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-08-31 19:48 - 2016-08-06 05:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-31 19:48 - 2016-08-06 05:47 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-08-31 19:48 - 2016-08-06 05:46 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-08-31 19:48 - 2016-08-06 05:46 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-08-31 19:48 - 2016-08-06 05:44 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-08-31 19:48 - 2016-08-06 05:44 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-08-31 19:48 - 2016-08-06 05:43 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-31 19:48 - 2016-08-06 05:43 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-08-31 19:48 - 2016-08-06 05:39 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-08-31 19:48 - 2016-08-06 05:39 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-08-31 19:48 - 2016-08-06 05:36 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 01052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-08-31 19:48 - 2016-08-06 05:29 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-08-31 19:48 - 2016-08-06 05:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-08-31 19:48 - 2016-08-06 05:28 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-08-31 19:48 - 2016-08-06 05:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-08-31 19:48 - 2016-08-06 05:23 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-31 19:48 - 2016-08-06 05:21 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-31 19:47 - 2016-08-27 14:45 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-08-31 19:47 - 2016-08-27 11:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-08-31 19:47 - 2016-08-27 06:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-08-31 19:47 - 2016-08-27 06:43 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-08-31 19:47 - 2016-08-20 08:06 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-31 19:47 - 2016-08-20 08:03 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-08-31 19:47 - 2016-08-20 07:46 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-08-31 19:47 - 2016-08-20 07:21 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-08-31 19:47 - 2016-08-20 07:20 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-08-31 19:47 - 2016-08-20 07:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-31 19:47 - 2016-08-20 07:14 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-08-31 19:47 - 2016-08-20 07:14 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-08-31 19:47 - 2016-08-20 07:13 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-08-31 19:47 - 2016-08-20 07:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-31 19:47 - 2016-08-20 07:11 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-08-31 19:47 - 2016-08-20 07:11 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-08-31 19:47 - 2016-08-20 07:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-31 19:47 - 2016-08-20 07:07 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-08-31 19:47 - 2016-08-20 07:04 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-31 19:47 - 2016-08-19 03:33 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-08-31 19:47 - 2016-08-06 06:33 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-08-31 19:47 - 2016-08-06 06:31 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-31 19:47 - 2016-08-06 06:31 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-08-31 19:47 - 2016-08-06 06:29 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-08-31 19:47 - 2016-08-06 06:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-08-31 19:47 - 2016-08-06 06:26 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-08-31 19:47 - 2016-08-06 06:23 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-31 19:47 - 2016-08-06 06:17 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-08-31 19:47 - 2016-08-06 06:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-31 19:47 - 2016-08-06 06:16 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-31 19:47 - 2016-08-06 06:15 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-08-31 19:47 - 2016-08-06 06:13 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-08-31 19:47 - 2016-08-06 06:09 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-31 19:47 - 2016-08-06 06:04 - 00361096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-08-31 19:47 - 2016-08-06 06:03 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-08-31 19:47 - 2016-08-06 05:48 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-08-31 19:47 - 2016-08-06 05:48 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-08-31 19:47 - 2016-08-06 05:48 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-08-31 19:47 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-08-31 19:47 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-08-31 19:47 - 2016-08-06 05:47 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-08-31 19:47 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-08-31 19:47 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-08-31 19:47 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-08-31 19:47 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-08-31 19:47 - 2016-08-06 05:46 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-08-31 19:47 - 2016-08-06 05:46 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-31 19:47 - 2016-08-06 05:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-08-31 19:47 - 2016-08-06 05:45 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-08-31 19:47 - 2016-08-06 05:45 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-08-31 19:47 - 2016-08-06 05:45 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-08-31 19:47 - 2016-08-06 05:44 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-08-31 19:47 - 2016-08-06 05:43 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-08-31 19:47 - 2016-08-06 05:43 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-08-31 19:47 - 2016-08-06 05:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-08-31 19:47 - 2016-08-06 05:39 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-08-31 19:47 - 2016-08-06 05:33 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-08-31 19:47 - 2016-08-06 05:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-08-31 19:47 - 2016-08-06 05:26 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-31 19:47 - 2016-08-06 05:23 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-08-31 19:47 - 2016-08-05 11:14 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-08-31 19:47 - 2016-08-05 11:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-08-31 19:47 - 2016-08-05 11:05 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-08-31 19:47 - 2016-08-05 10:29 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-08-31 19:47 - 2016-08-05 10:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-08-31 19:47 - 2016-08-05 10:23 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-08-31 19:47 - 2016-08-05 10:22 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-08-31 19:47 - 2016-08-05 10:20 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-08-31 19:47 - 2016-08-05 10:20 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-08-31 19:47 - 2016-08-05 10:18 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-08-31 19:47 - 2016-08-05 10:08 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-08-31 19:45 - 2016-08-06 05:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-08-31 19:45 - 2016-08-06 05:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-31 18:27 - 2016-08-31 19:18 - 00000000 ____D C:\Users\Robert\Documents\Battlefield 1 Open Beta

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-09-27 20:26 - 2016-07-17 00:51 - 01468656 _____ C:\WINDOWS\system32\perfh007.dat
2016-09-27 20:26 - 2016-07-17 00:51 - 00368078 _____ C:\WINDOWS\system32\perfc007.dat
2016-09-27 20:26 - 2016-04-14 19:00 - 03275960 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-27 20:25 - 2016-08-06 15:48 - 00002992 _____ C:\WINDOWS\System32\Tasks\AsrAPPShop
2016-09-27 20:24 - 2016-04-21 17:23 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Raptr
2016-09-27 20:24 - 2016-04-14 21:09 - 00022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys
2016-09-27 20:24 - 2016-04-14 19:04 - 00000000 ___RD C:\Users\Robert\OneDrive
2016-09-27 20:23 - 2016-08-06 15:36 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-27 20:23 - 2016-05-10 16:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-09-27 20:23 - 2016-04-21 20:46 - 00000000 __SHD C:\Users\Robert\IntelGraphicsProfiles
2016-09-26 19:25 - 2016-08-06 15:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-09-26 18:16 - 2016-08-06 15:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-26 18:15 - 2016-08-06 15:36 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-09-26 18:15 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-09-26 18:15 - 2015-02-17 03:16 - 00000000 ____D C:\AdwCleaner
2016-09-26 17:55 - 2016-05-06 13:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-26 17:48 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-09-26 17:47 - 2016-05-10 16:17 - 01012056 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2016-09-26 17:47 - 2015-06-16 21:56 - 00127896 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2016-09-26 17:47 - 2015-06-11 19:35 - 00050008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
2016-09-26 17:46 - 2016-05-10 16:17 - 00435032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2016-09-26 16:12 - 2016-05-10 16:17 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-09-26 16:11 - 2016-07-16 13:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-09-26 16:11 - 2016-07-16 08:04 - 00008192 _____ C:\WINDOWS\system32\config\ELAM
2016-09-26 16:11 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-09-25 22:25 - 2016-08-06 15:40 - 00000000 ____D C:\Users\Robert
2016-09-25 20:23 - 2016-04-14 21:20 - 00000000 ____D C:\Users\Robert\AppData\Local\AMD
2016-09-25 20:17 - 2016-04-21 17:23 - 00000000 ____D C:\Program Files (x86)\AMD
2016-09-25 20:17 - 2016-04-14 19:25 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-09-25 20:15 - 2016-08-06 15:36 - 00000000 ____D C:\Program Files\AMD
2016-09-25 20:14 - 2015-07-09 13:31 - 00000000 ____D C:\AMD
2016-09-25 19:59 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-24 22:18 - 2016-04-14 19:18 - 00001367 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-24 21:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-24 20:07 - 2016-04-14 22:11 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-09-24 18:09 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-23 14:45 - 2016-06-25 10:19 - 00000000 ____D C:\Users\Robert\AppData\Roaming\steelseries-engine-3-client
2016-09-21 20:56 - 2016-07-25 22:55 - 00149640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-09-21 20:56 - 2016-07-25 22:55 - 00137256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-09-21 20:56 - 2016-07-25 22:55 - 00110104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-09-21 20:56 - 2016-07-25 22:54 - 00135408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-09-21 20:56 - 2016-07-25 22:52 - 00184856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-09-21 20:56 - 2016-07-25 22:51 - 01007128 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-09-17 15:49 - 2016-04-14 23:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-17 11:34 - 2016-04-14 19:18 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-16 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-09-16 19:24 - 2016-05-19 16:29 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-09-16 18:43 - 2016-04-14 22:26 - 00000000 ____D C:\ProgramData\Origin
2016-09-16 18:39 - 2016-04-14 23:21 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Origin
2016-09-16 17:17 - 2016-04-14 22:26 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-09-16 13:20 - 2016-04-14 23:21 - 00000000 ____D C:\Users\Robert\AppData\Local\Origin
2016-09-15 20:26 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-09-14 22:41 - 2016-08-06 15:34 - 00231944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-09-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-09-14 20:48 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-14 20:48 - 2016-04-14 20:02 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-14 20:46 - 2016-04-14 20:02 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-07 18:32 - 2016-07-16 13:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-09-07 18:32 - 2016-07-16 13:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-03 16:55 - 2016-06-25 10:18 - 00000000 ____D C:\WINDOWS\Cnxt
2016-09-03 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-08-31 19:39 - 2016-07-16 13:43 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-31 19:38 - 2016-07-16 13:43 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-31 19:38 - 2016-07-16 13:42 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-31 19:38 - 2016-07-16 13:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-31 19:31 - 2016-08-06 15:48 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-08-31 00:39 - 2016-07-27 23:07 - 01804680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-08-31 00:39 - 2016-07-27 23:07 - 00052952 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-08-06 15:36 - 2016-08-06 15:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Robert\AppData\Local\Temp\7za.exe
C:\Users\Robert\AppData\Local\Temp\DaS_21.exe
C:\Users\Robert\AppData\Local\Temp\hijackthis.exe
C:\Users\Robert\AppData\Local\Temp\libeay32.dll
C:\Users\Robert\AppData\Local\Temp\msvcr120.dll
C:\Users\Robert\AppData\Local\Temp\NirCmd.exe
C:\Users\Robert\AppData\Local\Temp\PEVZ.EXE
C:\Users\Robert\AppData\Local\Temp\remove.exe
C:\Users\Robert\AppData\Local\Temp\sed.exe
C:\Users\Robert\AppData\Local\Temp\shortcut.exe
C:\Users\Robert\AppData\Local\Temp\sqlite3.dll
C:\Users\Robert\AppData\Local\Temp\swreg.exe
C:\Users\Robert\AppData\Local\Temp\swxcacls.exe
C:\Users\Robert\AppData\Local\Temp\wget.exe
C:\Users\Robert\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-09-21 22:07

==================== Ende von FRST.txt ============================

TheUnknown98 27.09.2016 19:29
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 25-09-2016
durchgeführt von Robert (27-09-2016 20:28:12)
Gestartet von C:\Users\Robert\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-06 13:54:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-602619869-3711632484-3636400857-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-602619869-3711632484-3636400857-503 - Limited - Disabled)
Gast (S-1-5-21-602619869-3711632484-3636400857-501 - Limited - Disabled)
Robert (S-1-5-21-602619869-3711632484-3636400857-1000 - Administrator - Enabled) => C:\Users\Robert

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{b7d2ce14-2f17-410d-bea7-9126b9d4bb31}) (Version: 2.0.2067.0 - Futuremark)
3DMark (Version: 2.0.2067.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
ACP Application (Version: 2016.0321.0955.20 - Advanced Micro Devices, Inc.) Hidden
ACP Application (Version: 2016.0811.0433.30 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
APP Shop v1.0.24 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.24 - ASRock Inc.)
Application Profiles (HKLM-x32\...\{D247B605-F874-E998-D599-8855A40B6825}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Assassin's Creed IV Black Flag (HKLM\...\Steam App 242050) (Version:  - Ubisoft Montreal)
Broforce (HKLM\...\Steam App 274190) (Version:  - Free Lives)
Catalyst Control Center Next Localization BR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Drome Racers (HKLM-x32\...\{EC1DCD6C-3AE0-42CE-8EAA-6886CC4400DC}) (Version:  - )
FIFA 17 DEMO (HKLM-x32\...\{39C00B2C-EA3C-4A6B-AECF-DADA0F09C2AE}) (Version: 1.0.45.26330 - Electronic Arts)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Futuremark SystemInfo (HKLM-x32\...\{5052D282-C9AE-48CC-A9F5-17058BEEAA50}) (Version: 4.45.590.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Killer Bandwidth Control Filter Driver (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{DB8A465E-67BE-4450-9C9A-FECEA6222B95}) (Version: 1.1.56.1651 - Rivet Networks)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
League-Bildschirmschoner (HKLM-x32\...\LolScreenSaver) (Version: W0.1.19-0.11.13-beta - Riot Games)
Lethal League (HKLM\...\Steam App 261180) (Version:  - Team Reptile)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.6.0.0 - Lightworks)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 47.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 de)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1 - Mozilla)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.12.2807 - Electronic Arts, Inc.)
PlanetSide 2 (HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
PlanetSide 2 (HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\DGC-PlanetSide 2) (Version: 1.0.3.192 - Daybreak Game Company)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.11.2-r113542-release - Plays.tv, LLC)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.6-r115593-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
S.T.R.I.K.E.3 (HKLM\...\{FE7BF330-49DA-4F3C-904A-1729C784B1EF}) (Version: 7.0.46.0 - Mad Catz Inc)
Skype™ 7.23 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.23.105 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.45.2 (HKLM\...\{4646A4CF-BEA5-475D-96D7-70E19E481603}) (Version: 7.0.45.2 - Mad Catz)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Starbound (HKLM\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.8.5 (HKLM\...\SteelSeries Engine 3) (Version: 3.8.5 - SteelSeries ApS)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version:  - )
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version:  - CD PROJEKT RED)
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.0 (HKLM\...\VulkanRT1.0.11.0) (Version: 1.0.11.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-2) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (Version: 1.0.3.1 - LunarG, Inc.) Hidden
Watch_Dogs (HKLM\...\Steam App 243470) (Version:  - Ubisoft)
Websuche (HKLM-x32\...\Websuche) (Version:  - Websuche)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WWE 2K16 (HKLM\...\Steam App 385730) (Version:  - Visual Concepts)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09C2CD33-AAB5-4BDA-8E94-479C1CD5AF3F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0C8D0A3C-E082-4701-9718-FE686F89EB08} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {11E753AD-37F8-43F6-BE36-8120145FE4DF} - System32\Tasks\{A50ACD54-9D1A-4B3C-8A83-6C52B070901A} => Chrome.exe hxxp://ui.skype.com/ui/0/7.23.0.105/de/abandoninstall?page=tsBing
Task: {17632F14-10DB-4C58-A453-C658B92B81E8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {17F791BD-5AD3-4A6F-A317-CA162BA67A09} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {31E1B680-5A2D-4971-BE3F-ACDE32A4CAC1} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3B44299D-72A6-428F-A63A-94C33ED05730} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {3DF1FB73-BA42-4E61-AF2F-1FFBBBED4B9D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {43BB892E-2CE6-40F9-BD4B-BA410F6EBC5E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {44352B7D-C8BF-4A10-A67E-E8669D7D7A82} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {46E2953C-D53A-4DF0-8D00-50D10BFA94CD} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {480DF89F-58D4-480A-96A6-B4BA11E2B03B} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {8397C076-4381-4706-A2FB-A3638CC02B1F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {8556FCB6-C5DB-4F95-8B7D-F5FD56ADE1DD} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {9CC1CB00-A807-4670-9041-667F61AED230} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A6DB36C8-8C23-4A57-9F48-A64CE05C24FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-14] (Google Inc.)
Task: {ACBCB651-1993-4F19-AA88-EC26B036FA3B} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {B5E8B632-80CD-45E1-BD4B-0D7C0AE5B619} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {C265CAEC-6B08-450B-974C-BD36C41AF6BB} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-09-16] (Advanced Micro Devices, Inc.)
Task: {C86906AE-C98A-45FF-8EEB-2517E858FE57} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {C9BA6FDA-F69A-42F8-8517-16FE1EAAB6DA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {C9BBCD29-F8C4-4520-B580-FE5150B4F4B2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {CE7C4228-B8DF-4A09-B34F-366C9E2481AD} - System32\Tasks\AsrAPPShop => D:\Programme\ASRock\APP Shop\AsrAPPShop.exe [2016-02-05] ()
Task: {CEE30A00-1612-4D03-ADBA-D4BA3A2ABAF2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {D0033271-1498-4EB5-A7B7-F66AA429450E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {D28FC26A-F488-49EA-B989-36BDE26433D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-14] (Google Inc.)
Task: {D6F21276-B55B-4696-BD14-4CC871B691A6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E51387D7-EBC4-44F7-B031-6CA92C9D7660} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F49EDD12-3400-4B4D-A97C-43D8DCCC2DE8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job =>
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job =>
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job =>

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-03-30 20:25 - 2016-03-30 20:25 - 00707072 _____ () C:\Riot Games\LolScreenSaver\service\service.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-14 21:08 - 2016-02-05 16:38 - 06134024 _____ () D:\Programme\ASRock\APP Shop\AsrAPPShop.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 01864384 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2014-05-01 16:13 - 2016-07-21 12:28 - 00592384 _____ () C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll
2016-05-27 15:50 - 2016-05-27 15:50 - 00402520 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-14 20:43 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-08-31 17:04 - 2016-08-31 17:05 - 00071168 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-08-31 17:04 - 2016-08-31 17:04 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-08-31 17:04 - 2016-08-31 17:05 - 35288064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-10-13 12:01 - 2015-10-13 12:01 - 12451840 _____ () C:\Program Files\Mad Catz\S.T.R.I.K.E.3\Pr0fileEditor_Forms.dll
2015-10-13 12:02 - 2015-10-13 12:02 - 00315392 _____ () C:\Program Files\Mad Catz\S.T.R.I.K.E.3\de\Pr0fileEditor_Forms.resources.dll
2016-09-24 23:16 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-09-24 23:16 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-09-24 23:16 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-09-24 23:16 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2016-09-24 23:16 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd
2015-12-07 22:57 - 2015-12-07 22:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd
2016-09-16 13:20 - 2016-09-16 13:19 - 02493440 _____ () D:\Programme\Origin\libGLESv2.dll
2016-09-17 11:34 - 2016-09-14 02:38 - 01806152 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll
2016-09-17 11:34 - 2016-09-14 02:38 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 01383616 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 00118976 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-07-21 12:28 - 2016-07-21 12:28 - 00482304 _____ () C:\Users\Robert\AppData\Local\MEGAsync\libsodium.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\winsound.pyd
2015-10-21 22:29 - 2015-10-21 22:29 - 00113171 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlc.dll
2015-10-21 22:29 - 2015-10-21 22:29 - 02396691 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlccore.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PIL._imaging.pyd
2015-06-27 01:09 - 2015-06-27 01:09 - 00271872 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\amd_ags.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00024064 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32pipe.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\gobject._gobject.pyd
2016-04-19 19:08 - 2016-04-19 19:08 - 02717595 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.42.129
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{BCBB0E84-34A4-4AF6-950B-86D64A735F82}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3ACE8694-A204-4952-866A-6A9B4C2141EE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0D634C0C-8EA0-430F-B187-DC82B6BF3B4B}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{9E304C16-2036-44DD-8164-CE32FB27BFEA}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{BDA475DA-FF5F-4B6C-A2AE-96FBE5616517}] => (Allow) D:\Programme\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{1A3C05C3-194C-49A8-A712-9316AE8F73EB}] => (Allow) D:\Programme\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E34FD60B-E34F-4B5F-831E-233F4326AB2C}] => (Allow) D:\Programme\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{930DDF24-B0A4-4185-B772-63057B0F2831}] => (Allow) D:\Programme\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{52953158-5E69-4DCC-98C4-1A517F9B8A2F}] => (Allow) D:\Programme\Steam\steamapps\common\WWE2K16\WWE2K16.exe
FirewallRules: [{EC2DE4CB-7C42-490D-BDCB-FCD48C2B878C}] => (Allow) D:\Programme\Steam\steamapps\common\WWE2K16\WWE2K16.exe
FirewallRules: [UDP Query User{F03AF432-EAD4-4418-8317-5A604F052AC1}C:\program files (x86)\dayz sa\dta\client.bin] => (Allow) C:\program files (x86)\dayz sa\dta\client.bin
FirewallRules: [TCP Query User{220124B9-2538-4CA3-BE4C-89BA60D20A5F}C:\program files (x86)\dayz sa\dta\client.bin] => (Allow) C:\program files (x86)\dayz sa\dta\client.bin
FirewallRules: [{FC748102-5582-4792-A5CB-1DFDF4562BA1}] => (Allow) C:\Program Files (x86)\DayZ SA\DayZ_Launcher.bat
FirewallRules: [{AFABE39E-EBE7-400D-A35A-911F2452330E}] => (Allow) C:\Program Files (x86)\DayZ SA\DayZ_Launcher.bat
FirewallRules: [{EEE0EB21-199E-4385-BC8F-AEEED1456839}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{66BFD2CC-9CA1-48CA-B2A5-1F6C16550CD0}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{693B4683-C7D3-41A3-B823-70408799721F}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{25F6BAB1-0DE5-41EE-8E0C-6F2F43951986}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [UDP Query User{9D4EADD7-33E0-4E2E-A549-C87CA5826A69}D:\spiele_original\gtav\gta5.exe] => (Allow) D:\spiele_original\gtav\gta5.exe
FirewallRules: [TCP Query User{C2DE8548-E29F-4FA6-805F-B1D9D4B6E46B}D:\spiele_original\gtav\gta5.exe] => (Allow) D:\spiele_original\gtav\gta5.exe
FirewallRules: [{941A5AEC-13D8-4C55-BBFF-75CBE6BE97D7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{7C37E6F1-7643-4895-BC83-4FB133085E3D}D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{67FF877D-4C69-4467-A6FD-4EBF0A9B41B2}D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{447A66D0-A02B-4FF8-ACDC-8EB1E50F0FB6}] => (Allow) LPort=1900
FirewallRules: [{5863DFC0-0D4C-4641-8251-73A39370CC5B}] => (Allow) LPort=2869
FirewallRules: [{1CAE5C9C-90A1-4C25-A120-41042285A303}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{07D16F92-CF93-4231-B0C3-673E4F1A16AB}] => (Allow) D:\Programme\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{7DB31681-D463-4597-B720-8C06923B2F03}] => (Allow) D:\Programme\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{8625D69B-42CD-4582-A94B-38853D68B8A9}] => (Allow) D:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{B18C9E49-8BAE-455F-BE7E-72F40D35EBBF}] => (Allow) D:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{75FA9935-9FBF-49FF-AE27-C24B956FAD80}] => (Allow) D:\Programme\Steam\Steam.exe
FirewallRules: [{B38C0955-3554-4865-9398-E2A918DC61FA}] => (Allow) D:\Programme\Steam\Steam.exe
FirewallRules: [{574A36E4-0CE6-4427-8E00-F12774ACBAA1}] => (Allow) C:\Users\Robert\Desktop\bin\steamwebhelper.exe
FirewallRules: [{A1CEB717-5AFA-4A04-B632-C109C216732D}] => (Allow) C:\Users\Robert\Desktop\bin\steamwebhelper.exe
FirewallRules: [{15AEB7CA-F05C-487A-9318-CD6E1DE6E96A}] => (Allow) C:\Users\Robert\Desktop\Steam.exe
FirewallRules: [{ADAA6F5C-79EB-4430-B65A-A4C351A8BAC0}] => (Allow) C:\Users\Robert\Desktop\Steam.exe
FirewallRules: [{E80FFAF9-0BAD-4B97-9154-3B2FB6011B6E}] => (Allow) D:\Programme\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{65113C81-ACE1-4C21-81C0-3320886D8E70}] => (Allow) D:\Programme\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{EA5472D3-7A13-4B0D-AFE7-FB7F4E4C514A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{8F2558B3-D649-4A70-B4D2-0A1DBB47D426}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6831B005-9630-4D74-AA0F-8D5F42400AEB}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{072EE914-B95F-40D1-8CDF-4FB36152AF20}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{DFC3AC44-82FF-4067-B36B-49FF130D32B6}] => (Allow) D:\Programme\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{C352662F-133D-4738-A363-38B9A276DA96}] => (Allow) D:\Programme\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{7D92CE4A-3220-48E1-B73A-FE9496A67E2D}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{80EEB321-5252-4A78-8929-108F7C462103}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{5D21DAB0-5401-4F94-A595-121D89C58371}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{8C849A75-AC74-456B-B924-4062744E309E}D:\spiele\wop\world of padman 1.5\wop.exe] => (Allow) D:\spiele\wop\world of padman 1.5\wop.exe
FirewallRules: [UDP Query User{713847AD-8732-4F22-9560-07D58AB5114C}D:\spiele\wop\world of padman 1.5\wop.exe] => (Allow) D:\spiele\wop\world of padman 1.5\wop.exe
FirewallRules: [{A3D6B625-F80D-43AD-9433-45601C5A1FC2}] => (Allow) D:\Programme\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{F0E26344-C637-4E05-8998-933047D7252B}] => (Allow) D:\Programme\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{0F1831F9-6426-4D7F-8863-F9F6413FDE34}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{1E426C5B-F72C-473B-9240-8A389D48CB2C}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{B30F7430-C13D-4132-A4EE-1E68F58E85DB}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{EF0224AB-BF87-4F59-ACFB-5A353D1C46DC}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{9E04B87A-FA08-4201-8660-650106665BBC}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{93BD187E-AD6E-4ECC-959D-EF5BA6E94E8D}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{6AC14A4B-27D6-4277-A5BA-782082724345}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{53BC520B-F309-4897-9EFA-9822C7FD40D6}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{76149DD0-1BCD-44A4-8773-7CA79CB453A3}] => (Allow) D:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C56BC153-6F1A-4A5F-A59F-475A3CC56B8E}] => (Allow) D:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Wiederherstellungspunkte =========================

11-09-2016 11:29:38 Geplanter Prüfpunkt
14-09-2016 20:42:01 Windows Update
17-09-2016 15:49:33 Installiert Drome Racers
24-09-2016 22:26:49 zoek.exe restore point

==================== Fehlerhafte Geräte im Gerätemanager =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/27/2016 08:22:57 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/26/2016 10:11:13 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/26/2016 06:16:16 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/26/2016 06:13:49 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (09/26/2016 06:13:32 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (09/26/2016 06:13:19 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (09/26/2016 06:13:01 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (09/26/2016 06:12:11 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error

Error: (09/26/2016 06:12:09 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "QueryFullProcessImageNameW" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070006, Das Handle ist ungültig.
.


Vorgang:
  Asynchroner Vorgang wird ausgeführt

Kontext:
  Aktueller Status: DoSnapshotSet

Error: (09/26/2016 06:12:06 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error


Systemfehler:
=============
Error: (09/27/2016 08:25:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (09/26/2016 06:15:30 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kaspersky Secure Connection Service 1.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Volumeschattenkopie" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Origin Web Helper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/26/2016 06:15:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/26/2016 06:14:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Plays.tv Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


CodeIntegrity:
===================================
  Date: 2016-09-24 21:34:42.546
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 21:27:02.624
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:10:57.068
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:09:54.719
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:09:54.207
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-08-25 17:32:03.834
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.

  Date: 2016-08-25 17:32:03.465
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.

  Date: 2016-08-24 17:33:42.855
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 7884.84 MB
Verfügbarer physikalischer RAM: 5195.28 MB
Summe virtueller Speicher: 15820.84 MB
Verfügbarer virtueller Speicher: 12395.23 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:249.12 GB) (Free:180.77 GB) NTFS
Drive d: () (Fixed) (Total:681.51 GB) (Free:215.9 GB) NTFS
Drive e: () (Fixed) (Total:931.41 GB) (Free:344.6 GB) NTFS
Drive g: () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 68D7788C)
Partition 1: (Not Active) - (Size=249.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=681.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 68D778F5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

M-K-D-B 28.09.2016 14:33
Servus,



Router schon zurückgesetzt?



Setze Google Chrome nach dieser Anleitung zurück.




Wir kontrollieren nochmal alles. :)



Hinweis: Der Suchlauf mit ESET kann länger dauern.



Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
start
CloseProcesses:
CMD: dir "%ProgramFiles%"
CMD: dir "%ProgramFiles(x86)%"
CMD: dir "%ProgramData%"
CMD: dir "%Appdata%"
CMD: dir "%LocalAppdata%"
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.







Schritt 2

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset







Schritt 3
Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
  • Starte die HitmanPro.exe
  • Klicke auf
  • Entferne den Haken bei
  • Klicke auf
    und
  • Akzeptiere die Lizenzbedingungen und klicke auf
  • Klicke auf

    und auf
  • Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
    und speichere die Logdatei auf Deinem Desktop.
  • Schließe HitmanPro und poste mir das Log.

 







Schritt 4
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Untersuchen.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.





http://www.trojaner-board.de/extra/lesestoff.pngGibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?







Bitte poste mit deiner nächsten Antwort
  • die Logdatei des FRST-Fix,
  • die Logdatei von ESET,
  • die Logdatei von HitmanPro,
  • die beiden neuen Logdateien von FRST,
  • die Beantwortung der gestellten Fragen.

TheUnknown98 29.09.2016 18:16
Nabend, hier das Fixlog
Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-09-2016
durchgeführt von Robert (28-09-2016 21:31:43) Run:1
Gestartet von C:\Users\Robert\Downloads
Geladene Profile: Robert (Verfügbare Profile: Robert)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
start
CloseProcesses:
CMD: dir "%ProgramFiles%"
CMD: dir "%ProgramFiles(x86)%"
CMD: dir "%ProgramData%"
CMD: dir "%Appdata%"
CMD: dir "%LocalAppdata%"
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
*****************

Prozess erfolgreich geschlossen.

========= dir "%ProgramFiles%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 604B-1E03

 Verzeichnis von C:\Program Files

27.08.2016  13:16    <DIR>          .
27.08.2016  13:16    <DIR>          ..
25.09.2016  20:15    <DIR>          AMD
24.09.2016  23:18    <DIR>          Common Files
14.04.2016  18:55    <DIR>          DVD Maker
23.04.2016  17:07    <DIR>          Futuremark
06.08.2016  15:36    <DIR>          Intel
14.09.2016  22:40    <DIR>          Internet Explorer
14.04.2016  23:12    <DIR>          Killer Networking
17.05.2016  16:17    <DIR>          Lightworks
14.04.2016  19:54    <DIR>          Mad Catz
06.08.2016  15:41    <DIR>          Microsoft Games
06.08.2016  16:27    <DIR>          MSBuild
06.08.2016  15:36    <DIR>          Realtek
06.08.2016  16:27    <DIR>          Reference Assemblies
27.08.2016  19:46    <DIR>          Rockstar Games
14.04.2016  19:56    <DIR>          SmartTechnology
25.06.2016  10:17    <DIR>          SteelSeries
27.08.2016  13:16    <DIR>          Sublime Text 2
14.09.2016  22:40    <DIR>          Windows Defender
14.09.2016  22:40    <DIR>          Windows Mail
14.09.2016  22:40    <DIR>          Windows Media Player
16.07.2016  13:47    <DIR>          Windows Multimedia Platform
06.08.2016  15:53    <DIR>          Windows NT
06.08.2016  15:41    <DIR>          Windows Photo Viewer
16.07.2016  13:47    <DIR>          Windows Portable Devices
16.07.2016  13:47    <DIR>          WindowsPowerShell
              0 Datei(en),              0 Bytes
              27 Verzeichnis(se), 193.560.129.536 Bytes frei

========= Ende von CMD: =========


========= dir "%ProgramFiles(x86)%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 604B-1E03

 Verzeichnis von C:\Program Files (x86)

24.09.2016  23:16    <DIR>          .
24.09.2016  23:16    <DIR>          ..
25.09.2016  20:17    <DIR>          AMD
17.09.2016  15:48    <DIR>          Common Files
23.04.2016  16:42    <DIR>          Futuremark
14.04.2016  19:18    <DIR>          Google
21.04.2016  20:46    <DIR>          Intel
14.09.2016  22:40    <DIR>          Internet Explorer
05.07.2016  17:05    <DIR>          Java
26.09.2016  16:12    <DIR>          Kaspersky Lab
06.05.2016  13:43    <DIR>          Malwarebytes Anti-Malware
17.04.2016  22:54    <DIR>          Microsoft SQL Server Compact Edition
16.07.2016  13:47    <DIR>          Microsoft.NET
05.07.2016  16:09    <DIR>          Mozilla Firefox
05.07.2016  16:09    <DIR>          Mozilla Maintenance Service
06.08.2016  16:27    <DIR>          MSBuild
16.09.2016  19:24    <DIR>          MSI Afterburner
05.07.2016  19:34    <DIR>          OpenOffice 4
21.04.2016  17:24    <DIR>          Raptr Inc
14.04.2016  23:15    <DIR>          Realtek
06.08.2016  16:27    <DIR>          Reference Assemblies
27.08.2016  19:46    <DIR>          Rockstar Games
04.05.2016  19:54    <DIR>          Skype
24.09.2016  23:18    <DIR>          Spybot - Search & Destroy 2
05.05.2016  20:35    <DIR>          Ubisoft
25.09.2016  20:17    <DIR>          VulkanRT
14.09.2016  22:40    <DIR>          Windows Defender
17.04.2016  22:54    <DIR>          Windows Live
14.09.2016  22:40    <DIR>          Windows Mail
03.09.2016  00:08    <DIR>          Windows Media Player
16.07.2016  13:47    <DIR>          Windows Multimedia Platform
16.07.2016  13:47    <DIR>          Windows NT
06.08.2016  15:41    <DIR>          Windows Photo Viewer
16.07.2016  13:47    <DIR>          Windows Portable Devices
16.07.2016  13:47    <DIR>          WindowsPowerShell
              0 Datei(en),              0 Bytes
              35 Verzeichnis(se), 193.560.121.344 Bytes frei

========= Ende von CMD: =========


========= dir "%ProgramData%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 604B-1E03

 Verzeichnis von C:\ProgramData

14.04.2016  21:09    <DIR>          ASRock
21.04.2016  17:29    <DIR>          ATI
25.06.2016  10:18    <DIR>          Conexant
14.04.2016  23:12    <DIR>          Downloaded Installations
16.09.2016  17:17    <DIR>          Electronic Arts
23.04.2016  17:07    <DIR>          Futuremark
17.05.2016  16:17    <DIR>          Geevs
14.04.2016  23:18    <DIR>          Intel
28.09.2016  21:26    <DIR>          Kaspersky Lab
14.04.2016  23:14    <DIR>          Killer
06.05.2016  13:43    <DIR>          Malwarebytes
06.08.2016  16:04    <DIR>          Microsoft OneDrive
26.09.2016  16:11            8.192 ntuser.dat
05.07.2016  17:07    <DIR>          Oracle
16.09.2016  18:43    <DIR>          Origin
06.08.2016  15:43    <DIR>          regid.1991-06.com.microsoft
16.04.2016  11:45    <DIR>          Riot Games
04.05.2016  19:54    <DIR>          Skype
14.04.2016  19:56    <DIR>          SmartTechnology
25.09.2016  00:29    <DIR>          Spybot - Search & Destroy
06.05.2016  18:10    <DIR>          Steam
25.06.2016  10:17    <DIR>          SteelSeries
06.08.2016  16:02    <DIR>          USOPrivate
06.08.2016  16:02    <DIR>          USOShared
              1 Datei(en),          8.192 Bytes
              23 Verzeichnis(se), 193.560.088.576 Bytes frei

========= Ende von CMD: =========


========= dir "%Appdata%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 604B-1E03

 Verzeichnis von C:\Users\Robert\AppData\Roaming

24.09.2016  22:35    <DIR>          .
24.09.2016  22:35    <DIR>          ..
23.04.2016  21:48    <DIR>          .minecraft
14.04.2016  19:02    <DIR>          Adobe
21.04.2016  17:29    <DIR>          ATI
12.08.2016  19:37    <DIR>          HelloGames
14.04.2016  17:46    <DIR>          Identities
20.04.2016  18:58    <DIR>          java
21.04.2016  17:24    <DIR>          library_dir
16.04.2016  12:56    <DIR>          LolClient
14.04.2016  19:15    <DIR>          Macromedia
21.11.2010  09:16    <DIR>          Media Center Programs
05.07.2016  16:09    <DIR>          Mozilla
18.08.2016  18:22    <DIR>          obs-studio
05.07.2016  19:35    <DIR>          OpenOffice
16.09.2016  18:39    <DIR>          Origin
17.09.2016  12:42    <DIR>          Padman
11.06.2016  00:43    <DIR>          PlaysTV
28.09.2016  21:28    <DIR>          Raptr
16.04.2016  11:44    <DIR>          Riot Games
14.06.2016  18:51    <DIR>          Skype
06.05.2016  13:51    <DIR>          Sony
06.05.2016  14:47    <DIR>          Steam
23.09.2016  14:45    <DIR>          steelseries-engine-3-client
05.07.2016  17:06    <DIR>          Sun
              0 Datei(en),              0 Bytes
              25 Verzeichnis(se), 193.559.937.024 Bytes frei

========= Ende von CMD: =========


========= dir "%LocalAppdata%" =========

 Volume in Laufwerk C: hat keine Bezeichnung.
 Volumeseriennummer: 604B-1E03

 Verzeichnis von C:\Users\Robert\AppData\Local

28.09.2016  21:26    <DIR>          .
28.09.2016  21:26    <DIR>          ..
14.04.2016  21:25    <DIR>          Ahri.tw
25.09.2016  20:23    <DIR>          AMD
21.04.2016  17:29    <DIR>          ATI
14.04.2016  21:09    <DIR>          CEF
14.04.2016  19:20    <DIR>          Comms
06.08.2016  18:34    <DIR>          ConnectedDevicesPlatform
11.07.2016  20:47    <DIR>          Daybreak Game Company
24.09.2016  21:24    <DIR>          Diagnostics
23.04.2016  17:08    <DIR>          Futuremark
15.04.2016  16:40    <DIR>          Google
23.04.2016  16:41    <DIR>          IsolatedStorage
06.05.2016  15:31    <DIR>          Mega Limited
19.08.2016  22:04    <DIR>          MEGAsync
25.09.2016  20:39    <DIR>          Microsoft
05.07.2016  16:07    <DIR>          MicrosoftEdge
05.07.2016  16:15    <DIR>          Mozilla
16.09.2016  13:20    <DIR>          Origin
06.08.2016  18:55    <DIR>          Packages
14.04.2016  21:08    <DIR>          Programs
14.04.2016  19:02    <DIR>          Publishers
24.04.2016  20:25    <DIR>          Rockstar Games
11.07.2016  20:47    <DIR>          SCE
04.06.2016  11:47    <DIR>          SmartTechnology
06.05.2016  14:27    <DIR>          Sony
14.04.2016  21:09    <DIR>          Steam
28.09.2016  21:31    <DIR>          Temp
14.04.2016  19:02    <DIR>          TileDataLayer
05.05.2016  20:36    <DIR>          Ubisoft Game Launcher
24.09.2016  22:36    <DIR>          VirtualStore
16.05.2016  22:20    <DIR>          Windows Live
              0 Datei(en),              0 Bytes
              32 Verzeichnis(se), 193.559.805.952 Bytes frei

========= Ende von CMD: =========


========= RemoveProxy: =========

HKU\S-1-5-21-602619869-3711632484-3636400857-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt


========= Ende von RemoveProxy: =========


========= ipconfig /flushdns =========


Windows-IP-Konfiguration

Der DNS-Aufl”sungscache wurde geleert.

========= Ende von CMD: =========


========= netsh winsock reset =========


Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.


========= Ende von CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 32768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 62979512 B
Java, Flash, Steam htmlcache => 401560601 B
Windows/system/drivers => 4579384 B
Edge => 67714986 B
Chrome => 537079881 B
Firefox => 43386712 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 31540872 B
NetworkService => 0 B
Robert => 349258068 B

RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 21:32:27 ====

TheUnknown98 29.09.2016 18:29
Liste der Anhänge anzeigen (Anzahl: 1)
Eset hatte ich gestern angefangen musste es allerdings aufgrund der Dauer abbrechen. Da war er mit der Untersuchung auf D angekommen und hatte 5 Ergebnisse auf C gefunden.

4x win32/fusioncore.l
1x win32/downloadsponsor.c

Ich habe zwischendurch nichts gelöscht, heute fand Eset NICHTS.

Router zurückgesetzt und Chrome auch. Chrome Reperaturset angewendet und komplett resettet, schwarzes Bild ist weg. Trotzdem kommen im Router dauernd unten angehängte Fehlermeldungen wenn ich mit meinem PC am Internet bin und ich bin auf Java gesperrt. (www.directupload.net/file/d/4488/y8n44znk_png.htm).

Was hat es mit der mysteriösen 1kb Datei End auf sich die sich noch auf D befindet und keinmal angemängelt wurde? (auf C ja, auf D nicht)

TheUnknown98 29.09.2016 18:31
Hitman PRO

Code:
HitmanPro 3.7.14.280
www.hitmanpro.com

  Computer name . . . . : ROBERT-PC
  Windows . . . . . . . : 10.0.0.14393.X64/8
  User name . . . . . . : ROBERT-PC\Robert
  UAC . . . . . . . . . : Enabled
  License . . . . . . . : Free

  Scan date . . . . . . : 2016-09-29 19:06:11
  Scan mode . . . . . . : Normal
  Scan duration . . . . : 5m 20s
  Disk access mode  . . : Direct disk access (SRB)
  Cloud . . . . . . . . : Internet
  Reboot  . . . . . . . : No

  Threats . . . . . . . : 5
  Traces  . . . . . . . : 9

  Objects scanned . . . : 1.519.873
  Files scanned . . . . : 28.339
  Remnants scanned  . . : 297.741 files / 1.193.793 keys

Malware _____________________________________________________________________

  C:\Users\Robert\AppData\Local\Temp\nsp6273.tmp\OCSetupHlp.dll
      Size . . . . . . . : 1.037.824 bytes
      Age  . . . . . . . : 0.2 days (2016-09-29 15:10:42)
      Entropy  . . . . . : 6.5
      SHA-256  . . . . . : 39AEB5F5DDAC61812F21B173DAF679E5B0E9BDC73B81FDB08AD2D664B967151B
      Product
      Publisher
      Description
      Version  . . . . . : 2.1.0.103
      Copyright
      LanguageID . . . . : 1033
    > HitmanPro  . . . . : App/Generic-HA
      Fuzzy  . . . . . . : 105.0
      Forensic Cluster
        -3.0s C:\Users\Robert\AppData\Local\Temp\nsp6273.tmp\
          0.0s C:\Users\Robert\AppData\Local\Temp\nsp6273.tmp\OCSetupHlp.dll
          3.9s C:\Users\Robert\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\INetCache\3ZNVOITS\configuration[1].xml
          4.3s C:\Users\Robert\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\INetCookies\10K7K95T.cookie
          5.6s C:\Users\Robert\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\AC\INetCache\7Y06QY81\cloudcollection[8].json

  C:\Users\Robert\Downloads\DaVinci Resolve - CHIP-Installer.exe
      Size . . . . . . . : 1.475.080 bytes
      Age  . . . . . . . : 146.2 days (2016-05-06 14:07:54)
      Entropy  . . . . . : 7.2
      SHA-256  . . . . . : AC07CED9FBF0302875134B7151B960582397B16FF9520383F468FA7B408A963B
      Needs elevation  . : Yes
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:Downloader.Win32.DownloadSponsor.pe
      Fuzzy  . . . . . . : 103.0

  C:\Users\Robert\Downloads\HijackThis - CHIP-Installer.exe
      Size . . . . . . . : 1.474.568 bytes
      Age  . . . . . . . : 4.8 days (2016-09-24 22:47:26)
      Entropy  . . . . . : 7.2
      SHA-256  . . . . . : 1DDF793E94F451EF800A7A54963FBBC210D1D17BE1C49B39928BDD690FCAE666
      Needs elevation  . : Yes
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:Downloader.Win32.DownloadSponsor.pe
      Fuzzy  . . . . . . : 105.0
      Forensic Cluster
          0.0s C:\Users\Robert\Downloads\HijackThis - CHIP-Installer.exe
          2.8s C:\Users\Robert\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D2B5168CDD0EBF4C0C8EA1C3A1FAE07F_5737FD5FAF168DD132199B1C063A25AB
          2.8s C:\Users\Robert\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D2B5168CDD0EBF4C0C8EA1C3A1FAE07F_5737FD5FAF168DD132199B1C063A25AB

  C:\Users\Robert\Downloads\Lightworks - CHIP-Installer.exe
      Size . . . . . . . : 1.475.080 bytes
      Age  . . . . . . . : 135.1 days (2016-05-17 16:14:23)
      Entropy  . . . . . : 7.2
      SHA-256  . . . . . : C5A183645691880E3A8ACFD23DAEE8DBD571E8B2C72F604306384CD7E0762475
      Needs elevation  . : Yes
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:Downloader.Win32.DownloadSponsor.pe
      Fuzzy  . . . . . . : 103.0

  C:\Users\Robert\Downloads\SpyBot Search Destroy - CHIP-Installer.exe
      Size . . . . . . . : 1.474.568 bytes
      Age  . . . . . . . : 4.8 days (2016-09-24 23:03:38)
      Entropy  . . . . . : 7.2
      SHA-256  . . . . . : 10DBB4732CE2219EF7096A6C9A21EB6CE679644534D21099C020340394B78E99
      Needs elevation  . : Yes
      RSA Key Size . . . : 2048
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:Downloader.Win32.DownloadSponsor.pe
      Fuzzy  . . . . . . : 105.0


Suspicious files ____________________________________________________________

  C:\Users\Robert\AppData\Local\Microsoft\Windows\INetCache\IE\QI5JULHB\FRST64[1].exe
      Size . . . . . . . : 2.403.328 bytes
      Age  . . . . . . . : 1.9 days (2016-09-27 20:26:43)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 914417D6B5AF30F6B3E538834D80DB5F48F6E630AC16B39BD87CC65BD8663990
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
        Program has no publisher information but prompts the user for permission elevation.
        Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
        Authors name is missing in version info. This is not common to most programs.
        Version control is missing. This file is probably created by an individual. This is not typical for most programs.
        Time indicates that the file appeared recently on this computer.
      Forensic Cluster
        -0.2s C:\Users\Robert\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
        -0.2s C:\Users\Robert\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_4F8D4D4F8A055DA96F5FDDC885E626A4
        -0.1s C:\Users\Robert\AppData\Local\Microsoft\Windows\INetCache\IE\31YPKO3H\FRST64[1].exe
          0.0s C:\Users\Robert\AppData\Local\Microsoft\Windows\INetCache\IE\QI5JULHB\FRST64[1].exe
          1.4s C:\Users\Robert\Downloads\FRST-OlderVersion\

  C:\Users\Robert\AppData\Local\Microsoft\Windows\INetCache\IE\QNCMGBOH\FRST64[2].exe
      Size . . . . . . . : 2.404.352 bytes
      Age  . . . . . . . : 0.9 days (2016-09-28 21:31:07)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 003671152E9C80D316767EC62EFA9A34F8F282CC80E338F13246262E5F9C529C
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
        Program has no publisher information but prompts the user for permission elevation.
        Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
        Authors name is missing in version info. This is not common to most programs.
        Version control is missing. This file is probably created by an individual. This is not typical for most programs.
        Time indicates that the file appeared recently on this computer.

  C:\Users\Robert\Downloads\FRST-OlderVersion\FRST64.exe
      Size . . . . . . . : 2.403.328 bytes
      Age  . . . . . . . : 4.2 days (2016-09-25 13:21:10)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 914417D6B5AF30F6B3E538834D80DB5F48F6E630AC16B39BD87CC65BD8663990
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
        Program has no publisher information but prompts the user for permission elevation.
        Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
        Authors name is missing in version info. This is not common to most programs.
        Version control is missing. This file is probably created by an individual. This is not typical for most programs.
        Time indicates that the file appeared recently on this computer.

  C:\Users\Robert\Downloads\FRST64.exe
      Size . . . . . . . : 2.404.352 bytes
      Age  . . . . . . . : 0.9 days (2016-09-28 21:31:07)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 003671152E9C80D316767EC62EFA9A34F8F282CC80E338F13246262E5F9C529C
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
        Program has no publisher information but prompts the user for permission elevation.
        Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
        Authors name is missing in version info. This is not common to most programs.
        Version control is missing. This file is probably created by an individual. This is not typical for most programs.
        Time indicates that the file appeared recently on this computer.
FRST
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-09-2016
durchgeführt von Robert (Administrator) auf ROBERT-PC (29-09-2016 19:13:07)
Gestartet von C:\Users\Robert\Downloads
Geladene Profile: Robert (Verfügbare Profile: Robert)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
() C:\Riot Games\LolScreenSaver\service\service.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(Electronic Arts) D:\Programme\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
() D:\Programme\ASRock\APP Shop\AsrAPPShop.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
(Mega Limited) C:\Users\Robert\AppData\Local\MEGAsync\MEGAsync.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_ep64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [S.T.R.I.K.E.3] => C:\Program Files\Mad Catz\S.T.R.I.K.E.3\STRIKE3_Profiler.exe [40448 2015-10-13] (Mad Catz Inc)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-10-01] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-10-01] (Saitek)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8027016 2016-09-16] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-06-07] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-08-23] (Raptr, Inc)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992 2016-05-20] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\Run: [Steam] => D:\Programme\Steam\steam.exe [2858272 2016-09-20] (Valve Corporation)
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\RunOnce: [Uninstall C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\MountPoints2: {333b1e1d-0261-11e6-b731-806e6f6e6963} - "F:\Start_CD1.exe"
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\SysWOW64\lol.scr [3721216 2016-03-30] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX32.dll [2016-07-21] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-04-14]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-09-23]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-05-06]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Robert\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7898c733-eea9-4619-b8a2-87d74268126c}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8977439c-420c-4690-92a0-1c3fd828c708}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9c99597d-8865-4142-a507-7bff4e5db1e2}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
SearchScopes: HKU\S-1-5-21-602619869-3711632484-3636400857-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-06-28] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-05] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-05] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-06-28] (AO Kaspersky Lab)

FireFox:
========
FF ProfilePath: C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\klby26cg.default
FF Homepage: google.de
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Extension: (Firefox Hotfix) - C:\Users\Robert\AppData\Roaming\Mozilla\Firefox\Profiles\klby26cg.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-24]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-06-28]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default [2016-09-29]
CHR Extension: (Google Präsentationen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-14]
CHR Extension: (Google Docs) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-14]
CHR Extension: (Google Drive) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-14]
CHR Extension: (YouTube) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-14]
CHR Extension: (Adblock Plus) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-25]
CHR Extension: (Google Tabellen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-14]
CHR Extension: (Kaspersky Protection) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-09-26]
CHR Extension: (Google Docs Offline) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-14]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-14]
CHR Extension: (Google Mail) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-14]
CHR Extension: (Chrome Media Router) - C:\Users\Robert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-23]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-08-11] (Advanced Micro Devices) [Datei ist nicht signiert]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [374360 2016-05-27] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-11-24] (Rivet Networks) [Datei ist nicht signiert]
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 LolScreenSaverService; C:\Riot Games\LolScreenSaver\service\service.exe [707072 2016-03-30] () [Datei ist nicht signiert]
S3 Origin Client Service; D:\Programme\Origin\OriginClientService.exe [2130440 2016-09-16] (Electronic Arts)
R2 Origin Web Helper Service; D:\Programme\Origin\OriginWebHelperService.exe [2195472 2016-09-16] (Electronic Arts)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-06-07] (Plays.tv, LLC)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [314392 2016-08-11] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0307101.inf_amd64_4e33c7b9edea4480\atikmdag.sys [26560144 2016-09-21] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0307101.inf_amd64_4e33c7b9edea4480\atikmpag.sys [527896 2016-09-21] (Advanced Micro Devices, Inc.)
R3 AsrAutoChkUpdDrv; C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys [22280 2016-09-29] (ASRock Incorporation)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [101376 2016-07-24] (Advanced Micro Devices)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [146504 2015-11-20] (Rivet Networks, LLC.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 KillerEth; C:\Windows\System32\drivers\e22w10x64.sys [156744 2015-09-24] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [191312 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [435032 2016-09-26] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [182360 2016-09-26] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1012056 2016-09-26] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [50008 2016-09-26] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
U0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [223528 2016-09-26] (AO Kaspersky Lab)
U3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [252560 2016-09-26] (AO Kaspersky Lab)
U0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [112336 2016-09-26] (AO Kaspersky Lab)
U3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [167904 2016-09-26] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [127896 2016-09-26] (AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [194480 2016-06-14] (AO Kaspersky Lab)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 SaiK1112; C:\Windows\system32\DRIVERS\SaiK1112.sys [180928 2015-10-13] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2015-12-08] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2015-12-08] (Saitek)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [40568 2016-06-15] (SteelSeries ApS)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [52952 2016-08-31] (SteelSeries ApS)
R3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-09-29 19:12 - 2016-09-29 19:12 - 00016940 _____ C:\Users\Robert\Desktop\HitmanPro_20160929_1911.txt
2016-09-29 19:05 - 2016-09-29 19:12 - 00000000 ____D C:\ProgramData\HitmanPro
2016-09-29 19:05 - 2016-09-29 19:05 - 11579432 _____ (SurfRight B.V.) C:\Users\Robert\Downloads\HitmanPro_x64.exe
2016-09-29 15:09 - 2016-09-29 15:09 - 00000000 ___HD C:\OneDriveTemp
2016-09-29 00:09 - 2016-09-29 15:09 - 00002992 _____ C:\WINDOWS\System32\Tasks\AsrAPPShop
2016-09-28 22:24 - 2016-09-28 22:24 - 00000816 _____ C:\Users\Public\Desktop\CDex.lnk
2016-09-28 22:24 - 2016-09-28 22:24 - 00000000 ____D C:\Users\Robert\AppData\Local\CDex
2016-09-28 22:24 - 2016-09-28 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex
2016-09-28 22:22 - 2016-09-28 22:22 - 19518773 _____ (Georgy Berdyshev) C:\Users\Robert\Downloads\CDex-1.81-win32.exe
2016-09-28 22:21 - 2016-09-28 22:21 - 06231296 _____ (Canneverbe Limited ) C:\Users\Robert\Downloads\cdbxp_setup_4.5.7.6321.exe
2016-09-28 21:39 - 2016-09-28 21:39 - 02870984 _____ (ESET) C:\Users\Robert\Downloads\esetsmartinstaller_deu.exe
2016-09-28 21:39 - 2016-09-28 21:39 - 00000000 ____D C:\Program Files (x86)\ESET
2016-09-28 21:31 - 2016-09-28 21:32 - 00010766 _____ C:\Users\Robert\Desktop\Fixlog.txt
2016-09-27 20:26 - 2016-09-28 21:31 - 00000000 ____D C:\Users\Robert\Downloads\FRST-OlderVersion
2016-09-26 18:12 - 2016-09-26 18:12 - 00001015 _____ C:\Users\Robert\Desktop\JRT.txt
2016-09-26 17:51 - 2016-09-26 18:10 - 01615456 _____ (Malwarebytes) C:\Users\Robert\Downloads\JRT.exe
2016-09-26 16:35 - 2016-09-26 16:35 - 00252560 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2016-09-26 16:25 - 2016-09-26 16:25 - 00223528 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2016-09-26 16:25 - 2016-09-26 16:25 - 00167904 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2016-09-26 16:25 - 2016-09-26 16:25 - 00112336 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2016-09-26 16:12 - 2016-09-26 16:12 - 00001473 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2016-09-26 16:12 - 2016-09-26 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2016-09-26 16:12 - 2016-09-26 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-09-26 16:12 - 2016-09-26 16:11 - 00002275 _____ C:\Users\Public\Desktop\Sicherer Zahlungsverkehr.lnk
2016-09-26 16:12 - 2016-09-26 16:11 - 00002213 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2016-09-26 16:08 - 2016-09-26 16:08 - 00000000 ____D C:\Users\Robert\AppData\LocalLow\AMD
2016-09-25 20:18 - 2016-09-25 20:18 - 00000000 ____D C:\WINDOWS\system32\ÿÿÿÿÿÿÿÿerStore
2016-09-25 20:17 - 2016-09-25 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-09-25 13:31 - 2016-09-25 13:43 - 00083158 _____ C:\TDSSKiller.3.1.0.11_25.09.2016_13.31.38_log.txt
2016-09-25 13:31 - 2016-09-25 13:31 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Robert\Downloads\tdsskiller.exe
2016-09-25 13:23 - 2016-09-27 20:29 - 00052465 _____ C:\Users\Robert\Downloads\Addition.txt
2016-09-25 13:21 - 2016-09-29 19:13 - 00020987 _____ C:\Users\Robert\Downloads\FRST.txt
2016-09-25 13:21 - 2016-09-29 19:13 - 00000000 ____D C:\FRST
2016-09-25 13:21 - 2016-09-28 21:31 - 02404352 _____ (Farbar) C:\Users\Robert\Downloads\FRST64.exe
2016-09-24 23:18 - 2016-09-26 16:28 - 00000000 ____D C:\Program Files\Common Files\AV
2016-09-24 23:18 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2016-09-24 23:16 - 2016-09-25 00:29 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-09-24 23:16 - 2016-09-24 23:18 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-09-24 23:16 - 2016-09-24 23:16 - 00001460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2016-09-24 23:16 - 2016-09-24 23:16 - 00001448 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2016-09-24 23:16 - 2016-09-24 23:16 - 00000656 _____ C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000628 _____ C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000458 _____ C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2016-09-24 23:16 - 2016-09-24 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2016-09-24 23:16 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe
2016-09-24 23:13 - 2016-09-24 23:13 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-09-24 23:09 - 2016-09-24 23:09 - 00000000 ____D C:\WINDOWS\pss
2016-09-24 23:03 - 2016-09-24 23:03 - 01474568 _____ C:\Users\Robert\Downloads\SpyBot Search Destroy - CHIP-Installer.exe
2016-09-24 22:47 - 2016-09-24 22:47 - 01474568 _____ C:\Users\Robert\Downloads\HijackThis - CHIP-Installer.exe
2016-09-24 22:36 - 2016-09-24 22:36 - 00000000 ____D C:\Users\Robert\AppData\Local\VirtualStore
2016-09-24 22:34 - 2016-09-24 22:34 - 00000000 ____D C:\zoek
2016-09-24 22:25 - 2016-09-24 22:37 - 00003157 _____ C:\runcheck.txt
2016-09-24 22:25 - 2016-09-24 22:35 - 00000000 ____D C:\zoek_backup
2016-09-24 22:25 - 2016-09-24 22:25 - 01309184 _____ C:\Users\Robert\Downloads\zoek.exe
2016-09-24 22:18 - 2016-09-25 14:02 - 03861056 _____ C:\Users\Robert\Downloads\adwcleaner_6.020 (2).exe
2016-09-24 22:18 - 2016-09-24 22:18 - 03861056 _____ C:\Users\Robert\Downloads\adwcleaner_6.020 (1).exe
2016-09-24 20:41 - 2016-09-24 20:41 - 03861056 _____ C:\Users\Robert\Downloads\AdwCleaner_6.020.exe
2016-09-24 20:37 - 2016-09-24 20:38 - 00038434 _____ C:\Users\Robert\Downloads\MTB.txt
2016-09-24 20:37 - 2016-09-24 20:37 - 00892416 _____ (Farbar) C:\Users\Robert\Downloads\MiniToolBox.exe
2016-09-24 20:07 - 2016-09-24 20:07 - 00000209 _____ C:\Users\Robert\Desktop\Counter-Strike Global Offensive.url
2016-09-21 20:56 - 2016-09-21 20:56 - 09396768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 07580696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-09-21 20:56 - 2016-09-21 20:56 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-09-21 20:56 - 2016-09-21 20:56 - 02454552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 02142232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 01342488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 01007128 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00900640 _____ (AMD) C:\WINDOWS\system32\coinst_16.40.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00759320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00751344 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-09-21 20:56 - 2016-09-21 20:56 - 00751344 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-09-21 20:56 - 2016-09-21 20:56 - 00634400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00532504 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00475624 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00467992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00411672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00302104 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00296472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00284704 _____ C:\WINDOWS\system32\GameManager64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00278552 _____ C:\WINDOWS\system32\clinfo.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00277016 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00257568 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00249376 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00242712 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00239640 _____ C:\WINDOWS\system32\atieah64.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00230432 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00217624 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-09-21 20:56 - 2016-09-21 20:56 - 00210968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00169504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00156248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00152096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00145944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00144416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00138776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00135920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00127000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00121888 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00120376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00120376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00119832 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00117808 _____ C:\WINDOWS\system32\kapp_ci.sbin
2016-09-21 20:56 - 2016-09-21 20:56 - 00117792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00113872 _____ C:\WINDOWS\system32\kapp_si.sbin
2016-09-21 20:56 - 2016-09-21 20:56 - 00112672 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00102672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00102672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00098848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00092184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00075800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00069144 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-09-21 20:56 - 2016-09-21 20:56 - 00017671 _____ C:\WINDOWS\system32\AMDKernelEvents.man
2016-09-21 20:56 - 2016-09-21 20:56 - 00000144 _____ C:\WINDOWS\SysWOW64\amd-vulkan32.json
2016-09-21 20:56 - 2016-09-21 20:56 - 00000144 _____ C:\WINDOWS\system32\amd-vulkan64.json
2016-09-18 16:52 - 2016-09-18 16:52 - 00000000 ____D C:\Users\Robert\Downloads\10_mp3_files (online-audio-converter.com)
2016-09-18 16:47 - 2016-09-18 16:47 - 73530200 _____ C:\Users\Robert\Downloads\10_mp3_files (online-audio-converter.com).zip
2016-09-17 15:55 - 2016-09-17 15:55 - 00000000 ____D C:\Users\Robert\Documents\LEGO Interactive
2016-09-17 15:53 - 2016-09-17 15:53 - 00000347 _____ C:\Users\Public\Desktop\Drome Racers.lnk
2016-09-17 15:53 - 2016-09-17 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO Interactive
2016-09-17 13:22 - 2016-09-17 13:22 - 00000212 _____ C:\Users\Robert\Desktop\Lethal League.url
2016-09-17 12:42 - 2016-09-17 12:42 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Padman
2016-09-16 17:17 - 2016-09-16 17:26 - 00000000 ____D C:\Users\Robert\Documents\FIFA 17 Demo
2016-09-16 15:56 - 2016-09-16 15:56 - 00000919 _____ C:\Users\Public\Desktop\FIFA 17 DEMO.lnk
2016-09-16 15:56 - 2016-09-16 15:56 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller
2016-09-16 15:56 - 2016-09-16 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17 DEMO
2016-09-16 13:20 - 2016-09-16 13:20 - 00000000 ____D C:\Users\Robert\.QtWebEngineProcess
2016-09-16 13:20 - 2016-09-16 13:20 - 00000000 ____D C:\Users\Robert\.Origin
2016-09-14 20:44 - 2016-09-07 07:49 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-09-14 20:44 - 2016-09-07 07:43 - 00764936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-09-14 20:44 - 2016-09-07 07:41 - 00303968 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-09-14 20:44 - 2016-09-07 07:34 - 01738040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-14 20:44 - 2016-09-07 07:34 - 01280352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-14 20:44 - 2016-09-07 07:33 - 00681304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-14 20:44 - 2016-09-07 07:24 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-09-14 20:44 - 2016-09-07 07:18 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-09-14 20:44 - 2016-09-07 07:17 - 00853344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-09-14 20:44 - 2016-09-07 07:04 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-09-14 20:44 - 2016-09-07 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-09-14 20:44 - 2016-09-07 07:02 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-09-14 20:44 - 2016-09-07 07:01 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-09-14 20:44 - 2016-09-07 07:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MosHost.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft-Windows-MapControls.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-09-14 20:44 - 2016-09-07 06:59 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-09-14 20:44 - 2016-09-07 06:58 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccessRes.dll
2016-09-14 20:44 - 2016-09-07 06:57 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-09-14 20:44 - 2016-09-07 06:56 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-09-14 20:44 - 2016-09-07 06:56 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-09-14 20:44 - 2016-09-07 06:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-09-14 20:44 - 2016-09-07 06:54 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-09-14 20:44 - 2016-09-07 06:53 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-09-14 20:44 - 2016-09-07 06:53 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-09-14 20:44 - 2016-09-07 06:53 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-09-14 20:44 - 2016-09-07 06:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-09-14 20:44 - 2016-09-07 06:52 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-09-14 20:44 - 2016-09-07 06:52 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-09-14 20:44 - 2016-09-07 06:51 - 00963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-14 20:44 - 2016-09-07 06:51 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-09-14 20:44 - 2016-09-07 06:50 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-14 20:44 - 2016-09-07 06:50 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-09-14 20:44 - 2016-09-07 06:50 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-09-14 20:44 - 2016-09-07 06:49 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-09-14 20:44 - 2016-09-07 06:49 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-09-14 20:44 - 2016-09-07 06:48 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-09-14 20:44 - 2016-09-07 06:48 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2016-09-14 20:44 - 2016-09-07 06:47 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-09-14 20:44 - 2016-09-07 06:46 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2016-09-14 20:44 - 2016-09-07 06:45 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-09-14 20:44 - 2016-09-07 06:45 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-14 20:44 - 2016-09-07 06:44 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2016-09-14 20:44 - 2016-09-07 06:43 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-09-14 20:44 - 2016-09-07 06:42 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-14 20:44 - 2016-09-07 06:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-09-14 20:44 - 2016-09-07 06:39 - 03116544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-14 20:44 - 2016-09-07 06:39 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-09-14 20:44 - 2016-09-07 06:36 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 00650240 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-09-14 20:44 - 2016-09-07 06:33 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-14 20:44 - 2016-09-07 06:31 - 00461312 _____ (Microsoft) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-09-14 20:44 - 2016-09-07 06:11 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-09-14 20:44 - 2016-08-06 06:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-14 20:44 - 2016-08-06 05:50 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-09-14 20:44 - 2016-08-06 05:48 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-09-14 20:44 - 2016-08-06 05:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-09-14 20:44 - 2016-08-06 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-09-14 20:44 - 2016-08-06 05:47 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-09-14 20:44 - 2016-08-06 05:43 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-09-14 20:44 - 2016-08-06 05:42 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-09-14 20:44 - 2016-08-06 05:40 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-09-14 20:44 - 2016-08-06 05:35 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-09-14 20:44 - 2016-08-06 05:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2016-09-14 20:44 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-09-14 20:44 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-09-14 20:44 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-09-14 20:44 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-09-14 20:44 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-09-14 20:44 - 2016-07-22 02:49 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-09-14 20:43 - 2016-09-07 08:10 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-09-14 20:43 - 2016-09-07 07:55 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-14 20:43 - 2016-09-07 07:54 - 01046976 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-14 20:43 - 2016-09-07 07:54 - 00885824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-14 20:43 - 2016-09-07 07:54 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-09-14 20:43 - 2016-09-07 07:54 - 00133472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-14 20:43 - 2016-09-07 07:53 - 02481768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-09-14 20:43 - 2016-09-07 07:53 - 02183792 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-14 20:43 - 2016-09-07 07:51 - 02214784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-14 20:43 - 2016-09-07 07:51 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-14 20:43 - 2016-09-07 07:51 - 01163696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-14 20:43 - 2016-09-07 07:50 - 07813472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-14 20:43 - 2016-09-07 07:50 - 00773200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-14 20:43 - 2016-09-07 07:48 - 02256224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-09-14 20:43 - 2016-09-07 07:48 - 00379744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-09-14 20:43 - 2016-09-07 07:46 - 00423776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 05622600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02049480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-14 20:43 - 2016-09-07 07:41 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-14 20:43 - 2016-09-07 07:39 - 01217880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-09-14 20:43 - 2016-09-07 07:39 - 00996192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-09-14 20:43 - 2016-09-07 07:37 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-09-14 20:43 - 2016-09-07 07:36 - 00405344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-14 20:43 - 2016-09-07 07:36 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-09-14 20:43 - 2016-09-07 07:34 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-09-14 20:43 - 2016-09-07 07:34 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-09-14 20:43 - 2016-09-07 07:34 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-09-14 20:43 - 2016-09-07 07:34 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-09-14 20:43 - 2016-09-07 07:33 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-14 20:43 - 2016-09-07 07:33 - 00450392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-14 20:43 - 2016-09-07 07:33 - 00224096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-14 20:43 - 2016-09-07 07:32 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-09-14 20:43 - 2016-09-07 07:32 - 01099616 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-09-14 20:43 - 2016-09-07 07:32 - 00988000 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-09-14 20:43 - 2016-09-07 07:32 - 00942432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-09-14 20:43 - 2016-09-07 07:32 - 00807776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-09-14 20:43 - 2016-09-07 07:30 - 01707512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-09-14 20:43 - 2016-09-07 07:30 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-09-14 20:43 - 2016-09-07 07:30 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 22218808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 08156592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 04130944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01990640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 01066104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00755656 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-09-14 20:43 - 2016-09-07 07:29 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-09-14 20:43 - 2016-09-07 07:29 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-09-14 20:43 - 2016-09-07 07:27 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:27 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2016-09-14 20:43 - 2016-09-07 07:25 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-14 20:43 - 2016-09-07 07:24 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-09-14 20:43 - 2016-09-07 07:24 - 00057400 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-14 20:43 - 2016-09-07 07:20 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-09-14 20:43 - 2016-09-07 07:18 - 01430208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 05721808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 02251432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-09-14 20:43 - 2016-09-07 07:17 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-09-14 20:43 - 2016-09-07 07:17 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-09-14 20:43 - 2016-09-07 07:16 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-09-14 20:43 - 2016-09-07 07:15 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-09-14 20:43 - 2016-09-07 07:15 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 20965248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 06653592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 01123360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00955520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-09-14 20:43 - 2016-09-07 07:13 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-09-14 20:43 - 2016-09-07 07:12 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-09-14 20:43 - 2016-09-07 07:09 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-09-14 20:43 - 2016-09-07 07:08 - 07220224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-14 20:43 - 2016-09-07 07:07 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-09-14 20:43 - 2016-09-07 07:04 - 22566400 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-09-14 20:43 - 2016-09-07 07:04 - 05684736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-09-14 20:43 - 2016-09-07 07:03 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-09-14 20:43 - 2016-09-07 07:02 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-09-14 20:43 - 2016-09-07 07:01 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-09-14 20:43 - 2016-09-07 07:01 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-09-14 20:43 - 2016-09-07 07:00 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosResource.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-09-14 20:43 - 2016-09-07 06:59 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlStringsRes.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AddressParser.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneutilRes.dll
2016-09-14 20:43 - 2016-09-07 06:58 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-09-14 20:43 - 2016-09-07 06:56 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-09-14 20:43 - 2016-09-07 06:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactActivation.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 06574592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-09-14 20:43 - 2016-09-07 06:55 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-09-14 20:43 - 2016-09-07 06:54 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-14 20:43 - 2016-09-07 06:54 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 02083840 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 01014784 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-09-14 20:43 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 17187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NmaDirect.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-09-14 20:43 - 2016-09-07 06:52 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-09-14 20:43 - 2016-09-07 06:51 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-14 20:43 - 2016-09-07 06:51 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-09-14 20:43 - 2016-09-07 06:51 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:50 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-09-14 20:43 - 2016-09-07 06:49 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 09128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 03776512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 01905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-14 20:43 - 2016-09-07 06:49 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-14 20:43 - 2016-09-07 06:49 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-14 20:43 - 2016-09-07 06:49 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-09-14 20:43 - 2016-09-07 06:48 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-09-14 20:43 - 2016-09-07 06:47 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 13434368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 07623680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-09-14 20:43 - 2016-09-07 06:46 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 01078784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-09-14 20:43 - 2016-09-07 06:45 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 13081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-09-14 20:43 - 2016-09-07 06:44 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-09-14 20:43 - 2016-09-07 06:43 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-09-14 20:43 - 2016-09-07 06:42 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 08122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 03435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 02947072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01891328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01780736 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-14 20:43 - 2016-09-07 06:40 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 01006080 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 00959488 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 12174336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 05384192 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 04747776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 02264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 02208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2016-09-14 20:43 - 2016-09-07 06:39 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02630144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02424320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-14 20:43 - 2016-09-07 06:38 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-14 20:43 - 2016-09-07 06:38 - 01491968 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-14 20:43 - 2016-09-07 06:38 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 07468032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-14 20:43 - 2016-09-07 06:37 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-09-14 20:43 - 2016-09-07 06:37 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-09-14 20:43 - 2016-09-07 06:36 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 03299328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-14 20:43 - 2016-09-07 06:35 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 04557824 _____ (Microsoft) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-09-14 20:43 - 2016-09-07 06:34 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-09-14 20:43 - 2016-09-07 06:34 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-09-14 20:43 - 2016-09-07 06:33 - 02217472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-09-14 20:43 - 2016-09-07 06:33 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-09-14 20:43 - 2016-09-07 06:32 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-09-14 20:43 - 2016-09-07 06:32 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-09-14 20:43 - 2016-09-07 06:31 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-09-14 20:43 - 2016-09-07 06:31 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-09-14 20:43 - 2016-08-06 06:26 - 00409944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-09-14 20:43 - 2016-08-06 06:16 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-09-14 20:43 - 2016-08-06 06:16 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-09-14 20:43 - 2016-08-06 06:13 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-14 20:43 - 2016-08-06 05:39 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-09-14 20:43 - 2016-08-06 05:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 20:43 - 2016-08-06 05:38 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-14 20:43 - 2016-08-06 05:37 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 20:43 - 2016-08-06 05:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-09-14 20:43 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-09-14 20:43 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-09-14 20:43 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-09-14 20:43 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2016-09-14 20:43 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-09-14 20:43 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-09-14 20:43 - 2016-07-22 03:27 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-14 20:43 - 2016-07-22 03:27 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-31 19:48 - 2016-08-27 07:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-31 19:48 - 2016-08-27 06:58 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-08-31 19:48 - 2016-08-27 06:39 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-08-31 19:48 - 2016-08-27 06:38 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-08-31 19:48 - 2016-08-27 06:38 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-08-31 19:48 - 2016-08-27 06:37 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-08-31 19:48 - 2016-08-27 06:25 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-08-31 19:48 - 2016-08-20 08:05 - 01377008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-31 19:48 - 2016-08-20 07:34 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-08-31 19:48 - 2016-08-20 07:22 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-08-31 19:48 - 2016-08-20 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-08-31 19:48 - 2016-08-20 07:21 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-08-31 19:48 - 2016-08-20 07:20 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-08-31 19:48 - 2016-08-20 07:20 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-08-31 19:48 - 2016-08-20 07:19 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-08-31 19:48 - 2016-08-20 07:19 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-08-31 19:48 - 2016-08-20 07:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-08-31 19:48 - 2016-08-20 07:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-08-31 19:48 - 2016-08-20 07:17 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-08-31 19:48 - 2016-08-20 07:17 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-08-31 19:48 - 2016-08-20 07:16 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-08-31 19:48 - 2016-08-20 07:15 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-08-31 19:48 - 2016-08-20 07:14 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-08-31 19:48 - 2016-08-20 07:14 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-08-31 19:48 - 2016-08-20 07:12 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-08-31 19:48 - 2016-08-20 07:12 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-08-31 19:48 - 2016-08-20 07:11 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-08-31 19:48 - 2016-08-20 07:08 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-08-31 19:48 - 2016-08-20 07:07 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-08-31 19:48 - 2016-08-20 07:07 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-08-31 19:48 - 2016-08-20 07:06 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-08-31 19:48 - 2016-08-20 07:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 03245056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-08-31 19:48 - 2016-08-20 07:04 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-08-31 19:48 - 2016-08-20 07:03 - 02846208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-08-31 19:48 - 2016-08-20 07:01 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-08-31 19:48 - 2016-08-20 07:00 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-08-31 19:48 - 2016-08-20 06:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-08-31 19:48 - 2016-08-20 06:58 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-08-31 19:48 - 2016-08-20 06:58 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 02711040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 02143232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-31 19:48 - 2016-08-20 06:56 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-08-31 19:48 - 2016-08-20 06:55 - 00726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-31 19:48 - 2016-08-20 06:54 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-08-31 19:48 - 2016-08-20 06:51 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-08-31 19:48 - 2016-08-06 06:18 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-08-31 19:48 - 2016-08-06 06:13 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-08-31 19:48 - 2016-08-06 06:08 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-08-31 19:48 - 2016-08-06 06:03 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-08-31 19:48 - 2016-08-06 05:48 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-08-31 19:48 - 2016-08-06 05:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-08-31 19:48 - 2016-08-06 05:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-31 19:48 - 2016-08-06 05:47 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-08-31 19:48 - 2016-08-06 05:46 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-08-31 19:48 - 2016-08-06 05:46 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-08-31 19:48 - 2016-08-06 05:45 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-08-31 19:48 - 2016-08-06 05:44 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-08-31 19:48 - 2016-08-06 05:44 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-08-31 19:48 - 2016-08-06 05:43 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-31 19:48 - 2016-08-06 05:43 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-08-31 19:48 - 2016-08-06 05:41 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-08-31 19:48 - 2016-08-06 05:39 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-08-31 19:48 - 2016-08-06 05:39 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-08-31 19:48 - 2016-08-06 05:36 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 01052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-08-31 19:48 - 2016-08-06 05:31 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-08-31 19:48 - 2016-08-06 05:29 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-08-31 19:48 - 2016-08-06 05:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-08-31 19:48 - 2016-08-06 05:28 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-08-31 19:48 - 2016-08-06 05:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-08-31 19:48 - 2016-08-06 05:23 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-31 19:48 - 2016-08-06 05:21 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-31 19:47 - 2016-08-27 14:45 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-08-31 19:47 - 2016-08-27 11:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-08-31 19:47 - 2016-08-27 06:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-08-31 19:47 - 2016-08-27 06:43 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-08-31 19:47 - 2016-08-20 08:06 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-31 19:47 - 2016-08-20 08:03 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-08-31 19:47 - 2016-08-20 07:46 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-08-31 19:47 - 2016-08-20 07:21 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-08-31 19:47 - 2016-08-20 07:20 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-08-31 19:47 - 2016-08-20 07:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-31 19:47 - 2016-08-20 07:14 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-08-31 19:47 - 2016-08-20 07:14 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-08-31 19:47 - 2016-08-20 07:13 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-08-31 19:47 - 2016-08-20 07:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-31 19:47 - 2016-08-20 07:11 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-08-31 19:47 - 2016-08-20 07:11 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-08-31 19:47 - 2016-08-20 07:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-31 19:47 - 2016-08-20 07:07 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-08-31 19:47 - 2016-08-20 07:04 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-31 19:47 - 2016-08-19 03:33 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-08-31 19:47 - 2016-08-06 06:33 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-08-31 19:47 - 2016-08-06 06:31 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-31 19:47 - 2016-08-06 06:31 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-08-31 19:47 - 2016-08-06 06:29 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-08-31 19:47 - 2016-08-06 06:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-08-31 19:47 - 2016-08-06 06:26 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-08-31 19:47 - 2016-08-06 06:23 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-31 19:47 - 2016-08-06 06:17 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-08-31 19:47 - 2016-08-06 06:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-31 19:47 - 2016-08-06 06:16 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-31 19:47 - 2016-08-06 06:15 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-08-31 19:47 - 2016-08-06 06:13 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-08-31 19:47 - 2016-08-06 06:09 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-31 19:47 - 2016-08-06 06:04 - 00361096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-08-31 19:47 - 2016-08-06 06:03 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-08-31 19:47 - 2016-08-06 05:48 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-08-31 19:47 - 2016-08-06 05:48 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-08-31 19:47 - 2016-08-06 05:48 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-08-31 19:47 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-08-31 19:47 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-08-31 19:47 - 2016-08-06 05:47 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-08-31 19:47 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-08-31 19:47 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-08-31 19:47 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-08-31 19:47 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-08-31 19:47 - 2016-08-06 05:46 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-08-31 19:47 - 2016-08-06 05:46 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-31 19:47 - 2016-08-06 05:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-08-31 19:47 - 2016-08-06 05:45 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-08-31 19:47 - 2016-08-06 05:45 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-08-31 19:47 - 2016-08-06 05:45 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-08-31 19:47 - 2016-08-06 05:44 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-08-31 19:47 - 2016-08-06 05:43 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-08-31 19:47 - 2016-08-06 05:43 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-08-31 19:47 - 2016-08-06 05:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-08-31 19:47 - 2016-08-06 05:40 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-08-31 19:47 - 2016-08-06 05:39 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-08-31 19:47 - 2016-08-06 05:33 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-08-31 19:47 - 2016-08-06 05:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-08-31 19:47 - 2016-08-06 05:26 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-31 19:47 - 2016-08-06 05:23 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-08-31 19:47 - 2016-08-05 11:14 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-08-31 19:47 - 2016-08-05 11:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-08-31 19:47 - 2016-08-05 11:05 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-08-31 19:47 - 2016-08-05 10:29 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-08-31 19:47 - 2016-08-05 10:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-08-31 19:47 - 2016-08-05 10:23 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-08-31 19:47 - 2016-08-05 10:22 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-08-31 19:47 - 2016-08-05 10:20 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-08-31 19:47 - 2016-08-05 10:20 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-08-31 19:47 - 2016-08-05 10:18 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-08-31 19:47 - 2016-08-05 10:08 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-08-31 19:45 - 2016-08-06 05:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-08-31 19:45 - 2016-08-06 05:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-31 18:27 - 2016-08-31 19:18 - 00000000 ____D C:\Users\Robert\Documents\Battlefield 1 Open Beta

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-09-29 18:36 - 2016-08-06 15:34 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-09-29 17:17 - 2016-05-10 16:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-09-29 15:11 - 2016-07-17 00:51 - 01531408 _____ C:\WINDOWS\system32\perfh007.dat
2016-09-29 15:11 - 2016-07-17 00:51 - 00386150 _____ C:\WINDOWS\system32\perfc007.dat
2016-09-29 15:11 - 2016-04-14 19:00 - 03392720 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-29 15:09 - 2016-04-21 17:23 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Raptr
2016-09-29 15:09 - 2016-04-14 21:09 - 00022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys
2016-09-29 15:09 - 2016-04-14 19:04 - 00000000 ___RD C:\Users\Robert\OneDrive
2016-09-29 15:08 - 2016-08-06 15:36 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-29 15:08 - 2016-04-21 20:46 - 00000000 __SHD C:\Users\Robert\IntelGraphicsProfiles
2016-09-29 00:16 - 2016-08-06 15:40 - 00000000 ____D C:\Users\Robert
2016-09-29 00:08 - 2016-08-06 15:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-28 21:38 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-28 21:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-28 21:34 - 2016-08-06 15:36 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-09-28 21:34 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-09-28 21:32 - 2016-04-19 20:21 - 00000000 ____D C:\Users\Robert\AppData\LocalLow\Temp
2016-09-27 20:33 - 2015-02-17 03:16 - 00000000 ____D C:\AdwCleaner
2016-09-26 17:55 - 2016-05-06 13:43 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-26 17:48 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-09-26 17:47 - 2016-05-10 16:17 - 01012056 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2016-09-26 17:47 - 2015-06-16 21:56 - 00127896 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2016-09-26 17:47 - 2015-06-11 19:35 - 00050008 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
2016-09-26 17:46 - 2016-05-10 16:17 - 00435032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2016-09-26 16:12 - 2016-05-10 16:17 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-09-26 16:11 - 2016-07-16 13:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-09-26 16:11 - 2016-07-16 08:04 - 00008192 _____ C:\WINDOWS\system32\config\ELAM
2016-09-26 16:11 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-09-25 20:23 - 2016-04-14 21:20 - 00000000 ____D C:\Users\Robert\AppData\Local\AMD
2016-09-25 20:18 - 2015-07-09 13:31 - 00000000 ____D C:\AMD
2016-09-25 20:17 - 2016-04-21 17:23 - 00000000 ____D C:\Program Files (x86)\AMD
2016-09-25 20:17 - 2016-04-14 19:25 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-09-25 20:15 - 2016-08-06 15:36 - 00000000 ____D C:\Program Files\AMD
2016-09-24 22:18 - 2016-04-14 19:18 - 00001367 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-24 21:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-24 20:07 - 2016-04-14 22:11 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-09-23 14:45 - 2016-06-25 10:19 - 00000000 ____D C:\Users\Robert\AppData\Roaming\steelseries-engine-3-client
2016-09-21 20:56 - 2016-07-25 22:55 - 00149640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-09-21 20:56 - 2016-07-25 22:55 - 00137256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-09-21 20:56 - 2016-07-25 22:55 - 00110104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-09-21 20:56 - 2016-07-25 22:54 - 00135408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-09-21 20:56 - 2016-07-25 22:52 - 00184856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-09-21 20:56 - 2016-07-25 22:51 - 01007128 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-09-17 15:49 - 2016-04-14 23:13 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-17 11:34 - 2016-04-14 19:18 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-16 20:22 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-09-16 19:24 - 2016-05-19 16:29 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-09-16 18:43 - 2016-04-14 22:26 - 00000000 ____D C:\ProgramData\Origin
2016-09-16 18:39 - 2016-04-14 23:21 - 00000000 ____D C:\Users\Robert\AppData\Roaming\Origin
2016-09-16 17:17 - 2016-04-14 22:26 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-09-16 13:20 - 2016-04-14 23:21 - 00000000 ____D C:\Users\Robert\AppData\Local\Origin
2016-09-15 20:26 - 2016-02-13 19:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-09-14 22:41 - 2016-08-06 15:34 - 00231944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-09-14 22:40 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-09-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-09-14 20:48 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-14 20:48 - 2016-04-14 20:02 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-14 20:46 - 2016-04-14 20:02 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-07 18:32 - 2016-07-16 13:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-09-07 18:32 - 2016-07-16 13:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-03 16:55 - 2016-06-25 10:18 - 00000000 ____D C:\WINDOWS\Cnxt
2016-09-03 00:08 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-08-31 19:39 - 2016-07-16 13:43 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-08-31 19:38 - 2016-07-16 13:43 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-08-31 19:38 - 2016-07-16 13:42 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-08-31 19:38 - 2016-07-16 13:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-08-31 19:31 - 2016-08-06 15:48 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-08-31 00:39 - 2016-07-27 23:07 - 01804680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2016-08-31 00:39 - 2016-07-27 23:07 - 00052952 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-08-06 15:36 - 2016-08-06 15:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-09-21 22:07

==================== Ende von FRST.txt ============================

TheUnknown98 29.09.2016 18:32
Addition
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-09-2016
durchgeführt von Robert (29-09-2016 19:13:48)
Gestartet von C:\Users\Robert\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-06 13:54:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-602619869-3711632484-3636400857-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-602619869-3711632484-3636400857-503 - Limited - Disabled)
Gast (S-1-5-21-602619869-3711632484-3636400857-501 - Limited - Disabled)
Robert (S-1-5-21-602619869-3711632484-3636400857-1000 - Administrator - Enabled) => C:\Users\Robert

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{b7d2ce14-2f17-410d-bea7-9126b9d4bb31}) (Version: 2.0.2067.0 - Futuremark)
3DMark (Version: 2.0.2067.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden
ACP Application (Version: 2016.0321.0955.20 - Advanced Micro Devices, Inc.) Hidden
ACP Application (Version: 2016.0811.0433.30 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
APP Shop v1.0.24 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.24 - ASRock Inc.)
Application Profiles (HKLM-x32\...\{D247B605-F874-E998-D599-8855A40B6825}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Assassin's Creed IV Black Flag (HKLM\...\Steam App 242050) (Version:  - Ubisoft Montreal)
Broforce (HKLM\...\Steam App 274190) (Version:  - Free Lives)
Catalyst Control Center Next Localization BR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 1.81.0.2016 - Georgy Berdyshev)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Drome Racers (HKLM-x32\...\{EC1DCD6C-3AE0-42CE-8EAA-6886CC4400DC}) (Version:  - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
FIFA 17 DEMO (HKLM-x32\...\{39C00B2C-EA3C-4A6B-AECF-DADA0F09C2AE}) (Version: 1.0.45.26330 - Electronic Arts)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Futuremark SystemInfo (HKLM-x32\...\{5052D282-C9AE-48CC-A9F5-17058BEEAA50}) (Version: 4.45.590.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Killer Bandwidth Control Filter Driver (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{DB8A465E-67BE-4450-9C9A-FECEA6222B95}) (Version: 1.1.56.1651 - Rivet Networks)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
League-Bildschirmschoner (HKLM-x32\...\LolScreenSaver) (Version: W0.1.19-0.11.13-beta - Riot Games)
Lethal League (HKLM\...\Steam App 261180) (Version:  - Team Reptile)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.6.0.0 - Lightworks)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 47.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 de)) (Version: 47.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1 - Mozilla)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.14.2 - OBS Project)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.12.2807 - Electronic Arts, Inc.)
PlanetSide 2 (HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
PlanetSide 2 (HKU\S-1-5-21-602619869-3711632484-3636400857-1000\...\DGC-PlanetSide 2) (Version: 1.0.3.192 - Daybreak Game Company)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.11.2-r113542-release - Plays.tv, LLC)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.6-r115593-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
S.T.R.I.K.E.3 (HKLM\...\{FE7BF330-49DA-4F3C-904A-1729C784B1EF}) (Version: 7.0.46.0 - Mad Catz Inc)
Skype™ 7.23 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.23.105 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.45.2 (HKLM\...\{4646A4CF-BEA5-475D-96D7-70E19E481603}) (Version: 7.0.45.2 - Mad Catz)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Starbound (HKLM\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.8.5 (HKLM\...\SteelSeries Engine 3) (Version: 3.8.5 - SteelSeries ApS)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version:  - )
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version:  - CD PROJEKT RED)
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.0 (HKLM\...\VulkanRT1.0.11.0) (Version: 1.0.11.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-2) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (Version: 1.0.3.1 - LunarG, Inc.) Hidden
Watch_Dogs (HKLM\...\Steam App 243470) (Version:  - Ubisoft)
Websuche (HKLM-x32\...\Websuche) (Version:  - Websuche)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WWE 2K16 (HKLM\...\Steam App 385730) (Version:  - Visual Concepts)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-602619869-3711632484-3636400857-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09C2CD33-AAB5-4BDA-8E94-479C1CD5AF3F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0C8D0A3C-E082-4701-9718-FE686F89EB08} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {11E753AD-37F8-43F6-BE36-8120145FE4DF} - System32\Tasks\{A50ACD54-9D1A-4B3C-8A83-6C52B070901A} => Chrome.exe hxxp://ui.skype.com/ui/0/7.23.0.105/de/abandoninstall?page=tsBing
Task: {17632F14-10DB-4C58-A453-C658B92B81E8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {17F791BD-5AD3-4A6F-A317-CA162BA67A09} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {19C4D4AF-E494-4106-8F45-732B3F233136} - System32\Tasks\AsrAPPShop => D:\Programme\ASRock\APP Shop\AsrAPPShop.exe [2016-02-05] ()
Task: {31E1B680-5A2D-4971-BE3F-ACDE32A4CAC1} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {3B44299D-72A6-428F-A63A-94C33ED05730} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {3DF1FB73-BA42-4E61-AF2F-1FFBBBED4B9D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {43BB892E-2CE6-40F9-BD4B-BA410F6EBC5E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {44352B7D-C8BF-4A10-A67E-E8669D7D7A82} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {46E2953C-D53A-4DF0-8D00-50D10BFA94CD} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {480DF89F-58D4-480A-96A6-B4BA11E2B03B} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {8397C076-4381-4706-A2FB-A3638CC02B1F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {8556FCB6-C5DB-4F95-8B7D-F5FD56ADE1DD} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {9CC1CB00-A807-4670-9041-667F61AED230} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {A6DB36C8-8C23-4A57-9F48-A64CE05C24FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-14] (Google Inc.)
Task: {ACBCB651-1993-4F19-AA88-EC26B036FA3B} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {B5E8B632-80CD-45E1-BD4B-0D7C0AE5B619} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {C265CAEC-6B08-450B-974C-BD36C41AF6BB} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-09-16] (Advanced Micro Devices, Inc.)
Task: {C86906AE-C98A-45FF-8EEB-2517E858FE57} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {C9BA6FDA-F69A-42F8-8517-16FE1EAAB6DA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {C9BBCD29-F8C4-4520-B580-FE5150B4F4B2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {CEE30A00-1612-4D03-ADBA-D4BA3A2ABAF2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {D0033271-1498-4EB5-A7B7-F66AA429450E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {D28FC26A-F488-49EA-B989-36BDE26433D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-14] (Google Inc.)
Task: {D6F21276-B55B-4696-BD14-4CC871B691A6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {E51387D7-EBC4-44F7-B031-6CA92C9D7660} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F49EDD12-3400-4B4D-A97C-43D8DCCC2DE8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job =>
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job =>
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job =>

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-03-30 20:25 - 2016-03-30 20:25 - 00707072 _____ () C:\Riot Games\LolScreenSaver\service\service.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-14 21:08 - 2016-02-05 16:38 - 06134024 _____ () D:\Programme\ASRock\APP Shop\AsrAPPShop.exe
2016-09-14 20:43 - 2016-09-07 07:44 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 01864384 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2014-05-01 16:13 - 2016-07-21 12:28 - 00592384 _____ () C:\Users\Robert\AppData\Local\MEGAsync\ShellExtX64.dll
2016-05-27 15:50 - 2016-05-27 15:50 - 00402520 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-14 20:43 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-09-14 20:43 - 2016-09-07 06:57 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-09-28 21:30 - 2016-09-28 21:31 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-09-28 21:30 - 2016-09-28 21:31 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-09-28 21:30 - 2016-09-28 21:31 - 35250688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-10-13 12:01 - 2015-10-13 12:01 - 12451840 _____ () C:\Program Files\Mad Catz\S.T.R.I.K.E.3\Pr0fileEditor_Forms.dll
2015-10-13 12:02 - 2015-10-13 12:02 - 00315392 _____ () C:\Program Files\Mad Catz\S.T.R.I.K.E.3\de\Pr0fileEditor_Forms.resources.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 02:01 - 2016-09-13 02:01 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-14 20:43 - 2016-09-07 06:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-14 20:44 - 2016-09-07 06:35 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-09-14 20:43 - 2016-09-07 06:35 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-14 20:43 - 2016-09-07 06:40 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-08-16 16:01 - 2016-08-16 16:01 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-08-16 16:01 - 2016-08-16 16:01 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 10:00 - 2016-06-03 10:00 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-04-15 16:11 - 2016-04-15 16:12 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-02-13 19:16 - 2016-02-13 19:16 - 00117920 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.25021.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL
2015-11-24 22:48 - 2015-11-24 22:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd
2015-12-07 22:57 - 2015-12-07 22:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd
2016-09-24 23:16 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-09-24 23:16 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-09-24 23:16 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-09-24 23:16 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2016-09-24 23:16 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
2016-09-16 13:20 - 2016-09-16 13:19 - 02493440 _____ () D:\Programme\Origin\libGLESv2.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 01383616 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-08-23 16:16 - 2016-08-23 16:16 - 00118976 _____ () C:\Users\Robert\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\winsound.pyd
2015-10-21 22:29 - 2015-10-21 22:29 - 00113171 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlc.dll
2015-10-21 22:29 - 2015-10-21 22:29 - 02396691 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libvlccore.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32com.shell.shell.pyd
2015-06-27 01:09 - 2015-06-27 01:09 - 00271872 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\amd_ags.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\PIL._imaging.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00024064 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\win32pipe.pyd
2016-07-21 12:28 - 2016-07-21 12:28 - 00482304 _____ () C:\Users\Robert\AppData\Local\MEGAsync\libsodium.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\gobject._gobject.pyd
2016-04-19 19:08 - 2016-04-19 19:08 - 02717595 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr Inc\Raptr\plugins\ssl.dll
2016-09-07 18:40 - 2016-09-06 12:00 - 05197312 _____ () C:\Users\Robert\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-09-07 18:40 - 2016-09-06 12:00 - 00147456 _____ () C:\Users\Robert\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-602619869-3711632484-3636400857-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.42.129
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{BCBB0E84-34A4-4AF6-950B-86D64A735F82}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3ACE8694-A204-4952-866A-6A9B4C2141EE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0D634C0C-8EA0-430F-B187-DC82B6BF3B4B}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{9E304C16-2036-44DD-8164-CE32FB27BFEA}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{BDA475DA-FF5F-4B6C-A2AE-96FBE5616517}] => (Allow) D:\Programme\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{1A3C05C3-194C-49A8-A712-9316AE8F73EB}] => (Allow) D:\Programme\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E34FD60B-E34F-4B5F-831E-233F4326AB2C}] => (Allow) D:\Programme\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{930DDF24-B0A4-4185-B772-63057B0F2831}] => (Allow) D:\Programme\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{52953158-5E69-4DCC-98C4-1A517F9B8A2F}] => (Allow) D:\Programme\Steam\steamapps\common\WWE2K16\WWE2K16.exe
FirewallRules: [{EC2DE4CB-7C42-490D-BDCB-FCD48C2B878C}] => (Allow) D:\Programme\Steam\steamapps\common\WWE2K16\WWE2K16.exe
FirewallRules: [UDP Query User{F03AF432-EAD4-4418-8317-5A604F052AC1}C:\program files (x86)\dayz sa\dta\client.bin] => (Allow) C:\program files (x86)\dayz sa\dta\client.bin
FirewallRules: [TCP Query User{220124B9-2538-4CA3-BE4C-89BA60D20A5F}C:\program files (x86)\dayz sa\dta\client.bin] => (Allow) C:\program files (x86)\dayz sa\dta\client.bin
FirewallRules: [{FC748102-5582-4792-A5CB-1DFDF4562BA1}] => (Allow) C:\Program Files (x86)\DayZ SA\DayZ_Launcher.bat
FirewallRules: [{AFABE39E-EBE7-400D-A35A-911F2452330E}] => (Allow) C:\Program Files (x86)\DayZ SA\DayZ_Launcher.bat
FirewallRules: [{EEE0EB21-199E-4385-BC8F-AEEED1456839}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{66BFD2CC-9CA1-48CA-B2A5-1F6C16550CD0}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{693B4683-C7D3-41A3-B823-70408799721F}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{25F6BAB1-0DE5-41EE-8E0C-6F2F43951986}] => (Allow) D:\Programme\Steam\steamapps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [UDP Query User{9D4EADD7-33E0-4E2E-A549-C87CA5826A69}D:\spiele_original\gtav\gta5.exe] => (Allow) D:\spiele_original\gtav\gta5.exe
FirewallRules: [TCP Query User{C2DE8548-E29F-4FA6-805F-B1D9D4B6E46B}D:\spiele_original\gtav\gta5.exe] => (Allow) D:\spiele_original\gtav\gta5.exe
FirewallRules: [{941A5AEC-13D8-4C55-BBFF-75CBE6BE97D7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{7C37E6F1-7643-4895-BC83-4FB133085E3D}D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{67FF877D-4C69-4467-A6FD-4EBF0A9B41B2}D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\spiele\minnekraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{447A66D0-A02B-4FF8-ACDC-8EB1E50F0FB6}] => (Allow) LPort=1900
FirewallRules: [{5863DFC0-0D4C-4641-8251-73A39370CC5B}] => (Allow) LPort=2869
FirewallRules: [{1CAE5C9C-90A1-4C25-A120-41042285A303}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{07D16F92-CF93-4231-B0C3-673E4F1A16AB}] => (Allow) D:\Programme\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{7DB31681-D463-4597-B720-8C06923B2F03}] => (Allow) D:\Programme\Steam\steamapps\common\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{8625D69B-42CD-4582-A94B-38853D68B8A9}] => (Allow) D:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{B18C9E49-8BAE-455F-BE7E-72F40D35EBBF}] => (Allow) D:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{75FA9935-9FBF-49FF-AE27-C24B956FAD80}] => (Allow) D:\Programme\Steam\Steam.exe
FirewallRules: [{B38C0955-3554-4865-9398-E2A918DC61FA}] => (Allow) D:\Programme\Steam\Steam.exe
FirewallRules: [{574A36E4-0CE6-4427-8E00-F12774ACBAA1}] => (Allow) C:\Users\Robert\Desktop\bin\steamwebhelper.exe
FirewallRules: [{A1CEB717-5AFA-4A04-B632-C109C216732D}] => (Allow) C:\Users\Robert\Desktop\bin\steamwebhelper.exe
FirewallRules: [{15AEB7CA-F05C-487A-9318-CD6E1DE6E96A}] => (Allow) C:\Users\Robert\Desktop\Steam.exe
FirewallRules: [{ADAA6F5C-79EB-4430-B65A-A4C351A8BAC0}] => (Allow) C:\Users\Robert\Desktop\Steam.exe
FirewallRules: [{E80FFAF9-0BAD-4B97-9154-3B2FB6011B6E}] => (Allow) D:\Programme\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{65113C81-ACE1-4C21-81C0-3320886D8E70}] => (Allow) D:\Programme\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{EA5472D3-7A13-4B0D-AFE7-FB7F4E4C514A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{8F2558B3-D649-4A70-B4D2-0A1DBB47D426}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6831B005-9630-4D74-AA0F-8D5F42400AEB}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{072EE914-B95F-40D1-8CDF-4FB36152AF20}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{DFC3AC44-82FF-4067-B36B-49FF130D32B6}] => (Allow) D:\Programme\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{C352662F-133D-4738-A363-38B9A276DA96}] => (Allow) D:\Programme\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{7D92CE4A-3220-48E1-B73A-FE9496A67E2D}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{80EEB321-5252-4A78-8929-108F7C462103}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17 DEMO\FIFASetup\fifaconfig.exe
FirewallRules: [{5D21DAB0-5401-4F94-A595-121D89C58371}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{8C849A75-AC74-456B-B924-4062744E309E}D:\spiele\wop\world of padman 1.5\wop.exe] => (Allow) D:\spiele\wop\world of padman 1.5\wop.exe
FirewallRules: [UDP Query User{713847AD-8732-4F22-9560-07D58AB5114C}D:\spiele\wop\world of padman 1.5\wop.exe] => (Allow) D:\spiele\wop\world of padman 1.5\wop.exe
FirewallRules: [{A3D6B625-F80D-43AD-9433-45601C5A1FC2}] => (Allow) D:\Programme\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{F0E26344-C637-4E05-8998-933047D7252B}] => (Allow) D:\Programme\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{0F1831F9-6426-4D7F-8863-F9F6413FDE34}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{1E426C5B-F72C-473B-9240-8A389D48CB2C}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{B30F7430-C13D-4132-A4EE-1E68F58E85DB}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{EF0224AB-BF87-4F59-ACFB-5A353D1C46DC}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{9E04B87A-FA08-4201-8660-650106665BBC}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{93BD187E-AD6E-4ECC-959D-EF5BA6E94E8D}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{6AC14A4B-27D6-4277-A5BA-782082724345}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{53BC520B-F309-4897-9EFA-9822C7FD40D6}] => (Allow) D:\Programme\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{76149DD0-1BCD-44A4-8773-7CA79CB453A3}] => (Allow) D:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{C56BC153-6F1A-4A5F-A59F-475A3CC56B8E}] => (Allow) D:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Wiederherstellungspunkte =========================

24-09-2016 22:26:49 zoek.exe restore point

==================== Fehlerhafte Geräte im Gerätemanager =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (09/29/2016 03:47:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2147023673. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/29/2016 03:11:48 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_2d0f50fcbdb171b8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_74bc87d3d22d9abe.manifest.

Error: (09/29/2016 03:10:51 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Robert\Downloads\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_2d0f50fcbdb171b8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_74bc87d3d22d9abe.manifest.

Error: (09/29/2016 02:58:07 PM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/29/2016 12:16:53 AM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/29/2016 12:16:49 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/29/2016 12:16:49 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ROBERT-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (09/29/2016 12:10:08 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Robert\Downloads\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_2d0f50fcbdb171b8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_74bc87d3d22d9abe.manifest.

Error: (09/29/2016 12:08:39 AM) (Source: amdacpusrsvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/28/2016 11:26:37 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_2d0f50fcbdb171b8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_74bc87d3d22d9abe.manifest.


Systemfehler:
=============
Error: (09/29/2016 03:11:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (09/29/2016 03:11:51 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Robert\AppData\Local\Temp\ehdrv.sys

Error: (09/29/2016 03:11:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (09/29/2016 03:11:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Robert\AppData\Local\Temp\ehdrv.sys

Error: (09/29/2016 03:11:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (09/29/2016 03:11:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Robert\AppData\Local\Temp\ehdrv.sys

Error: (09/29/2016 03:11:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (09/29/2016 03:11:33 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Robert\AppData\Local\Temp\ehdrv.sys

Error: (09/29/2016 03:11:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (09/29/2016 03:11:32 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Robert\AppData\Local\Temp\ehdrv.sys


CodeIntegrity:
===================================
  Date: 2016-09-24 21:34:42.546
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 21:27:02.624
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:10:57.068
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:09:54.719
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-09-24 20:09:54.207
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-115528.dll that did not meet the Store signing level requirements.

  Date: 2016-08-25 17:32:03.834
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.

  Date: 2016-08-25 17:32:03.465
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.

  Date: 2016-08-24 17:33:42.855
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Raptr Inc\Raptr\ltc_help64-114978.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 46%
Installierter physikalischer RAM: 7884.84 MB
Verfügbarer physikalischer RAM: 4255.78 MB
Summe virtueller Speicher: 15820.84 MB
Verfügbarer virtueller Speicher: 11252.98 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:249.12 GB) (Free:182.84 GB) NTFS
Drive d: () (Fixed) (Total:681.51 GB) (Free:214.84 GB) NTFS
Drive e: () (Fixed) (Total:931.41 GB) (Free:344.6 GB) NTFS
Drive g: () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 68D7788C)
Partition 1: (Not Active) - (Size=249.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=681.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 68D778F5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
Ab morgen befinde ich mich im Urlaub für 9 Tage. Habe dort zwar Internet kann allerdings nichts am PC machen.

M-K-D-B 29.09.2016 20:13
Servus,


die IPs 169.44.xx.xx bzw. 169.38.xx.xx zeigen zu einem IBM Cloud Server, ich bezweifle, dass es was mit Schadsoftware zu tun hat.

Wegen der Datei... den Inhalt will ich mir ansehen:

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
start
CMD: type "D:\End"
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.


TheUnknown98 29.09.2016 21:47
Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-09-2016
durchgeführt von Robert (29-09-2016 22:42:31) Run:2
Gestartet von C:\Users\Robert\Downloads
Geladene Profile: Robert (Verfügbare Profile: Robert)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
start
CMD: type "D:\END"
end
*****************


========= type "D:\END" =========

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN"
        "hxxp://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">
<html>
 <head>
        <title>T-Online Navigationshilfe</title>
 </head>
 <frameset rows="100%">
 <frame src="hxxp://navigationshilfe.t-online.de/dnserror?url=hxxp://wod.soe.com/"
        frameborder="0" noresize="noresize"/>
 <noframes>
  <body>
  <h1>Willkommen bei T-Online</h1>
  <p>
        <a href="hxxp://navigationshilfe.t-online.de/dnserror?url=hxxp://wod.soe.com/">
        weiter....</a>
  </p>
  </body>
 </noframes>
 </frameset>
</html>

========= Ende von CMD: =========


==== Ende von Fixlog 22:42:31 ====
Datei immernoch da

M-K-D-B 30.09.2016 20:07
Zitat:
Zitat von TheUnknown98 (Beitrag 1613083)
Datei immernoch da
Ja klar, ich hab mir ja nur ihren Inhalt angesehen.

Die Datei D:\end brauchen wir nicht löschen, sie wurde von einer T-Online Software erstellt.







Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber. :daumenhoc
Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.




http://deeprybka.trojaner-board.de/b...cleanupneu.png
Cleanup:
Alle Logs gepostet? Dann lade Dir bitte http://filepony.de/icon/tiny/delfix.pngDelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.
Hinweis:
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.




http://deeprybka.trojaner-board.de/b...ast/schild.png
Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:
Browser
Java
 Flash-Player
PDF-Reader

Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.






Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen.




Optional:
http://filepony.de/icon/adblock_firefox.pngAdblock Plus Kann Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren.
http://filepony.de/icon/noscript.png NoScript Verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.

Lade Software von einem sauberen Portal wie http://filepony.de/images/microbanner.gif.
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner .




Abschließend noch ein paar grundsätzliche Bemerkungen:
  • Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
  • Lade keine Software von Chip, Softonic oder SourceForge. Die dort angebotene Software wird häufig mit einem sog. "Installer" verteilt, mit dem man sich nur unerwünschte Software oder Adware installiert.
  • Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Selbst Microsoft unterstützt sog. Registry-Cleaner nicht. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.




Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...:dankeschoen:und/oder das Forum mit einer kleinen Spende http://www.trojaner-board.de/extra/spende.png unterstützen. :applaus:

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.

M-K-D-B 03.10.2016 10:26
Ich bin froh, dass wir helfen konnten :abklatsch:

In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest:
Lob, Kritik und Wünsche
Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! :)

Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen.


Alle Zeitangaben in WEZ +1. Es ist jetzt 20:49 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131