Virus: virtool:win32/obfuscator.xz entfernen Hilfe?

hansi2011 · 10.01.2015, 23:40

Code:

ATTFilter

2015-01-07 18:39 - 2014-10-29 03:17 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoveDeviceElevated.dll
2015-01-07 18:39 - 2014-10-29 03:12 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthci.dll
2015-01-07 18:39 - 2014-10-29 03:11 - 00212480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdminst.dll
2015-01-07 18:39 - 2014-10-29 03:09 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthudtask.exe
2015-01-07 18:39 - 2014-10-29 03:09 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanui2.dll
2015-01-07 18:39 - 2014-10-29 03:08 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MuiUnattend.exe
2015-01-07 18:39 - 2014-10-29 03:08 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\credwiz.exe
2015-01-07 18:39 - 2014-10-29 03:08 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2015-01-07 18:39 - 2014-10-29 03:05 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gptext.dll
2015-01-07 18:39 - 2014-10-29 03:03 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ktmw32.dll
2015-01-07 18:39 - 2014-10-29 03:03 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\txfw32.dll
2015-01-07 18:39 - 2014-10-29 03:03 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wship6.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00594944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dramp.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miguiresource.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmcompc.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SortWindows61.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Nlsdl.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciwave.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciseq.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscpxl32.dLL
2015-01-07 18:39 - 2014-10-29 03:00 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscat32.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browseui.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensApi.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\softpub.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nddeapi.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiwer.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssip32.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir50_32.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir41_32.ax
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OskSupport.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir50_qcx.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir50_qc.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir41_qcx.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir41_qc.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ir32_32.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\getuname.dll
2015-01-07 18:39 - 2014-10-29 03:00 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osuninst.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\PnPUnattend.exe
2015-01-07 18:39 - 2014-10-29 02:59 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lsmproxy.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vdmdbg.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsock32.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clb.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subst.exe
2015-01-07 18:39 - 2014-10-29 02:59 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msidcrl40.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\help.exe
2015-01-07 18:39 - 2014-10-29 02:59 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlS0WndH.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sas.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput9_1_0.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comcat.dll
2015-01-07 18:39 - 2014-10-29 02:59 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxex.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\telephon.cpl
2015-01-07 18:39 - 2014-10-29 02:58 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\colorcpl.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iyuv_32.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzutil.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cliconfg.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msyuv.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drprov.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sort.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osbaseln.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\umdmxfrm.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WINSRPC.DLL
2015-01-07 18:39 - 2014-10-29 02:58 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskperf.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasctrs.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hh.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshrm.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\label.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdkey.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsbyuv.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TapiUnattend.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwinsat.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\recover.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2015-01-07 18:39 - 2014-10-29 02:58 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dvdplay.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsied.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomcnfg.exe
2015-01-07 18:39 - 2014-10-29 02:58 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapiperf.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeDateMUICallback.dll
2015-01-07 18:39 - 2014-10-29 02:58 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acledit.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmintf.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcacli.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpupdate.exe
2015-01-07 18:39 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcmsetup.exe
2015-01-07 18:39 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syssetup.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\muifontsetup.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DDOIProxy.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\panmap.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ifsutilx.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usbperf.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshirda.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RdpSaPs.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcico.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrnsave.scr
2015-01-07 18:39 - 2014-10-29 02:57 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spnet.dll
2015-01-07 18:39 - 2014-10-29 02:57 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shfolder.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx5.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncInfrastructureps.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\irclass.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dispex.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSChannel.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx6.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx7.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx3.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncHostps.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx4.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmcodecdspps.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcji32.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odtext32.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odpdx32.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odfox32.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oddbse32.dll
2015-01-07 18:39 - 2014-10-29 02:56 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odexl32.dll
2015-01-07 18:39 - 2014-10-29 02:55 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfime.ime
2015-01-07 18:39 - 2014-10-29 02:54 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secinit.exe
2015-01-07 18:39 - 2014-10-29 02:54 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VscMgrPS.dll
2015-01-07 18:39 - 2014-10-29 02:54 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ctfmon.exe
2015-01-07 18:39 - 2014-10-29 02:53 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapimig.exe
2015-01-07 18:39 - 2014-10-29 02:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ktmutil.exe
2015-01-07 18:39 - 2014-10-29 02:53 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bitsprx2.dll
2015-01-07 18:39 - 2014-10-29 02:53 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\verclsid.exe
2015-01-07 18:39 - 2014-10-29 02:53 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\winhlp32.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsicpl.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msra.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventvwr.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hdwwiz.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winver.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2015-01-07 18:39 - 2014-10-29 02:52 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedt32.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmdext.dll
2015-01-07 18:39 - 2014-10-29 02:52 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\write.exe
2015-01-07 18:39 - 2014-10-29 02:52 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TapiSysprep.dll
2015-01-07 18:39 - 2014-10-29 02:51 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndadmin.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\runas.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uniplat.dll
2015-01-07 18:39 - 2014-10-29 02:51 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdial.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasautou.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcmonitor.dll
2015-01-07 18:39 - 2014-10-29 02:51 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LAPRXY.DLL
2015-01-07 18:39 - 2014-10-29 02:51 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InfDefaultInstall.exe
2015-01-07 18:39 - 2014-10-29 02:51 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systray.exe
2015-01-07 18:39 - 2014-10-29 02:49 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairingProxy.dll
2015-01-07 18:39 - 2014-10-29 02:49 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2015-01-07 18:39 - 2014-10-29 02:49 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CHxReadingStringIME.dll
2015-01-07 18:39 - 2014-10-29 02:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RmClient.exe
2015-01-07 18:39 - 2014-10-29 02:46 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcad32.exe
2015-01-07 18:39 - 2014-10-29 02:46 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\serialui.dll
2015-01-07 18:39 - 2014-10-29 02:45 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resmon.exe
2015-01-07 18:39 - 2014-10-29 02:45 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2015-01-07 18:39 - 2014-10-29 02:44 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountControlSettings.exe
2015-01-07 18:39 - 2014-10-29 02:44 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Narrator.exe
2015-01-07 18:39 - 2014-10-29 02:44 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationNotifications.exe
2015-01-07 18:39 - 2014-10-29 02:43 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NcaApi.dll
2015-01-07 18:39 - 2014-10-29 02:43 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wowreg32.exe
2015-01-07 18:39 - 2014-10-29 02:42 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.exe
2015-01-07 18:39 - 2014-10-29 02:42 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdmps.dll
2015-01-07 18:39 - 2014-10-29 02:42 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ndproxystub.dll
2015-01-07 18:39 - 2014-10-29 02:40 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2015-01-07 18:39 - 2014-10-29 02:40 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairingWizard.exe
2015-01-07 18:39 - 2014-10-29 02:40 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Netplwiz.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartScreenSettings.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\control.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Fondue.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceProperties.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesRemote.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesProtection.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesHardware.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesComputerName.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemPropertiesAdvanced.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DpiScaling.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RunLegacyCPLElevated.exe
2015-01-07 18:39 - 2014-10-29 02:39 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2015-01-07 18:39 - 2014-10-29 02:38 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbctrac.dll
2015-01-07 18:39 - 2014-10-29 02:38 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mobsync.exe
2015-01-07 18:39 - 2014-10-29 02:38 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\grpconv.exe
2015-01-07 18:39 - 2014-10-29 02:38 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DDACLSys.dll
2015-01-07 18:39 - 2014-10-29 02:38 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoveDeviceElevated.dll
2015-01-07 18:39 - 2014-10-29 02:34 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsui.exe
2015-01-07 18:39 - 2014-10-29 02:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanui2.dll
2015-01-07 18:39 - 2014-10-29 02:32 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2015-01-07 18:39 - 2014-10-29 02:29 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiclnt.dll
2015-01-07 18:39 - 2014-10-29 02:29 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gptext.dll
2015-01-07 18:39 - 2014-10-29 02:29 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapi.dll
2015-01-07 18:39 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprext.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2015-01-07 18:39 - 2014-10-29 02:28 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprmsg.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\reg.exe
2015-01-07 18:39 - 2014-10-29 02:28 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sc.exe
2015-01-07 18:39 - 2014-10-29 02:28 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfscli.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnikeapi.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\icacls.exe
2015-01-07 18:39 - 2014-10-29 02:28 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdhcinst.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpapi.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe
2015-01-07 18:39 - 2014-10-29 02:28 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltLib.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mskeyprotcli.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\PATHPING.EXE
2015-01-07 18:39 - 2014-10-29 02:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasadhlp.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mountvol.exe
2015-01-07 18:39 - 2014-10-29 02:28 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nrpsrv.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2015-01-07 18:39 - 2014-10-29 02:28 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrssrv.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\whhelper.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBthProxy.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscoreext.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TCPSVCS.EXE
2015-01-07 18:39 - 2014-10-29 02:28 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msidle.dll
2015-01-07 18:39 - 2014-10-29 02:28 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\backgroundTaskHost.exe
2015-01-07 18:39 - 2014-10-29 02:28 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentprf.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\setx.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\lodctr.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspatcha.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\unlodctr.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecEdit.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cacls.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltMC.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedcli.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhapi.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\PING.EXE
2015-01-07 18:39 - 2014-10-29 02:27 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TRACERT.EXE
2015-01-07 18:39 - 2014-10-29 02:27 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Register-CimProvider.exe
2015-01-07 18:39 - 2014-10-29 02:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2015-01-07 18:39 - 2014-10-29 02:27 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringIeProvider.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\typeperf.exe
2015-01-07 18:39 - 2014-10-29 02:26 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\relog.exe
2015-01-07 18:39 - 2014-10-29 02:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\pots.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapAuthProxy.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VaultCmd.exe
2015-01-07 18:39 - 2014-10-29 02:26 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\userinitext.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRINFO.EXE
2015-01-07 18:39 - 2014-10-29 02:26 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityRtapiPal.dll
2015-01-07 18:39 - 2014-10-29 02:26 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpcsvc.dll
2015-01-07 18:39 - 2014-10-29 02:25 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogonext.dll
2015-01-07 18:39 - 2014-10-29 02:25 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tpmcompc.dll
2015-01-07 18:39 - 2014-10-29 02:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncuprov.dll
2015-01-07 18:39 - 2014-10-29 02:25 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
2015-01-07 18:39 - 2014-10-29 02:25 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsext.dll
2015-01-07 18:39 - 2014-10-29 02:24 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\procinst.dll
2015-01-07 18:39 - 2014-10-29 02:23 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2015-01-07 18:39 - 2014-10-29 02:23 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2015-01-07 18:39 - 2014-10-29 02:23 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Background.ps.dll
2015-01-07 18:39 - 2014-10-29 02:22 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2015-01-07 18:39 - 2014-10-29 02:22 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskSchdPS.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipconfig.exe
2015-01-07 18:39 - 2014-10-29 02:21 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallButtons.ProxyStub.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ROUTE.EXE
2015-01-07 18:39 - 2014-10-29 02:21 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHostProxy.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeSyncTask.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfmifsproxy.dll
2015-01-07 18:39 - 2014-10-29 02:21 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllhst3g.exe
2015-01-07 18:39 - 2014-10-29 02:20 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapimig.exe
2015-01-07 18:39 - 2014-10-29 02:20 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NETSTAT.EXE
2015-01-07 18:39 - 2014-10-29 02:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentTask.dll
2015-01-07 18:39 - 2014-10-29 02:20 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2015-01-07 18:39 - 2014-10-29 02:19 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschapext.dll
2015-01-07 18:39 - 2014-10-29 02:19 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
2015-01-07 18:39 - 2014-10-29 02:16 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2015-01-07 18:39 - 2014-10-29 02:16 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetmib1.dll
2015-01-07 18:39 - 2014-10-29 02:14 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\nci.dll
2015-01-07 18:39 - 2014-10-29 02:12 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwaninst.dll
2015-01-07 18:39 - 2014-10-29 02:12 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2015-01-07 18:39 - 2014-10-29 02:11 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2015-01-07 18:39 - 2014-10-29 02:09 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifmon.dll
2015-01-07 18:39 - 2014-10-29 02:08 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winrs.exe
2015-01-07 18:39 - 2014-10-29 02:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpapi.dll
2015-01-07 18:39 - 2014-10-29 02:06 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprext.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2015-01-07 18:39 - 2014-10-29 02:05 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprmsg.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unlodctr.exe
2015-01-07 18:39 - 2014-10-29 02:05 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vpnikeapi.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schedcli.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PING.EXE
2015-01-07 18:39 - 2014-10-29 02:05 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PATHPING.EXE
2015-01-07 18:39 - 2014-10-29 02:05 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mountvol.exe
2015-01-07 18:39 - 2014-10-29 02:05 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TRACERT.EXE
2015-01-07 18:39 - 2014-10-29 02:05 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmsgapi.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2015-01-07 18:39 - 2014-10-29 02:05 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasadhlp.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\whhelper.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2015-01-07 18:39 - 2014-10-29 02:05 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winrssrv.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBthProxy.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TCPSVCS.EXE
2015-01-07 18:39 - 2014-10-29 02:05 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msidle.dll
2015-01-07 18:39 - 2014-10-29 02:05 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\backgroundTaskHost.exe
2015-01-07 18:39 - 2014-10-29 02:05 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2015-01-07 18:39 - 2014-10-29 02:04 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pots.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fltMC.exe
2015-01-07 18:39 - 2014-10-29 02:04 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userinitext.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Register-CimProvider.exe
2015-01-07 18:39 - 2014-10-29 02:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2015-01-07 18:39 - 2014-10-29 02:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HOSTNAME.EXE
2015-01-07 18:39 - 2014-10-29 02:04 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpcsvc.dll
2015-01-07 18:39 - 2014-10-29 02:03 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2015-01-07 18:39 - 2014-10-29 02:03 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MRINFO.EXE
2015-01-07 18:39 - 2014-10-29 02:03 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ProximityRtapiPal.dll
2015-01-07 18:39 - 2014-10-29 02:02 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipsec.dll
2015-01-07 18:39 - 2014-10-29 02:02 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TaskSchdPS.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vss_ps.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdProxy.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.ps.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2015-01-07 18:39 - 2014-10-29 02:01 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Background.ps.dll
2015-01-07 18:39 - 2014-10-29 02:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvps.dll
2015-01-07 18:39 - 2014-10-29 02:00 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ROUTE.EXE
2015-01-07 18:39 - 2014-10-29 02:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2015-01-07 18:39 - 2014-10-29 02:00 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsExt.dll
2015-01-07 18:39 - 2014-10-29 02:00 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.ProxyStub.dll
2015-01-07 18:39 - 2014-10-29 02:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfmifsproxy.dll
2015-01-07 18:39 - 2014-10-29 01:59 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschapext.dll
2015-01-07 18:39 - 2014-10-29 01:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastlsext.dll
2015-01-07 18:39 - 2014-10-29 01:58 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Startupscan.dll
2015-01-07 18:39 - 2014-10-29 01:58 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2015-01-07 18:39 - 2014-10-29 01:57 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\energytask.dll
2015-01-07 18:39 - 2014-10-29 01:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2015-01-07 18:39 - 2014-10-29 01:55 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2015-01-07 18:39 - 2014-10-29 01:50 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2015-01-07 18:39 - 2014-10-29 01:48 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slpts.dll
2015-01-07 18:39 - 2014-10-29 01:46 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Startupscan.dll
2015-01-07 18:39 - 2014-10-29 01:45 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2015-01-07 18:38 - 2014-10-29 04:54 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthFWWizFwk.dll
2015-01-07 18:38 - 2014-10-29 04:07 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWWizFwk.dll
2015-01-07 18:38 - 2014-10-29 03:50 - 02628608 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-01-07 18:38 - 2014-10-29 03:49 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUxRes.dll
2015-01-07 18:38 - 2014-10-29 03:49 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2015-01-07 18:38 - 2014-10-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Firewall.cpl
2015-01-07 18:38 - 2014-10-29 03:49 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2help.dll
2015-01-07 18:38 - 2014-10-29 03:49 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-01-07 18:38 - 2014-10-29 03:49 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rnr20.dll
2015-01-07 18:38 - 2014-10-29 03:48 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2015-01-07 18:38 - 2014-10-29 03:48 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ktmw32.dll
2015-01-07 18:38 - 2014-10-29 03:48 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2015-01-07 18:38 - 2014-10-29 03:48 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll
2015-01-07 18:38 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSHTCPIP.DLL
2015-01-07 18:38 - 2014-10-29 03:48 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wship6.dll
2015-01-07 18:38 - 2014-10-29 03:48 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2015-01-07 18:38 - 2014-10-29 03:48 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmi.dll
2015-01-07 18:38 - 2014-10-29 03:47 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2015-01-07 18:38 - 2014-10-29 03:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\qwavedrv.sys
2015-01-07 18:38 - 2014-10-29 03:47 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2015-01-07 18:38 - 2014-10-29 03:46 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2015-01-07 18:38 - 2014-10-29 03:46 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-01-07 18:38 - 2014-10-29 03:46 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
2015-01-07 18:38 - 2014-10-29 03:46 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2015-01-07 18:38 - 2014-10-29 03:46 - 00029696 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbGD.sys
2015-01-07 18:38 - 2014-10-29 03:45 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2015-01-07 18:38 - 2014-10-29 03:45 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-01-07 18:38 - 2014-10-29 03:45 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2015-01-07 18:38 - 2014-10-29 03:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mslldp.sys
2015-01-07 18:38 - 2014-10-29 03:45 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciwave.dll
2015-01-07 18:38 - 2014-10-29 03:45 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2015-01-07 18:38 - 2014-10-29 03:45 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2015-01-07 18:38 - 2014-10-29 03:45 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2015-01-07 18:38 - 2014-10-29 03:45 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\normaliz.dll
2015-01-07 18:38 - 2014-10-29 03:42 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe
2015-01-07 18:38 - 2014-10-29 03:42 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcNs4.dll
2015-01-07 18:38 - 2014-10-29 03:41 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2015-01-07 18:38 - 2014-10-29 03:40 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-07 18:38 - 2014-10-29 03:38 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pstorec.dll
2015-01-07 18:38 - 2014-10-29 03:34 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\systray.exe
2015-01-07 18:38 - 2014-10-29 03:33 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\InfDefaultInstall.exe
2015-01-07 18:38 - 2014-10-29 03:12 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsui.exe
2015-01-07 18:38 - 2014-10-29 03:05 - 02628608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-01-07 18:38 - 2014-10-29 03:04 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-01-07 18:38 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceUxRes.dll
2015-01-07 18:38 - 2014-10-29 03:04 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2015-01-07 18:38 - 2014-10-29 03:04 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2help.dll
2015-01-07 18:38 - 2014-10-29 03:04 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2015-01-07 18:38 - 2014-10-29 03:04 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rnr20.dll
2015-01-07 18:38 - 2014-10-29 03:03 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2015-01-07 18:38 - 2014-10-29 03:03 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSHTCPIP.DLL
2015-01-07 18:38 - 2014-10-29 03:03 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmi.dll
2015-01-07 18:38 - 2014-10-29 03:00 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2015-01-07 18:38 - 2014-10-29 03:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shimeng.dll
2015-01-07 18:38 - 2014-10-29 03:00 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2015-01-07 18:38 - 2014-10-29 03:00 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2015-01-07 18:38 - 2014-10-29 03:00 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\normaliz.dll
2015-01-07 18:38 - 2014-10-29 03:00 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprop.dll
2015-01-07 18:38 - 2014-10-29 02:57 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcNs4.dll
2015-01-07 18:38 - 2014-10-29 02:56 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pstorec.dll
2015-01-07 18:38 - 2014-10-29 02:32 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthudtask.exe
2015-01-07 18:38 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dabapi.dll
2015-01-07 18:38 - 2014-10-29 02:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_ISCII.DLL
2015-01-07 18:38 - 2014-10-29 02:28 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TcpipSetup.dll
2015-01-07 18:38 - 2014-10-29 02:27 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\HOSTNAME.EXE
2015-01-07 18:38 - 2014-10-29 02:23 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxStreamingDataSourcePS.dll
2015-01-07 18:38 - 2014-10-29 02:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_ISCII.DLL
2015-01-07 18:38 - 2014-10-29 02:06 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dabapi.dll
2015-01-07 18:31 - 2014-11-15 20:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-01-07 18:31 - 2014-11-15 07:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-01-07 18:31 - 2014-11-14 08:10 - 03558400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-01-07 18:31 - 2014-11-14 07:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-01-07 18:31 - 2014-11-14 06:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-01-07 18:31 - 2014-11-11 01:39 - 22290560 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-01-07 18:31 - 2014-11-11 01:17 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-01-07 18:31 - 2014-11-10 19:06 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-01-07 18:31 - 2014-11-10 19:06 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-01-07 18:31 - 2014-11-10 02:37 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-01-07 18:31 - 2014-11-10 02:34 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-01-07 18:31 - 2014-11-10 02:26 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-01-07 18:31 - 2014-11-10 02:20 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-01-07 18:31 - 2014-11-10 02:09 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-01-07 18:31 - 2014-11-10 02:08 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-01-07 18:31 - 2014-11-10 02:06 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-01-07 18:31 - 2014-11-10 01:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-01-07 18:31 - 2014-11-10 01:57 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-01-07 18:31 - 2014-11-08 11:42 - 01390928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-01-07 18:31 - 2014-11-08 11:23 - 01127976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-01-07 18:31 - 2014-11-08 03:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-01-07 18:31 - 2014-11-08 02:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-01-07 18:31 - 2014-11-08 02:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-01-07 18:31 - 2014-11-07 04:58 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-01-07 18:31 - 2014-11-07 04:20 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-01-07 18:31 - 2014-11-05 03:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-01-07 18:31 - 2014-11-05 02:44 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-01-07 18:31 - 2014-11-05 02:43 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-01-07 18:31 - 2014-11-05 02:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-01-07 18:31 - 2014-11-05 02:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-01-07 18:31 - 2014-11-05 02:20 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-01-07 18:31 - 2014-11-05 02:18 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-01-07 18:31 - 2014-11-05 02:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-01-07 18:31 - 2014-11-05 02:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-01-07 18:31 - 2014-11-04 06:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-01-07 18:31 - 2014-10-31 05:50 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2015-01-07 18:31 - 2014-10-31 04:30 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2015-01-07 18:31 - 2014-10-31 04:22 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2015-01-07 18:31 - 2014-10-31 03:12 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2015-01-07 18:31 - 2014-10-31 01:51 - 18823168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-01-07 18:31 - 2014-10-31 01:10 - 15158784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-01-07 18:31 - 2014-10-30 06:55 - 07473472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-01-07 18:31 - 2014-10-30 06:47 - 01499384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-01-07 18:31 - 2014-10-30 06:41 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-01-07 18:31 - 2014-10-29 04:05 - 00551232 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-01-07 18:31 - 2014-10-29 02:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-01-07 18:31 - 2014-10-29 02:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-01-07 18:31 - 2014-10-21 01:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-01-07 18:31 - 2014-10-21 01:30 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-01-07 18:31 - 2014-10-21 01:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-01-07 18:30 - 2014-11-17 21:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-01-07 18:30 - 2014-11-17 21:17 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-01-07 18:30 - 2014-11-14 15:36 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-01-07 18:30 - 2014-11-14 07:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-01-07 18:30 - 2014-11-14 07:58 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-01-07 18:30 - 2014-11-14 07:57 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-01-07 18:30 - 2014-11-14 07:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-01-07 18:30 - 2014-11-14 07:54 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-01-07 18:30 - 2014-11-14 07:54 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-01-07 18:30 - 2014-11-14 07:53 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-01-07 18:30 - 2014-11-14 07:52 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-01-07 18:30 - 2014-11-14 07:46 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-01-07 18:30 - 2014-11-14 07:46 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-01-07 18:30 - 2014-11-14 07:39 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-01-07 18:30 - 2014-11-14 06:04 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-01-07 18:30 - 2014-11-14 06:03 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-01-07 18:30 - 2014-11-14 06:01 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-01-07 18:30 - 2014-11-14 06:01 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-01-07 18:30 - 2014-11-14 05:53 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-01-07 18:30 - 2014-11-10 19:06 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-01-07 18:30 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-01-07 18:30 - 2014-11-10 03:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-01-07 18:30 - 2014-11-08 05:00 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-01-07 18:30 - 2014-11-08 05:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-01-07 18:30 - 2014-11-08 04:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-01-07 18:30 - 2014-11-08 04:58 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-01-07 18:30 - 2014-11-08 04:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-01-07 18:30 - 2014-11-08 04:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-01-07 18:30 - 2014-11-08 04:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-01-07 18:30 - 2014-11-08 04:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-01-07 18:30 - 2014-11-08 04:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-01-07 18:30 - 2014-11-08 04:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-01-07 18:30 - 2014-11-08 04:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-01-07 18:30 - 2014-11-08 03:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-01-07 18:30 - 2014-11-08 03:38 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-01-07 18:30 - 2014-11-08 03:17 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-01-07 18:30 - 2014-11-08 03:09 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-01-07 18:30 - 2014-11-08 02:59 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-01-07 18:30 - 2014-11-05 03:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-01-07 18:30 - 2014-11-05 03:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-01-07 18:30 - 2014-11-05 02:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-01-07 18:30 - 2014-11-05 02:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-01-07 18:30 - 2014-11-05 02:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-01-07 18:30 - 2014-11-04 20:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-01-07 18:30 - 2014-11-04 20:25 - 00059712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-01-07 18:30 - 2014-11-04 20:25 - 00051008 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-01-07 18:30 - 2014-11-04 07:55 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-01-07 18:30 - 2014-11-04 07:54 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-01-07 18:30 - 2014-11-04 07:54 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-01-07 18:30 - 2014-11-04 07:54 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-01-07 18:30 - 2014-11-04 07:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-01-07 18:30 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-01-07 18:30 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-01-07 18:30 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-01-07 18:30 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-01-07 18:30 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-01-07 18:30 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-01-07 18:30 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-01-07 18:30 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-01-07 18:30 - 2014-10-26 23:10 - 00390841 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-01-07 18:30 - 2014-10-21 02:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-01-07 18:30 - 2014-10-21 02:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-01-07 18:30 - 2014-10-21 01:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-01-07 18:30 - 2014-10-21 01:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-01-07 18:30 - 2014-10-17 05:56 - 00238912 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-01-07 18:30 - 2014-10-17 05:56 - 00153920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-01-07 18:30 - 2014-10-17 05:56 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-01-07 18:30 - 2014-10-17 04:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-01-06 23:37 - 2015-01-06 23:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO
2015-01-05 17:51 - 2015-01-05 20:06 - 00020338 _____ () C:\Users\michael\Desktop\Brief GwG Viersen 5.01.2015.odt
2015-01-03 22:29 - 2015-01-03 22:38 - 00000000 ____D () C:\Users\michael\Documents\New Unity Project 1
2015-01-02 18:39 - 2015-01-02 18:39 - 00000061 ___SH () C:\WINDOWS\cnerolf.bin
2015-01-02 18:22 - 2015-01-02 18:22 - 00000000 ____D () C:\Users\michael\AppData\Roaming\IVAO
2015-01-02 18:22 - 2015-01-02 18:22 - 00000000 ____D () C:\Program Files (x86)\IVAO
2014-12-31 04:09 - 2015-01-08 01:55 - 00023686 _____ () C:\Users\michael\Desktop\Beschwerde feuerwerk.odt
2014-12-30 20:14 - 2014-12-30 20:15 - 00000000 ____D () C:\Users\michael\Desktop\VA-Apres_Ski_Club_Hits_2015-WEB-2014-JUSTiFY
2014-12-30 20:00 - 2015-01-06 22:57 - 00000000 ____D () C:\Users\michael\Desktop\autoscooter
2014-12-30 00:07 - 2014-12-30 00:07 - 00000000 ____D () C:\ProgramData\Abvent
2014-12-26 23:28 - 2014-12-26 23:28 - 00002182 _____ () C:\Users\Public\Desktop\Style Builder 2015.lnk
2014-12-26 23:28 - 2014-12-26 23:28 - 00002096 _____ () C:\Users\Public\Desktop\LayOut 2015.lnk
2014-12-26 23:28 - 2014-12-26 23:28 - 00002007 _____ () C:\Users\Public\Desktop\SketchUp 2015.lnk
2014-12-26 23:28 - 2014-12-26 23:28 - 00000000 ____D () C:\ProgramData\Reprise
2014-12-26 23:28 - 2014-12-26 23:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2015
2014-12-26 23:26 - 2014-12-26 23:26 - 00000000 ____D () C:\Program Files\SketchUp
2014-12-20 13:26 - 2014-12-20 13:27 - 00000000 ____D () C:\Users\michael\Desktop\VA-Kontor_Top_Of_The_Clubs_Vol.65-3CD-2014-VOiCE
2014-12-20 13:11 - 2014-12-20 13:11 - 00000000 ____D () C:\Users\michael\Desktop\VA-Fetenhits_Apres_Ski_Classics-2CD-DE-2014-VOiCE
2014-12-20 13:01 - 2014-12-20 13:01 - 00000000 ____D () C:\Users\michael\Desktop\VA-Baeaeaerenstark_2015-Die_Erste-3CD-DE-2014-VOiCE
2014-12-16 19:21 - 2015-01-06 23:01 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-12-16 19:21 - 2014-12-24 13:06 - 00001175 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-12-16 19:21 - 2014-12-24 13:06 - 00001125 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2014-12-16 19:16 - 2014-12-16 19:16 - 00000000 ____D () C:\Users\michael\Desktop\VA-Apres_Ski_Hits_2015_XXL-3CD-DE-2014-VOiCE
2014-12-16 19:06 - 2014-12-16 19:06 - 00001877 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk
2014-12-16 18:47 - 2014-12-16 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2014-12-16 18:47 - 2014-12-16 18:47 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2014-12-15 23:36 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-12-15 23:36 - 2014-10-30 23:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-12-12 20:22 - 2014-12-12 20:22 - 00001498 _____ () C:\Users\michael\Desktop\virtualdj_pro - Verknüpfung.lnk
2014-12-12 20:20 - 2015-01-08 02:21 - 00000000 ____D () C:\Users\michael\Documents\VirtualDJ
2014-12-12 20:20 - 2014-12-12 20:20 - 00003098 _____ () C:\WINDOWS\System32\Tasks\{9E83FA7A-B6A5-43C9-A290-A805F8022A38}
2014-12-12 20:20 - 2014-12-12 20:20 - 00000000 ____D () C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-12-12 20:20 - 2014-12-12 20:20 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2014-12-11 21:37 - 2014-12-12 23:18 - 00000000 ____D () C:\Users\michael\Desktop\VA-The_Dome_Vol.72-2CD-2014-VOiCE
2014-12-11 21:20 - 2014-12-11 21:20 - 00000000 ____D () C:\Users\michael\Desktop\VA-Fetenhits_Silvester_2014-3CD-2014-VOiCE
2014-12-11 01:32 - 2014-12-11 01:32 - 00000000 ____D () C:\WINDOWS\system32\appraiser

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-10 23:01 - 2014-07-23 18:48 - 00003922 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{32BBDE4D-B282-4F7F-B035-D66856071CF0}
2015-01-10 23:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-10 22:33 - 2014-09-05 20:28 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-10 22:03 - 2014-07-23 18:50 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2482852578-1705707732-3359007595-1002
2015-01-10 22:03 - 2014-07-23 18:46 - 00000000 __RDO () C:\Users\michael\SkyDrive
2015-01-10 22:01 - 2014-09-24 07:17 - 01806182 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-10 22:01 - 2014-09-24 06:43 - 00767490 _____ () C:\WINDOWS\system32\perfh007.dat
2015-01-10 22:01 - 2014-09-24 06:43 - 00159906 _____ () C:\WINDOWS\system32\perfc007.dat
2015-01-10 21:57 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-10 21:56 - 2014-11-18 00:16 - 01063498 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-10 21:56 - 2013-08-22 15:44 - 00368480 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-01-10 21:55 - 2013-08-22 16:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-10 20:29 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-10 20:18 - 2013-08-22 14:25 - 00000160 _____ () C:\WINDOWS\win.ini
2015-01-10 18:42 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-10 18:37 - 2014-09-26 12:57 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-01-10 18:37 - 2014-07-23 18:56 - 00000000 ___RD () C:\Users\michael\Desktop\Programme
2015-01-10 17:14 - 2014-07-23 18:50 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-10 17:14 - 2014-07-23 18:49 - 00000000 ____D () C:\Users\michael\AppData\Local\Google
2015-01-10 16:56 - 2014-11-18 01:25 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-01-10 16:55 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2015-01-10 02:44 - 2014-07-24 12:25 - 00000000 ____D () C:\Users\michael\Documents\Flight Simulator X-Dateien
2015-01-09 23:20 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-01-08 19:58 - 2014-11-21 23:06 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2015-01-08 19:57 - 2014-07-28 22:13 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2015-01-08 19:51 - 2014-03-03 15:06 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-08 02:10 - 2014-03-03 15:50 - 00002916 _____ () C:\WINDOWS\System32\Tasks\Power Management
2015-01-07 22:37 - 2014-11-18 00:24 - 00000000 ____D () C:\Users\michael
2015-01-07 20:45 - 2014-07-24 13:04 - 00001855 _____ () C:\Users\michael\Desktop\fsx - Verknüpfung.lnk
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2015-01-07 19:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2015-01-07 19:39 - 2014-09-24 07:00 - 00000000 ____D () C:\Program Files\Windows Journal
2015-01-07 19:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2015-01-07 19:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-01-07 19:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2015-01-07 19:38 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-01-07 19:38 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\sppui
2015-01-07 19:38 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\setup
2015-01-07 19:38 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2015-01-07 19:38 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Com
2015-01-07 19:38 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-01-07 19:38 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2015-01-07 19:38 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2015-01-07 19:38 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\servicing
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ___SD () C:\WINDOWS\system32\dsc
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\WinBioPlugIns
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sppui
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-01-07 19:37 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\IME
2015-01-07 19:37 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2015-01-07 19:37 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2015-01-07 19:37 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2015-01-07 19:35 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-01-07 19:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\WindowsPowerShell
2015-01-07 19:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2015-01-07 19:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-01-07 19:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2015-01-07 19:01 - 2013-08-22 16:36 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2015-01-07 19:01 - 2013-08-22 16:36 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2015-01-07 16:12 - 2014-11-17 00:47 - 00000000 ____D () C:\Users\michael\AppData\Roaming\DAEMON Tools Lite
2015-01-07 16:12 - 2014-10-04 18:39 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-07 15:49 - 2014-11-18 00:12 - 00000000 ___DC () C:\WINDOWS\Panther
2015-01-07 15:47 - 2014-07-23 21:16 - 00000000 ____D () C:\Users\michael\AppData\Local\CrashDumps
2015-01-06 23:02 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-01-06 23:01 - 2014-09-29 20:20 - 00000000 ____D () C:\ProgramData\Origin
2015-01-06 23:01 - 2014-09-29 20:20 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-01-06 23:01 - 2014-03-03 15:53 - 00000000 ____D () C:\ProgramData\Norton
2015-01-06 22:44 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\registration
2015-01-06 22:43 - 2014-12-04 22:59 - 00000000 ____D () C:\Users\michael\Desktop\festplatte
2015-01-03 22:37 - 2014-08-29 00:18 - 00000000 ____D () C:\ProgramData\Unity
2015-01-03 22:35 - 2014-08-29 20:52 - 00000000 ____D () C:\Users\michael\Documents\New Unity Project
2014-12-31 12:14 - 2014-07-23 19:26 - 00298120 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-12-26 23:29 - 2014-11-01 23:30 - 00000000 ____D () C:\Users\michael\AppData\Roaming\SketchUp
2014-12-26 23:26 - 2014-11-01 23:23 - 00000000 ____D () C:\ProgramData\SketchUp
2014-12-20 12:59 - 2014-11-23 21:08 - 00000000 ____D () C:\Users\michael\Documents\Bericht Soziologie
2014-12-16 18:48 - 2014-08-01 14:05 - 00000000 ____D () C:\Users\michael\AppData\Roaming\Ashampoo
2014-12-16 18:41 - 2014-07-29 00:29 - 00000000 ____D () C:\Users\michael\Desktop\schatzi und miguel firma
2014-12-12 09:36 - 2014-10-04 11:38 - 00000000 ____D () C:\Users\michael\AppData\Local\Adobe
2014-12-12 09:33 - 2014-09-05 20:28 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-12-11 01:32 - 2014-09-24 08:43 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-12-11 01:32 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-12-11 01:32 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-12-11 01:32 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions

Files to move or delete:
====================
C:\ProgramData\SMRResults430.dat


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-10 14:02

==================== End Of Log ============================

So den Absatz habe ich wieder RICHTIG

FRST Additions Logfile:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by michael at 2015-01-10 23:29:27
Running from C:\Users\michael\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8101 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.02.2006 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8100 - Acer Incorporated)
Acer Quick Access (HKLM\...\{C1FA525F-D701-4B31-9D32-504FC0CF0B98}) (Version: 1.00.3000 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8101 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.4.154 - Adobe Systems, Inc.)
aerosoft's - Approaching Innsbruck X (HKLM-x32\...\{70864384-DD19-44CB-A999-A917F32F623D}) (Version: 1.10 - aerosoft)
Aerosoft's - Herakilon X (HKLM-x32\...\Aerosoft's - Herakilon X) (Version:  - )
aerosoft's - Mallorca X for FSX (HKLM-x32\...\{07CC448E-4FFC-444F-999D-10F11AE559FB}) (Version: 1.00 - aerosoft)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.02.2004.7 - Acer Incorporated)
Ashampoo Burning Studio 6 FREE (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.7.7 - ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Die Schlacht um Mittelerde™ II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version:  - )
EPSON SX218 Series Printer Uninstall (HKLM\...\EPSON SX218 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Config V4 (HKLM-x32\...\{08013FB5-DF8B-4D29-9B5E-B3DE88EBA6CA}) (Version: 4.1.1 - SEIKO EPSON CORPORATION)
ETDWare PS/2-X64 11.6.28.201_WHQL (HKLM\...\Elantech) (Version: 11.6.28.201 - ELAN Microelectronic Corp.)
Flight Simulator X (HKLM-x32\...\RTMshadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version:  - )
Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1shadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version:  - )
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Audio Converter version 5.0.45.806 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.45.806 - DVDVideoSoft Ltd.)
FSX - Airbus A319-100 Air Berlin NC (HKLM-x32\...\FSX - Airbus A319-100 Air Berlin NC_is1) (Version:  - Dennie Theissen)
FSX - Airbus A319-100 Basepack v2 (HKLM-x32\...\FSX - Airbus A319-100 Basepack v2_is1) (Version:  - Project Airbus)
FSX - Airbus A319-100 Lufthansa (HKLM-x32\...\FSX - Airbus A319-100 Lufthansa_is1) (Version:  - Luke Spoor)
FSX - Airbus A320-200 Basepack v2 (HKLM-x32\...\FSX - Airbus A320-200 Basepack v2_is1) (Version:  - Project Airbus)
FSX - Airbus A320-200 Germanwings (HKLM-x32\...\FSX - Airbus A320-200 Germanwings_is1) (Version:  - Marcelo Veneziale)
FSX - Airbus A320-200 Iberia (HKLM-x32\...\FSX - Airbus A320-200 Iberia_is1) (Version:  - Rasa Moget)
FSX - Airbus A320-200 Wizz Air (HKLM-x32\...\FSX - Airbus A320-200 Wizz Air_is1) (Version:  - Joey Rafferty)
FSX - Airbus A330-200 Air Berlin (HKLM-x32\...\FSX - Airbus A330-200 Air Berlin_is1) (Version:  - Patrick-Philippe-Christian-Seifert)
FSX - Airbus A330-200 Basepack (HKLM-x32\...\FSX - Airbus A330-200 Basepack_is1) (Version:  - Thomas Ruth)
FSX - Boeing 737-800 Air Berlin (HKLM-x32\...\FSX - Boeing 737-800 Air Berlin_is1) (Version:  - Misha Grift)
FSX - Boeing 737-800 Basepack (HKLM-x32\...\FSX - Boeing 737-800 Basepack_is1) (Version:  - Project Open Sky)
FSX - Boeing 757-200 Basepack (HKLM-x32\...\FSX - Boeing 757-200 Basepack_is1) (Version:  - Project Open Sky)
FSX - Boeing 757-200 Iberia (HKLM-x32\...\FSX - Boeing 757-200 Iberia_is1) (Version:  - Project Open Sky)
FSX - Bombardier Dash 8-Q400 Basepack (HKLM-x32\...\FSX - Bombardier Dash 8-Q400 Basepack_is1) (Version:  - Premier Aircraft Design)
FSX - Bombardier Dash 8-Q400 Lufthansa Regional (HKLM-x32\...\FSX - Bombardier Dash 8-Q400 Lufthansa Regional_is1) (Version:  - Nick)
Funfair Machines Break Dance No.1 V1.1 (HKLM-x32\...\Funfair Machines Break Dance No.1 V1.1) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2267.0 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HAMA Joystick Outlandish (HKLM-x32\...\HAMA Joystick Outlandish) (Version:  - )
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
IvAp v2.0.2 (build 2773) (HKLM-x32\...\IvAp-v2_is1) (Version:  - IVAO)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
MD Adressbuch 2012 (HKLM-x32\...\MD Adressbuch 2012_is1) (Version:  - Stefan Göppert Softwareentwicklung)
Microsoft Flight Simulator X: Acceleration (HKLM-x32\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{E75776B2-EAE5-42F9-A800-0A10763DEDF0}) (Version: 11.0.2318.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Morphyre (HKLM-x32\...\Morphyre) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 33.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 de)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.3 - Mozilla)
MSXML 4.0 SP2 Parser und SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
NetOn 2.1 (HKLM-x32\...\NetOn 2_is1) (Version:  - Rct-Net.de)
NetOn Patch 2.1 (HKLM-x32\...\NetOn Patch 2.1_is1) (Version:  - Rct-Net.de)
Norton Online Backup (HKLM-x32\...\{E625FCA0-E43E-4D3B-92FF-4851308A0366}) (Version: 2.8.0.44 - Symantec Corporation)
Norton Online Backup (x32 Version: 4.5.0.9 - Symantec Corporation) Hidden
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 344.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.60 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PlagueInc 1.0 (HKLM-x32\...\PlagueInc 1.0) (Version: 1.0 - Cat-A-Cat)
PMDG 737 8900 NGX (HKLM-x32\...\{20708FD5-E94D-4097-A21E-E28564CDBC06}) (Version: 1.00.2888 - PMDG Simulations, LLC.)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.23 - Qualcomm Atheros)
RAGE (HKLM-x32\...\Steam App 9200) (Version:  - id Software)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7027 - Realtek Semiconductor Corp.)
REX 4 - Texture Direct (HKLM-x32\...\{CACCC25C-70B5-4FD1-AF01-10D11B87DED8}) (Version: 4.0.2013.1215 - REX Game Studios, LLC.)
RollerCoaster Tycoon 3 Platinum (HKLM-x32\...\{907B4640-266B-4A21-92FB-CD1A86CD0F63}) (Version: 1.00.000 - Atari)
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
SketchUp 2014 (HKLM-x32\...\{9E620BD5-AEEC-492D-9065-D71FCD4C52F1}) (Version: 14.1.1282 - Trimble Navigation Limited)
SketchUp 2015 (HKLM\...\{58ED0432-DEE1-4EEB-AC0D-BED28A4347D1}) (Version: 15.2.685 - Trimble Navigation Limited)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tweaking.com - Windows Repair (All in One) (HKLM-x32\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.10.2 - Tweaking.com)
Unity Web Player (HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\...\UnityWebPlayer) (Version: 4.6.0f2 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.5.5f1 - Unity Technologies ApS)
VirtualDJ PRO Full (HKLM-x32\...\{4769E972-2E92-49C5-B6F9-465EFD0C4D94}) (Version: 7.0.5 - Atomix Productions)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Mobile-Gerätecenter (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

08-01-2015 19:50:15 Installed PMDG 737 8900 NGX
10-01-2015 17:09:48 Revo Uninstaller's restore point - Google Chrome

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2015-01-10 20:18 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {229A7E5A-4779-4144-B371-09CBC3418922} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-10] (Google Inc.)
Task: {2E4101D1-240B-4D00-B198-E8DE8462445D} - System32\Tasks\Anwendungs-ID-TreiberAnwendungsidentitätAnwendungsinformationen => C:\Windows\HelpPaoe.exe
Task: {31C78199-E342-4A21-9A38-FD62F88B5195} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)
Task: {3706E3C3-F2DF-44F6-8F68-B06BB516BAD3} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2014-10-20] (Acer)
Task: {37A284FB-EF37-499D-8307-1CEBCAB42334} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-09-12] (Acer Incorporated)
Task: {455E21AD-D0CD-4D82-B072-C916E5D1AFB8} - System32\Tasks\Norton Online Backup ARA => C:\Program Files (x86)\Norton Online Backup ARA\Engine\4.5.0.9\\Ara.exe [2013-08-07] (Symantec Corporation)
Task: {4B662908-CE0C-4C71-A6DA-48B62309E9CC} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {5DB58EC1-117B-4169-938C-8D554B46C350} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-12] (Adobe Systems Incorporated)
Task: {713064D9-2192-4528-88E0-82B891D7A95A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-10] (Microsoft Corporation)
Task: {8E653D9B-F697-4C2E-B250-2500C91C5537} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-08-02] (Acer Incorporate)
Task: {98608C87-2D03-4C6D-9326-6B7F074E7500} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2013-08-02] (Acer Incorporate)
Task: {BE836F8D-A9F7-4ACC-B389-6C79D154CBB3} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {C1766D7D-45EB-49E3-88C5-9349C23FCC73} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-07-05] (Acer Incorporated)
Task: {E5336393-7CBD-478D-B3CB-7346F5663018} - System32\Tasks\{9E83FA7A-B6A5-43C9-A290-A805F8022A38} => pcalua.exe -a "C:\Program Files (x86)\Cheat Engine 6.4\unins000.exe"
Task: {EE0546FF-6C11-4893-BA0E-8702D8DA39B2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-01-10] (Google Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-11-18 00:16 - 2014-10-30 03:10 - 00117064 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-12-24 02:22 - 2013-12-24 02:22 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-12-24 02:20 - 2013-12-24 02:20 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-12-24 02:26 - 2013-12-24 02:26 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2015-01-10 17:14 - 2015-01-05 17:47 - 01523528 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2267.0\libglesv2.dll
2015-01-10 17:14 - 2015-01-05 17:47 - 00091976 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2267.0\libegl.dll
2015-01-10 17:14 - 2015-01-05 17:47 - 11221320 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2267.0\pdf.dll
2015-01-10 22:08 - 2015-01-10 22:08 - 02604616 _____ () C:\Program Files\Unity\WebPlayer64\mono\Stable3.x.x-x64\mono-1-vc.dll
2014-03-03 15:33 - 2013-09-04 00:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm
AlternateDataStreams: C:\Users\michael\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\michael\Documents\Julia Leloup Praktikum Seite 1.jpg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\michael\Documents\Julia Leloup Praktikum Seite 1.jpg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\michael\Documents\Julia Leloup Praktikum Seite 2.jpg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\michael\Documents\Julia Leloup Praktikum Seite 2.jpg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\michael\Documents\Polizei Unfall Aufnahme.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\michael\Documents\Polizei Unfall Aufnahme.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\michael\Documents\Schaden Seite1.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\michael\Documents\Schaden Seite1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\michael\Documents\Schaden Seite2.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\michael\Documents\Schaden Seite2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "Windows Mobile Device Center"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\...\StartupApproved\Run: => "Epson Stylus SX218"

========================= Accounts: ==========================

Administrator (S-1-5-21-2482852578-1705707732-3359007595-500 - Administrator - Disabled)
Gast (S-1-5-21-2482852578-1705707732-3359007595-501 - Limited - Disabled)
michael (S-1-5-21-2482852578-1705707732-3359007595-1002 - Administrator - Enabled) => C:\Users\michael

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/10/2015 10:03:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20689 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: f38

Startzeit: 01d02d182afb73a4

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 1fc840e6-990c-11e4-82b8-2025644cb426

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (01/10/2015 09:58:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Vom Kryptografiedienst konnte die Katalogdatenbank nicht initialisiert werden. "ESENT"-Fehler: -1216.

Error: (01/10/2015 09:58:33 PM) (Source: ESENT) (EventID: 454) (User: )
Description: Catalog Database (1120) Catalog Database: Bei Datenbankwiederherstellung trat ein unerwarteter Fehler -1216 auf.

Error: (01/10/2015 09:58:33 PM) (Source: ESENT) (EventID: 494) (User: )
Description: Catalog Database (1120) Catalog Database: Bei der Datenbankwiederherstellung ist ein Fehler aufgetreten (Fehler -1216), da Verweise auf Datenbank "C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb" festgestellt wurden, die nicht mehr vorhanden ist. Die Datenbank wurde nicht sauber heruntergefahren, bevor sie entfernt (oder möglicherweise verschoben oder umbenannt) wurde. Das Datenbankmodul lässt den Abschluss der Wiederherstellung für diese Instanz erst dann zu, wenn die fehlende Datenbank wieder verfügbar gemacht wird. Wenn die Datenbank tatsächlich nicht mehr verfügbar oder nicht mehr erforderlich ist, finden Sie Informationen zum Beheben dieses Fehlers in der Microsoft Knowledge Base oder unter dem Link "Weitere Informationen" am Ende dieser Meldung.

Error: (01/10/2015 09:56:08 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNetworkStreamService did not shut down when asked, terminating. [1008]

Error: (01/10/2015 08:33:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: NAMI)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2144927151. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "StorageWMI" wurde versucht, die Abfrage "select * from MSFT_StorageModificationEvent" zu registrieren, deren Zielklasse "MSFT_StorageModificationEvent" im Namespace "//./root/Microsoft/Windows/Storage" nicht vorhanden ist. Die Abfrage wird ignoriert.

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "StorageWMI" wurde versucht, die Abfrage "select * from MSFT_StorageDepartureEvent" zu registrieren, deren Zielklasse "MSFT_StorageDepartureEvent" im Namespace "//./root/Microsoft/Windows/Storage" nicht vorhanden ist. Die Abfrage wird ignoriert.

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "StorageWMI" wurde versucht, die Abfrage "select * from MSFT_StorageArrivalEvent" zu registrieren, deren Zielklasse "MSFT_StorageArrivalEvent" im Namespace "//./root/Microsoft/Windows/Storage" nicht vorhanden ist. Die Abfrage wird ignoriert.

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: Vom Ereignisanbieter "StorageWMI" wurde versucht, die Abfrage "select * from MSFT_StorageAlertEvent" zu registrieren, deren Zielklasse "MSFT_StorageAlertEvent" im Namespace "//./root/Microsoft/Windows/Storage" nicht vorhanden ist. Die Abfrage wird ignoriert.


System errors:
=============
Error: (01/10/2015 10:03:11 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Intel(R) Management and Security Application Local Management Service" wurde nicht richtig gestartet.

Error: (01/10/2015 06:42:11 PM) (Source: DCOM) (EventID: 10010) (User: NAMI)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (01/10/2015 06:41:19 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NAMI)
Description: C:\Device\HarddiskVolume43


Microsoft Office Sessions:
=========================
Error: (01/10/2015 10:03:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689f3801d02d182afb73a44294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe1fc840e6-990c-11e4-82b8-2025644cb426microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (01/10/2015 09:58:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: -1216

Error: (01/10/2015 09:58:33 PM) (Source: ESENT) (EventID: 454) (User: )
Description: Catalog Database1120Catalog Database: -1216

Error: (01/10/2015 09:58:33 PM) (Source: ESENT) (EventID: 494) (User: )
Description: Catalog Database1120Catalog Database: -1216C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb

Error: (01/10/2015 09:56:08 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNetworkStreamService did not shut down when asked, terminating. [1008]

Error: (01/10/2015 08:33:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: NAMI)
Description: winstore_cw5n1h2txyewy!Windows.Store-2144927151

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: StorageWMIselect * from MSFT_StorageModificationEventMSFT_StorageModificationEvent//./root/Microsoft/Windows/Storage

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: StorageWMIselect * from MSFT_StorageDepartureEventMSFT_StorageDepartureEvent//./root/Microsoft/Windows/Storage

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: StorageWMIselect * from MSFT_StorageArrivalEventMSFT_StorageArrivalEvent//./root/Microsoft/Windows/Storage

Error: (01/10/2015 08:16:59 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT-AUTORITÄT)
Description: StorageWMIselect * from MSFT_StorageAlertEventMSFT_StorageAlertEvent//./root/Microsoft/Windows/Storage


CodeIntegrity Errors:
===================================
  Date: 2015-01-10 20:38:36.477
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:36.117
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:35.633
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:35.227
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:34.758
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:34.383
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:01.068
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:38:00.568
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:37:25.649
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-10 20:37:25.243
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4200M CPU @ 2.50GHz
Percentage of memory in use: 38%
Total physical RAM: 3976.27 MB
Available physical RAM: 2434.34 MB
Total Pagefile: 5033.25 MB
Available Pagefile: 3202.92 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:913.26 GB) (Free:600.87 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 24A2748F)

Partition: GPT Partition Type.

==================== End Of Log ============================

--- --- ---

hansi2011 · 10.01.2015, 23:50

Code:

ATTFilter

Users shortcut scan result (x64) Version: 07-01-2015
Ran by michael at 2015-01-10 23:31:56
Running from C:\Users\michael\Desktop
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)



Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera.lnk -> C:\Windows\Camera\Camera.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk -> C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe (Canneverbe Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk -> C:\Windows\FileManager\FileManager.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotosApp.lnk -> C:\Windows\FileManager\PhotosApp.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotify.lnk -> C:\Program Files (x86)\Spotify\SpotifyLauncher.exe (Spotify Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Software Deals.lnk -> C:\ProgramData\Ashampoo\YourDeals.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity\MonoDevelop.lnk -> C:\Program Files (x86)\Unity\MonoDevelop\bin\MonoDevelop.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com\Windows Repair (All in One)\Tweaking.com - Registry Backup.lnk -> C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\files\registry_backup_tool\TweakingRegistryBackup.exe (Tweaking.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com\Windows Repair (All in One)\Tweaking.com - Windows Repair (All in One).lnk -> C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Repair_Windows.exe (Tweaking.com)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.lnk -> C:\Windows\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C92.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2015\LayOut.lnk -> C:\Program Files\SketchUp\SketchUp 2015\LayOut\LayOut.exe (Trimble Navigation Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2015\SketchUp.lnk -> C:\Program Files\SketchUp\SketchUp 2015\SketchUp.exe (Trimble Navigation Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2015\Style Builder.lnk -> C:\Program Files\SketchUp\SketchUp 2015\Style Builder\Style Builder.exe (Trimble Navigation Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2014\LayOut.lnk -> C:\Program Files (x86)\SketchUp\SketchUp 2014\LayOut\LayOut.exe (Trimble Navigation Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2014\SketchUp.lnk -> C:\Program Files (x86)\SketchUp\SketchUp 2014\SketchUp.exe (Trimble Navigation Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2014\Style Builder.lnk -> C:\Program Files (x86)\SketchUp\SketchUp 2014\Style Builder\Style Builder.exe (Trimble Navigation Limited)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REX 4\Texture Direct\REX 4 - Texture Direct.lnk -> C:\REX Texture Direct\rextexturedirect.exe (REX Game Studios, LLC.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\Flt Crew Training Manual.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\PMDG 737 NGX\Flight Manuals\PMDG-NGX-FCTM.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\Livery Manager.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\Livery Manager\PMDG_Livery_Manager.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\NGX Introduction.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\PMDG 737 NGX\Flight Manuals\PMDG-737NGX-Introduction.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\NGX Tutorial 1.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\PMDG 737 NGX\Flight Manuals\PMDG-737NGX-Tutorial-1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\Operating Manual Vol. 1.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\PMDG 737 NGX\Flight Manuals\PMDG-NGX-FCOMv1.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\Operating Manual Vol. 2.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\PMDG 737 NGX\Flight Manuals\PMDG-NGX-FCOMv2.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations\PMDG 737NGX\Quick Reference Handbook.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\PMDG\PMDG 737 NGX\Flight Manuals\PMDG-NGX-QRH.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape\PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\PhotoScape.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape\Uninstall PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\uninstall.exe (Mooii)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice Base.lnk -> C:\Program Files (x86)\OpenOffice 4\program\sbase.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice Calc.lnk -> C:\Program Files (x86)\OpenOffice 4\program\scalc.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice Draw.lnk -> C:\Program Files (x86)\OpenOffice 4\program\sdraw.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice Impress.lnk -> C:\Program Files (x86)\OpenOffice 4\program\simpress.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice Math.lnk -> C:\Program Files (x86)\OpenOffice 4\program\smath.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice Writer.lnk -> C:\Program Files (x86)\OpenOffice 4\program\swriter.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0\OpenOffice.lnk -> C:\Program Files (x86)\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe (NVIDIA)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetOn 2\Readme lesen.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon® 3\NetOn 2\Readme.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetOn 2\Uninstall NetOn 2.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon® 3\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetOn 2\Patch 2.1\NetOn Patch 2.1 entfernen.lnk -> C:\Program Files (x86)\Atari\Rollercoaster Tycoon 3\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero ControlCenter.lnk -> C:\Windows\Installer\{ABC88553-8770-4B97-B43E-5A90647A5B63}\ScControlCenterSta_FC2653898C5047A6A872CAF6433C43A8.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 12\Nero BackItUp.lnk -> C:\Windows\Installer\{DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}\BackItUp._6DE631547FD24BC5962A4E5F07A1BE20.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero 12\Nero RescueAgent.lnk -> C:\Windows\Installer\{A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}\NeroRescueAgent.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe (Acresso Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MD Adressbuch 2012\Benutzerhandbuch.lnk -> C:\Users\michael\Desktop\schatzi und miguel firma\mda\documentation.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MD Adressbuch 2012\MD Adressbuch 2012 entfernen.lnk -> C:\Users\michael\Desktop\schatzi und miguel firma\mda\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MD Adressbuch 2012\MD Adressbuch 2012.lnk -> C:\Users\michael\Desktop\schatzi und miguel firma\mda\mda.exe (Stefan Göppert Softwareentwicklung)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files (x86)\Java\jre7\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\IvAp v2 - Configuration.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\ivap_config.exe (International Virtual Aviation Organisation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\MTL Installer - Updater.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\mtl.exe (IVAO - International Virtual Aviation Organisation (tm))
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\Uninstall IvAp - IVAO Virtual Pilot Client.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\Online\IvAp Forums.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\forum.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\Online\IvAp Website.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\ivap.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\Online\MTL Website.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\mtl.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Documentation.pdf.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Language\German\Documentation.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Open FsPassengersX Folder.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Uninstall FsPassengersX.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Uninstall.exe (SecondReality Software s.a.r.l)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Tools\Aircraft Price & Rank Browser.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Utilities\AircraftBrowserX.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Tools\Language editor.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Language\FsPXEditLanguage.exe (SecondReality software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Tools\Map editor.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Ui\maphires\FsPMapHiRes.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Tools\Payload_Editor.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Payload_model\Payload_Editor.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\Tools\Voice pack creator.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\FsPassengers\Utilities\VoicePackCreator.exe (SecondReality Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EpsonNet\EpsonNet Config V4\EpsonNet Config Manual.lnk -> C:\Program Files (x86)\EpsonNet\EpsonNet Config V4\HELP\de\EpsonNet Config Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EpsonNet\EpsonNet Config V4\EpsonNet Config User's Guide.lnk -> C:\Program Files (x86)\EpsonNet\EpsonNet Config V4\HELP\de\ENConfig.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EpsonNet\EpsonNet Config V4\EpsonNet Config.lnk -> C:\Program Files (x86)\EpsonNet\EpsonNet Config V4\ENConfig.exe (SEIKO EPSON CORPORATION)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Die Schlacht um Mittelerde™ II - Weltenbauer.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\WorldBuilder.exe (Electronic Arts Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Die Schlacht um Mittelerde™ II deinstallieren.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\eauninstall.exe (Electronic Arts Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Die Schlacht um Mittelerde™ II.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\lotrbfme2.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Kundendienst.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\Support\European Help Files\EA_Help_Select.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Readme.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\Support\de\readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free Audio Converter.lnk -> C:\Program Files (x86)\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\PremiumMembershipOffer.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3\Crysis 3 Endbenutzer-Lizenzvertrag.lnk -> C:\Program Files (x86)\Origin Games\Crysis 3\Support\eula\de_DE_eula.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3\Crysis 3.lnk -> C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe (Crytek GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3\Kundendienst.lnk -> C:\Program Files (x86)\Origin Games\Crysis 3\Support\EA Help\Kundendienst.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 3\Readme.lnk -> C:\Program Files (x86)\Origin Games\Crysis 3\Support\readme\readme.de.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari\RollerCoaster Tycoon 3 Platinum\RCT3 Manual.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\RCT3_MANUAL_USA.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari\RollerCoaster Tycoon 3 Platinum\Readme.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\Readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari\RollerCoaster Tycoon 3 Platinum\RollerCoaster Tycoon 3 Platinum.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\RCT3plus.exe (Frontier Developments Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari\RollerCoaster Tycoon 3 Platinum\Soaked Manual.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\RCT3S_MANUAL_USA.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari\RollerCoaster Tycoon 3 Platinum\Wild Manual.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\RCT3W_MANUAL_USA.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo Burning Studio 6 FREE\Ashampoo Burning Studio 6 FREE entfernen.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 6 FREE\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo Burning Studio 6 FREE\Ashampoo Burning Studio 6 FREE.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 6 FREE\burningstudio.exe (ashampoo Technology GmbH & Co. KG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo Burning Studio 6 FREE\Hilfe.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 6 FREE\lang\BurningStudio-de-de.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo Burning Studio 6 FREE\Liesmich.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 6 FREE\readme_de.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Mallorca X\LEPATraffic.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Mallorca X SC\LEPATraffic.exe (LSY)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Mallorca X\Mallorca X - Handbuch.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Mallorca X SC\Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Mallorca X\Season-Tool.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Season.exe (Aerosoft GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Heraklion X\Heraklion X - City Configuration.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Heraklion X\Heraklion X_2_Scenery\Scenery\Heraklion X - City Configuration.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Heraklion X\Heraklion X Manager.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Heraklion X\Heraklion X_1\scenery\Heraklion X Manager.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Heraklion X\LGIRTraffic-Tool.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Heraklion X\Heraklion X_1\LGIRTraffic.exe (Oliver Pabst)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Heraklion X\Manual.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Heraklion X\Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Heraklion X\Uninstall Herakilon X.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\UnLGIRX.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Approaching Innsbruck X\LOWI-Traffic.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Approaching LOWI X\LOWITraffic.exe (Oliver Pabst)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Approaching Innsbruck X\Manual.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Approaching LOWI X\Manual_Innsbruck.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Approaching Innsbruck X\Season.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Aerosoft\Season.exe (Aerosoft GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Portal.lnk -> C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe (Acer)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Power Management.lnk -> C:\Program Files\Acer\Acer Power Management\ePowerUI.exe (Acer Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Quick Access.lnk -> C:\Program Files\Acer\Acer Quick Access\QAStart.exe (Acer Incorporate)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Recovery Management.lnk -> C:\Program Files\Acer\Acer Recovery Management\eRecoveryUI.exe (Acer Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer User's Manual.lnk -> C:\OEM\Preload\Autorun\GUI\Acer User's Manual\00\LaunchPDF.exe (Acer)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Identity Card.lnk -> C:\Program Files (x86)\Acer\Identity Card\IDCard.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Live Updater.lnk -> C:\Program Files (x86)\Acer\Live Updater\updater.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{8DCE239B-3357-4DA8-8126-5CA095E9270D}\PlayTasks\0\Launch.lnk -> C:\Program Files (x86)\Steam\SteamApps\common\RAGE\Rage.exe (id Software)
Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{2DE35788-8A0C-45D5-A0CA-63FBAFED2E38}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe (Microsoft Corp.)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\michael\Documents ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\michael\Pictures ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\Videos\Sample Videos.lnk -> C:\Users\Public\Videos\Sample Videos (No File)
Shortcut: C:\Users\michael\Music\Sample Music.lnk -> C:\Users\Public\Music\Sample Music (No File)
Shortcut: C:\Users\michael\Links\Desktop.lnk -> C:\Users\michael\Desktop ()
Shortcut: C:\Users\michael\Links\Downloads.lnk -> C:\Users\michael\Downloads ()
Shortcut: C:\Users\michael\Documents\Euro Truck Simulator 2\readme.rtf.lnk -> C:\2-click run\Euro Truck Simulator 2  v1.5.2.1s with Going East DLC\readme.rtf (No File)
Shortcut: C:\Users\michael\Desktop\Fraps.lnk -> C:\Fraps\fraps.exe (Beepa P/L)
Shortcut: C:\Users\michael\Desktop\fsx - Verknüpfung.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe (Microsoft Corp.)
Shortcut: C:\Users\michael\Desktop\RCT3plus - Verknüpfung.lnk -> C:\Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\RCT3plus.exe (Frontier Developments Ltd)
Shortcut: C:\Users\michael\Desktop\Tweaking.com - Windows Repair (All in One).lnk -> C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Repair_Windows.exe (Tweaking.com)
Shortcut: C:\Users\michael\Desktop\virtualdj_pro - Verknüpfung.lnk -> C:\Program Files (x86)\VirtualDJ\virtualdj_pro.exe (Atomix Productions)
Shortcut: C:\Users\michael\Desktop\Programme\Acer Portal.lnk -> C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe (Acer)
Shortcut: C:\Users\michael\Desktop\Programme\Ashampoo Burning Studio 6 FREE.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 6 FREE\burningstudio.exe (ashampoo Technology GmbH & Co. KG)
Shortcut: C:\Users\michael\Desktop\Programme\Ashampoo Burning Studio FREE.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio FREE\burningstudio.exe (No File)
Shortcut: C:\Users\michael\Desktop\Programme\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
Shortcut: C:\Users\michael\Desktop\Programme\Cheat Engine.lnk -> C:\Program Files (x86)\Cheat Engine 6.4\Cheat Engine.exe (No File)
Shortcut: C:\Users\michael\Desktop\Programme\eBay.lnk -> c:\Windows\Installer\{91589413-6675-4C27-8AFC-EFB9103B90A5}\_1ADE67C705AECB54139530.exe (No File)
Shortcut: C:\Users\michael\Desktop\Programme\Free Audio Converter.lnk -> C:\Program Files (x86)\DVDVideoSoft\Free Audio Converter\FreeAudioConverter.exe (DVDVideoSoft Ltd.)
Shortcut: C:\Users\michael\Desktop\Programme\Freeway.lnk -> C:\Users\michael\Documents\freewayprogramm\freeway.exe (No File)
Shortcut: C:\Users\michael\Desktop\Programme\OpenOffice 4.1.0.lnk -> C:\Program Files (x86)\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
Shortcut: C:\Users\michael\Desktop\Programme\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\Users\michael\Desktop\Programme\PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\PhotoScape.exe ()
Shortcut: C:\Users\michael\Desktop\Programme\PlagueInc.lnk -> C:\Games\PlagueInc\PlagueIncEvolved.exe ()
Shortcut: C:\Users\michael\Desktop\Programme\REX 4 - Texture Direct.lnk -> C:\REX Texture Direct\rextexturedirect.exe (REX Game Studios, LLC.)
Shortcut: C:\Users\michael\Desktop\Programme\Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\michael\Desktop\Programme\WildTangent Games App - acer.lnk -> C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe (No File)
Shortcut: C:\Users\michael\Desktop\Programme\Überwachungstool für die Intel® Turbo-Boost-Technik 2.6.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (No File)
Shortcut: C:\Users\michael\Desktop\Programme\Fsx\FSX\Aerosoft Launcher.lnk -> C:\Program Files (x86)\Aerosoft\Launcher\aeroSOFTLauncher.exe (No File)
Shortcut: C:\Users\michael\Desktop\kirmessimulator\Magic Simulatie.lnk -> C:\Users\michael\Documents\DR\Magic Simulatie\Magic.exe ()
Shortcut: C:\Users\michael\Desktop\kirmessimulator\Autoscooter\neu#\LayOut 2014.lnk -> C:\Program Files (x86)\SketchUp\SketchUp 2014\LayOut\LayOut.exe (Trimble Navigation Limited)
Shortcut: C:\Users\michael\Desktop\kirmessimulator\Autoscooter\neu#\SketchUp 2014.lnk -> C:\Program Files (x86)\SketchUp\SketchUp 2014\SketchUp.exe (Trimble Navigation Limited)
Shortcut: C:\Users\michael\Desktop\kirmessimulator\Autoscooter\neu#\Style Builder 2014.lnk -> C:\Program Files (x86)\SketchUp\SketchUp 2014\Style Builder\Style Builder.exe (Trimble Navigation Limited)
Shortcut: C:\Users\michael\Desktop\festplatte\Videos\Sample Videos.lnk -> C:\Users\Public\Videos\Sample Videos (No File)
Shortcut: C:\Users\michael\Desktop\festplatte\Pictures\Sample Pictures.lnk -> C:\Users\Public\Pictures\Sample Pictures (No File)
Shortcut: C:\Users\michael\Desktop\festplatte\Music\Sample Music.lnk -> E:\Users\Public\Music\Sample Music (No File)
Shortcut: C:\Users\michael\Desktop\festplatte\FSX\Aerosoft Launcher.lnk -> C:\Program Files (x86)\Aerosoft\Launcher\aeroSOFTLauncher.exe (No File)
Shortcut: C:\Users\michael\Desktop\festplatte\alles\Fraps.lnk -> E:\Fraps\fraps.exe (No File)
Shortcut: C:\Users\michael\Desktop\festplatte\alles\fsx.exe.limited - Verknüpfung.lnk -> E:\Users\miguel\Desktop\Programme\FSX\FPS_Limiter_0.2\fsx.exe.limited.bat (No File)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\michael\Documents ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\michael\Pictures ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Rip DVD.lnk -> C:\Program Files (x86)\VirtualDJ\ripdvd.exe ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Rip Vinyl.lnk -> C:\Program Files (x86)\VirtualDJ\ripvinyl.exe (Atomix Productions)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Setup Audio.lnk -> C:\Users\michael\Documents\VirtualDJ\VirtualDJ 7 - Audio Setup Guide.pdf ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Setup QuickStart.lnk -> C:\Users\michael\Documents\VirtualDJ\VirtualDJ 7 - Getting Started.pdf ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\User Guide.lnk -> C:\Users\michael\Documents\VirtualDJ\VirtualDJ 7 - User Guide.pdf ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\VirtualDJ PRO Full.lnk -> C:\Program Files (x86)\VirtualDJ\virtualdj_pro.exe (Atomix Productions)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Morphyre Visualizer\Readme.lnk -> C:\Program Files (x86)\Morphyre\Readme.html ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Morphyre Visualizer\Uninstall.lnk -> C:\Program Files (x86)\Morphyre\uninstall.exe ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps\Fraps.lnk -> C:\Fraps\fraps.exe (Beepa P/L)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps\Uninstall.lnk -> C:\Fraps\uninstall.exe (Beepa Pty Ltd)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\PhotoScape.exe ()
Shortcut: C:\Users\michael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Videos\Sample Videos.lnk -> C:\Users\Public\Videos\Sample Videos (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Music\Sample Music.lnk -> C:\Users\Public\Music\Sample Music (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Desktop\fsx - Verknüpfung.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe (Microsoft Corp.)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Desktop\fsx.exe.limited - Verknüpfung.lnk -> E:\Users\miguel\Desktop\Programme\FSX\FPS_Limiter_0.2\fsx.exe.limited.bat (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Desktop\Programme\Fsx\FSX\Aerosoft Launcher.lnk -> C:\Program Files (x86)\Aerosoft\Launcher\aeroSOFTLauncher.exe (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\61\C\Users\michael\Desktop\VirtualDJ Home FREE.lnk -> C:\Program Files (x86)\VirtualDJ\virtualdj_home.exe (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\50\C\Users\michael\Desktop\PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\PhotoScape.exe ()
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\49\C\Users\michael\Desktop\VirtualDJ 8.lnk -> C:\Program Files (x86)\VirtualDJ\virtualdj8.exe (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\33\C\Users\michael\Desktop\PlayMaxPayne3 - Verknüpfung.lnk -> C:\Program Files (x86)\Rockstar Games\Max Payne 3\PlayMaxPayne3.exe (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\20\C\Users\michael\Desktop\Fraps.lnk -> C:\Fraps\fraps.exe (Beepa P/L)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\2\C\Users\michael\Desktop\Programme\eBay.lnk -> c:\Windows\Installer\{91589413-6675-4C27-8AFC-EFB9103B90A5}\_1ADE67C705AECB54139530.exe (No File)
Shortcut: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\19\C\Users\michael\Desktop\fsx - Verknüpfung.lnk -> C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe (Microsoft Corp.)
Shortcut: C:\Users\Public\Desktop\Break Dance No.1 Funfair Machines.lnk -> C:\Program Files (x86)\Funfair Machines\Break Dance No.1\BreakDance No1 - FunfairMachines.exe ()
Shortcut: C:\Users\Public\Desktop\CDBurnerXP.lnk -> C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe (Canneverbe Limited)
Shortcut: C:\Users\Public\Desktop\Crysis 3.lnk -> C:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe (Crytek GmbH)
Shortcut: C:\Users\Public\Desktop\Die Schlacht um Mittelerde™ II.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\lotrbfme2.exe ()
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\LayOut 2015.lnk -> C:\Program Files\SketchUp\SketchUp 2015\LayOut\LayOut.exe (Trimble Navigation Limited)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\SketchUp 2015.lnk -> C:\Program Files\SketchUp\SketchUp 2015\SketchUp.exe (Trimble Navigation Limited)
Shortcut: C:\Users\Public\Desktop\Style Builder 2015.lnk -> C:\Program Files\SketchUp\SketchUp 2015\Style Builder\Style Builder.exe (Trimble Navigation Limited)


ShortcutWithArgument: C:\Users\michael\Desktop\Programme\Online kaufen.lnk -> C:\Program Files\Accessory Store\StartURL.exe () -> hxxp://go.acer.com/?id=13400&model=Aspire E1-772G
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\2\C\Users\michael\Desktop\Programme\Online kaufen.lnk -> C:\Program Files\Accessory Store\StartURL.exe () -> hxxp://go.acer.com/?id=13400&model=Aspire E1-772G


ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.EXE (Microsoft Corporation) -> /OEM
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> -sta {C90FB8CA-3295-4462-A721-2935E83694BA}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mobile Device Center.lnk -> C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe (Microsoft Corporation) -> /show
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com\Windows Repair (All in One)\Uninstall Tweaking.com - Windows Repair (All in One).lnk -> C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\uninstall.exe (Indigo Rose Corporation) -> "/U:C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Uninstall\uninstall.xml"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup\Norton Online Backup.lnk -> C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation) -> OPEN
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files (x86)\Java\jre7\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files (x86)\Java\jre7\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\IvAp v2 - External.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\ivap_dllhost.exe (International Virtual Aviation Organisation) -> "C:\Program Files (x86)\IVAO\IvAp v2\ivap_fsx.dll"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\MTL\Hide all Aircraft.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\mtlbuilder.exe (International Virtual Aviation Organisation) -> --hidden
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO\IvAp - IVAO Virtual Pilot Client v2\MTL\Show all Aircraft.lnk -> C:\Program Files (x86)\IVAO\IvAp v2\mtlbuilder.exe (International Virtual Aviation Organisation) -> --show
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON SX218 Series\EPSON-Druckersoftware deinstallieren.lnk -> C:\Windows\System32\spool\drivers\x64\3\E_IINSGDE.EXE (SEIKO EPSON CORPORATION) -> /R /APD /P:"EPSON SX218 Series"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON SX218 Series\Technischer Support.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> C:\Windows\system32\spool\DRIVERS\x64\3\E_IGEPGDE.DLL,GE_OpenELINK "Epson Stylus SX218" 
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON\EPSON SX218 Series\Treiberaktualisierung.lnk -> C:\Windows\System32\spool\drivers\x64\3\E_GUPA30.EXE (SEIKO EPSON CORPORATION) -> /P "EPSON SX218 Series" /D C:\Windows\system32\spool\DRIVERS\x64\3\E_IVIFGDE.VIF
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embedded Lockdown Manager\Embedded Lockdown Manager.lnk -> C:\Windows\System32\mmc.exe (Microsoft Corporation) -> "%windir%\system32\EmbeddedLockdown.msc"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Elektronische Registrierung.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\Support\EReg.exe (Electronic Arts Inc.) -> "lotrbfme2.exe"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\Die Schlacht um Mittelerde™ II\Online nach Update suchen.lnk -> C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\lotrbfme2.exe () -> GrabPatches
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atari\RollerCoaster Tycoon 3 Platinum\Uninstall RollerCoaster Tycoon® 3 Platinum.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\SETUP.exe" -l0x9
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Embedded Lockdown Manager.lnk -> C:\Windows\System32\mmc.exe (Microsoft Corporation) -> "%windir%\system32\EmbeddedLockdown.msc"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer\Acer Remote Files.lnk -> C:\Program Files\Acer\Remote Files\RemoteFilesService.exe (Acer Incorporated) -> --open-shell --check-update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\michael\Desktop\Programme\Acer Remote Files.lnk -> C:\Program Files\Acer\Remote Files\RemoteFilesService.exe (Acer Incorporated) -> --open-shell --check-update
ShortcutWithArgument: C:\Users\michael\Desktop\Programme\Norton Online Backup.lnk -> C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation) -> OPEN
ShortcutWithArgument: C:\Users\michael\Desktop\Programme\Windows Mobile-Gerätecenter.lnk -> C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation) -> /show
ShortcutWithArgument: C:\Users\michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Uninstall VirtualDJ PRO Full.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /x {4769E972-2E92-49C5-B6F9-465EFD0C4D94}
ShortcutWithArgument: C:\Users\michael\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\michael\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> /e,::{20D04FE0-3AEA-1069-A2D8-08002B30309D}
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\38\C\Users\michael\Desktop\Programme\Windows Mobile-Gerätecenter.lnk -> C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation) -> /show
ShortcutWithArgument: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\2\C\Users\michael\Desktop\Programme\Acer Remote Files.lnk -> C:\Program Files\Acer\Remote Files\RemoteFilesService.exe (Acer Incorporated) -> --open-shell --check-update


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REX 4\Texture Direct\REX 4 - Direct.url -> hxxp://www.rexdirectexperience.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REX 4\Texture Direct\REX Support Forum.url -> hxxp://www.realenvironmentxtreme.com/forums/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetOn 2\Onlinehilfe.url -> hxxp://neton.rct-net.de/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MD Adressbuch 2012\MD Adressbuch 2012 im Internet.url -> hxxp://www.mdadressbuch.de
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsPassengersX\FsPassengers Homepage.url -> hxxp://www.fspassengers.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freeway\Zinnfiguren-Rieger.url -> hxxp://www.zinnfiguren-rieger.de
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Aerosoft Homepage.url -> hxxp://www.aerosoft.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Forum.url -> hxxp://forum.aerosoft.com/index.php
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft\Approaching Innsbruck X\Austro Control.url -> hxxp://www.austrocontrol.at/content/acg/austro.shtml
InternetURL: C:\Users\Default\Favorites\Acer\Acer.url -> hxxp://www.acer.com/
InternetURL: C:\Users\Default\Favorites\Acer\WildTangent Games.url -> hxxp://rdr.wildtangent.com/default/acer/iefav.aspx
InternetURL: C:\Users\michael\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\michael\Favorites\Links\Acer Zubehör Shop.url -> hxxp://go.acer.com/?id=14169&model=Aspire E1-772G
InternetURL: C:\Users\michael\Favorites\Acer\Acer.url -> hxxp://www.acer.com/
InternetURL: C:\Users\michael\Favorites\Acer\eBay.url -> hxxp://rover.ebay.com/rover/1/707-67567-24801-3/4
InternetURL: C:\Users\michael\Favorites\Acer\WildTangent Games.url -> hxxp://rdr.wildtangent.com/default/acer/iefav.aspx
InternetURL: C:\Users\michael\Desktop\schatzi und miguel firma\mda\adressbuch.url -> hxxp://www.mdadressbuch.de
InternetURL: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Favorites\Links\Acer Zubehör Shop.url -> hxxp://go.acer.com/?id=14169&model=Aspire E1-772G
InternetURL: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Favorites\Acer\Acer.url -> hxxp://www.acer.com/
InternetURL: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Favorites\Acer\eBay.url -> hxxp://rover.ebay.com/rover/1/707-67567-24801-3/4
InternetURL: C:\Users\michael\AppData\Local\Microsoft\Windows\FileHistory\Data\9\C\Users\michael\Favorites\Acer\WildTangent Games.url -> hxxp://rdr.wildtangent.com/default/acer/iefav.aspx

==================== End of log =============================

So alles erledigt!
Falls ich heute keine Nachricht mehr bekomme wünsche ich einen schönen Sonntag!
Und ein riesiges

schrauber · 11.01.2015, 08:24

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Hast Du wie weiter oben beschrieben Chrome komplett deinstalliert und neu installiert, dann zurückgesetzt?

hansi2011 · 11.01.2015, 15:22

Ja das habe ich gemacht!

Code:

ATTFilter

ï»¿Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by michael at 2015-01-11 15:19:15 Run:2
Running from C:\Users\michael\Desktop
Loaded Profile: michael (Available profiles: michael)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
Emptytemp:
         
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-2482852578-1705707732-3359007595-1002\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
EmptyTemp: => Removed 587.8 MB temporary data.


The system needed a reboot. 

==== End of Fixlog 15:19:20 ====

schrauber · 11.01.2015, 17:51

Fertig

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

hansi2011 · 21.01.2015, 20:35

Guten Abend Schrauber,
ich habe folgendes Problem!
Ich wollte heute eine CD Brennen doch überall die gleiche Meldung : Brennen Fehlgeschlagen!
Also ich habe zwei verschiedene Brennprogramme getestet wie gesagt Fehlermeldung!
Laufwerk ist auf dem neusten Stand von wegen den Treibern her.
Ich habe von Microsoft ein Fix it Toll runtergeladen von der Seite selber, was extra des Thema wegen entwickelt wurde für 8.1 Windows.
Dann habe ich auch schon mehrere Rolinge versucht und bin jetzt an dem Punkt angekommen wo ich nicht weiter weiß!
Man sollte aber noch erwähnen das der Laptop ende letzten Jahres gekauft wurde und noch nie damit gebrannt wurde, es ist aber ein DVD Brenner!

Würde mich über weitere Hilfe freuen.

schrauber · 22.01.2015, 13:05

Hi,

HWiNFO64 - Download - Filepony
Bitte HWINFO laden und laufen lassen, Output hier posten.

hansi2011 · 22.01.2015, 19:13

Hallo also es tut mir leid aber ich habe das Programm ausgeführt, bin dann auf Run gegangen, dann steht da Analyse und es öffnet sich ein Programm mit Details aber leider nix was ich hier Posten kann auf dem Destop ist auch nichts vorhanden an Datei !!

schrauber · 23.01.2015, 12:19

Kannste nen Screenshot davon machen, also von dem Programm? Siehst Du in der AUflistung dein DVD Laufwerk?

hansi2011 · 23.01.2015, 17:11

[IMG][/IMG]

hansi2011 · 23.01.2015, 17:13

hansi2011 · 23.01.2015, 17:14

Ja ganz unten rechts ist das Laufwerk zu erkennen!

schrauber · 23.01.2015, 20:56

Jast Du schon mal den passenden Treiber beim Hersteller neu geladen und den installiert?

Liest das Laufwerk allgemein CD/DVD?

hansi2011 · 23.01.2015, 22:27

Ja CD oder DVD lesen ist kein Problem nur Brennen bricht er immer ab und sagt Fehleranzeige!

Neue Treiber habe ich noch nicht versucht aber auch nicht gefunden!!

schrauber · 24.01.2015, 10:51

Beim Hersteller des Gerätes. Oder gib mir mal Modell/Marke und Seriennummer.

22.01.2015, 13:05	#52
schrauber /// the machine /// TB-Ausbilder	Virus: virtool:win32/obfuscator.xz entfernen Hilfe? Hi, HWiNFO64 - Download - Filepony Bitte HWINFO laden und laufen lassen, Output hier posten. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

23.01.2015, 12:19	#54
schrauber /// the machine /// TB-Ausbilder	Virus: virtool:win32/obfuscator.xz entfernen Hilfe? Kannste nen Screenshot davon machen, also von dem Programm? Siehst Du in der AUflistung dein DVD Laufwerk? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

23.01.2015, 20:56	#58
schrauber /// the machine /// TB-Ausbilder	Virus: virtool:win32/obfuscator.xz entfernen Hilfe? Jast Du schon mal den passenden Treiber beim Hersteller neu geladen und den installiert? Liest das Laufwerk allgemein CD/DVD? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

24.01.2015, 10:51	#60
schrauber /// the machine /// TB-Ausbilder	Virus: virtool:win32/obfuscator.xz entfernen Hilfe? Beim Hersteller des Gerätes. Oder gib mir mal Modell/Marke und Seriennummer. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Virus: virtool:win32/obfuscator.xz entfernen Hilfe?

Log-Analyse und Auswertung: Virus: virtool:win32/obfuscator.xz entfernen Hilfe?