Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 18.08.2015, 22:33   #1
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Moin,

ich habe hier nen Rechner stehen, der wohl auf jeden Fall mit Malware/Adware befallen ist. Im Google Chrome öffnen sich ungefragt komische Werbungstabs beispielsweise.
Dazu kommt, dass der Virenscan (Comodo) nicht durchläuft.
Ich hoffe, dass ihr mir damit helfen könnt. Ansonsten würde ich den Rechner wohl komplett frisch aufsetzen.

Hier die Logs:

1) Defogger auf Disabled - Keine Fehlermeldung

2) Frst Log Teil 1
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-08-2015
durchgeführt von wunibald (Administrator) auf wunibald-DELL (18-08-2015 21:36:43)
Gestartet von C:\Users\wunibald\Desktop
Geladene Profile: wunibald (Verfügbare Profile: wunibald & Gast)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo) C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
() C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Comodo Security Solutions, Inc.) C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
(Comodo Security Solutions, Inc.) C:\Program Files\COMODO\GeekBuddy\unit.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-08-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-08-01] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5757328 2012-10-19] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [IntelPROSet] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM\...\Run: [DellWPF] => C:\Program Files\Synaptics\SynTP\DellTouchpad.exe [5719752 2015-08-01] ()
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-07] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-08-01] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [143888 2012-06-01] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-07-07] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-03-28] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2092032 2015-02-23] (Dominik Reichl)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2015-08-17] (Comodo Security Solutions, Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Spotify Web Helper] => C:\Users\wunibald\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030648 2015-07-07] (Spotify Ltd)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2899136 2015-08-17] (Valve Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\wunibald\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2015-01-06] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-07-07] (Apple Inc.)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Dropbox Update] => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [OneDrive] => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-01] (Microsoft Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Spotify] => C:\Users\wunibald\AppData\Roaming\Spotify\spotify.exe [7504952 2015-07-07] (Spotify Ltd)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\RunOnce: [Uninstall C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64"
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2015-01-06] (SEIKO EPSON CORPORATION)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk [2015-08-17]
ShortcutTarget: Start GeekBuddy.lnk -> C:\Program Files\COMODO\GeekBuddy\launcher.exe (Comodo Security Solutions, Inc.)
Startup: C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2013-04-09]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-07-27]
ShortcutTarget: Dropbox.lnk -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll [2015-08-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll [2015-08-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
GroupPolicy: Gruppenrichtline auf Chrome erkannt <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Richtlinienbeschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.search.us.com/v/2/?guid={B4C163F4-5300-494A-834D-64B345CF92C4}&serpv=5
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1018402826-263647804-3193623928-1001 -> {5A133EC9-530F-4030-96AF-6D25FD4D281D} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=10557
SearchScopes: HKU\S-1-5-21-1018402826-263647804-3193623928-1001 -> {677FB93A-4DBE-421D-86A7-3FFDA962B431} URL = hxxp://search.us.com/serp?guid={B4C163F4-5300-494A-834D-64B345CF92C4}&action=default_search&serpv=5&k={searchTerms}
SearchScopes: HKU\S-1-5-21-1018402826-263647804-3193623928-1001 -> {FCCB729B-A01B-450D-B5D8-7697FE2DAB89} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-28] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-28] (Oracle Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-28] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-28] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1c2d1d95-1979-413f-b121-390e1a01eef3}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354
FF NetworkProxy: "http", "proxy.cs.fh-nuernberg.de"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-15] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-28] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: @citrixonline.com/appdetectorplugin -> C:\Users\wunibald\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-01-11] (Citrix Online)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\wunibald\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-07-28] ()
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Extension: FoxyProxy Standard - C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354\Extensions\foxyproxy@eric.h.jung [2015-06-27]
FF Extension: Adblock Plus - C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-04]
FF Extension: Hotspot Shield Helper (Please allow this installation) - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com [2015-08-11]
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2015-08-11]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2014-02-06]

Chrome: 
=======
CHR Profile: C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-08]
CHR Extension: (Google Drive) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-08]
CHR Extension: (YouTube) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-08]
CHR Extension: (Adblock Plus) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-08]
CHR Extension: (Adblock for Youtube™) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2013-10-08]
CHR Extension: (Google Search) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2013-10-08]
CHR Extension: (gate snapper) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko [2015-02-18]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-08]
CHR Extension: (Citavi Picker) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\piehhloihgjjiomhieeddiidpekaajio [2014-02-06]
CHR Extension: (Gmail) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [piehhloihgjjiomhieeddiidpekaajio] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Chrome\ChromePicker.crx [2014-02-06]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-07-07] (Apple Inc.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 ChromodoUpdater; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [1998520 2015-08-18] (Comodo)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2753720 2015-07-22] (Microsoft Corporation)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70848 2015-08-17] (Comodo Security Solutions, Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-08-05] (COMODO)
R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-05] (COMODO)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-01] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-01] (Microsoft Corporation)
S2 DellDigitalDelivery; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [173056 2012-06-19] (Dell Products, LP.) [Datei ist nicht signiert]
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [1994936 2015-06-28] (Comodo)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2015-08-17] (Comodo Security Solutions, Inc.)
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [430344 2015-02-13] ()
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [Datei ist nicht signiert]
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-01] (Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-08-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [Datei ist nicht signiert]
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session2; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-02-27] (Electronic Arts)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 PimIndexMaintenanceSvc_Session2; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 PimIndexMaintenanceSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [Datei ist nicht signiert]
S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-08-15] (Microsoft Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-08-01] (Realtek Semiconductor)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-01] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-08-01] (Synaptics Incorporated)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-01] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-01] (Microsoft Corporation)
R3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 UnistoreSvc_Session2; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 UnistoreSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-08-15] (Microsoft Corporation)
R3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 UserDataSvc_Session2; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 UserDataSvc_Session2; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [79872 2012-11-01] (VMware, Inc.) [Datei ist nicht signiert]
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [598808 2013-06-06] (Wacom Technology, Corp.)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-03-03] ()
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2014-06-26] (Windows (R) Win 7 DDK provider)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21720 2015-08-05] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [827632 2015-08-05] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [35056 2015-08-05] (COMODO)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
S3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2012-08-05] (OSR Open Systems Resources, Inc.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R1 HMD; C:\Windows\system32\DRIVERS\hmd.sys [14888 2014-06-26] ()
R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-02-13] (AnchorFree Inc.)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127232 2015-08-05] (COMODO)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-02-27] ()
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S3 RRNetCap; C:\Windows\system32\DRIVERS\rrnetcap.sys [37480 2013-03-20] (RapidSolution Software AG)
S3 RRNetCapMP; C:\Windows\system32\DRIVERS\rrnetcap.sys [37480 2013-03-20] (RapidSolution Software AG)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-21] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-16] (Synaptics Incorporated)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-01] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R0 vsock; C:\Windows\System32\drivers\vsock.sys [70296 2012-10-24] (VMware, Inc.)
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Keine Datei

==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-18 21:36 - 2015-08-18 21:37 - 00037691 _____ C:\Users\wunibald\Desktop\FRST.txt
2015-08-18 21:35 - 2015-08-18 21:35 - 00033129 _____ C:\Users\wunibald\Downloads\Addition.txt
2015-08-18 21:26 - 2015-08-18 21:26 - 00380416 _____ C:\Users\wunibald\Desktop\1vneerpp.exe
2015-08-18 21:25 - 2015-08-18 21:36 - 00000000 ____D C:\FRST
2015-08-18 21:25 - 2015-08-18 21:25 - 02173440 _____ (Farbar) C:\Users\wunibald\Desktop\FRST64.exe
2015-08-18 21:24 - 2015-08-18 21:24 - 00000168 _____ C:\Users\wunibald\defogger_reenable
2015-08-18 21:15 - 2015-08-18 21:15 - 00000000 ___HD C:\OneDriveTemp
2015-08-18 21:13 - 2015-08-18 21:13 - 00016148 _____ C:\WINDOWS\system32\wunibald-DELL_wunibald_HistoryPrediction.bin
2015-08-18 21:07 - 2015-08-18 21:24 - 00000546 _____ C:\Users\wunibald\Desktop\defogger_disable.log
2015-08-18 21:07 - 2015-08-18 21:07 - 00000348 _____ C:\Users\wunibald\Downloads\defogger_enable.log
2015-08-18 21:06 - 2015-08-18 21:07 - 00050477 _____ C:\Users\wunibald\Desktop\Defogger.exe
2015-08-17 18:59 - 2015-08-15 11:59 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-17 18:59 - 2015-08-15 11:59 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-17 15:48 - 2015-08-17 15:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-17 11:56 - 2015-08-17 11:56 - 00466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00000000 ____D C:\Program Files (x86)\OpenAL
2015-08-17 10:55 - 2015-08-17 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo Security Solutions Inc
2015-08-17 10:47 - 2015-08-17 10:47 - 00001904 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2015-08-17 10:46 - 2015-08-17 10:46 - 00000000 ____D C:\ProgramData\Shared Space
2015-08-17 10:43 - 2015-08-17 10:55 - 00002088 _____ C:\Users\Public\Desktop\GeekBuddy.lnk
2015-08-17 10:30 - 2015-08-17 10:47 - 00000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2015-08-17 10:25 - 2015-08-17 10:39 - 226558984 _____ (COMODO) C:\Users\wunibald\Desktop\cispremium_installer.exe
2015-08-17 10:06 - 2015-08-17 10:06 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-17 10:04 - 2015-08-17 10:04 - 00000000 ____D C:\Users\wunibald\AppData\Local\CEF
2015-08-17 09:06 - 2015-08-17 09:06 - 00000000 ____D C:\5db91e8eeff514c049a1a012c333
2015-08-17 09:05 - 2015-08-17 09:05 - 00000000 ____D C:\Users\wunibald\AppData\Local\NetworkTiles
2015-08-15 12:08 - 2015-08-15 12:08 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-08-15 12:07 - 2015-08-15 12:07 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-15 12:07 - 2015-08-15 12:07 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-15 12:07 - 2015-08-15 12:07 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-15 12:07 - 2015-08-15 12:07 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-15 12:07 - 2015-08-15 12:07 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-15 12:05 - 2015-08-15 12:05 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-11 12:12 - 2015-08-17 09:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-11 11:29 - 2015-08-11 11:29 - 00000000 ____D C:\$SysReset
2015-08-11 11:27 - 2015-08-11 11:27 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-08-05 01:31 - 2015-08-05 01:31 - 00827632 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdguard.sys
2015-08-05 01:31 - 2015-08-05 01:31 - 00127232 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2015-08-05 01:31 - 2015-08-05 01:31 - 00035056 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdhlp.sys
2015-08-05 01:31 - 2015-08-05 01:31 - 00021720 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmderd.sys
2015-08-05 01:29 - 2015-08-05 01:29 - 00579408 _____ (COMODO) C:\WINDOWS\system32\guard64.dll
2015-08-05 01:29 - 2015-08-05 01:29 - 00445472 _____ (COMODO) C:\WINDOWS\SysWOW64\guard32.dll
2015-08-05 01:29 - 2015-08-05 01:29 - 00041224 _____ (COMODO) C:\WINDOWS\system32\cmdcsr.dll
2015-08-05 01:28 - 2015-08-05 01:28 - 00358080 _____ (COMODO) C:\WINDOWS\system32\cmdvrt64.dll
2015-08-05 01:28 - 2015-08-05 01:28 - 00045760 _____ (COMODO) C:\WINDOWS\system32\cmdkbd64.dll
2015-08-05 01:27 - 2015-08-05 01:27 - 00288448 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdvrt32.dll
2015-08-05 01:26 - 2015-08-05 01:26 - 00040640 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbd32.dll
2015-08-03 16:05 - 2015-08-03 16:10 - 00251392 _____ C:\Users\wunibald\Desktop\Draft_ITProjektplan.mpp
2015-08-01 18:36 - 2015-08-01 18:37 - 00002362 _____ C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-01 18:31 - 2015-08-01 18:31 - 00000000 ____D C:\Users\wunibald\AppData\Local\MicrosoftEdge
2015-08-01 18:27 - 2015-08-01 18:27 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-01 18:16 - 2015-08-01 18:16 - 00000306 __RSH C:\ProgramData\ntuser.pol
2015-08-01 18:11 - 2015-08-01 18:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-01 18:09 - 2015-08-01 18:09 - 00000000 ____D C:\Users\wunibald\AppData\Local\Publishers
2015-08-01 18:03 - 2015-08-01 18:05 - 00000000 ____D C:\Users\wunibald\AppData\Local\Comms
2015-08-01 18:02 - 2015-08-01 18:37 - 00000000 ___RD C:\Users\wunibald\OneDrive
2015-08-01 18:02 - 2015-08-01 18:02 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-08-01 18:02 - 2015-08-01 18:02 - 00000020 ___SH C:\Users\wunibald\ntuser.ini
2015-08-01 18:02 - 2015-08-01 18:02 - 00000000 ____D C:\Users\wunibald\AppData\Local\TileDataLayer
2015-08-01 16:29 - 2015-08-01 18:01 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-01 16:29 - 2015-08-01 15:39 - 00000000 __SHD C:\Recovery
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-01 16:24 - 2015-08-01 16:24 - 00000000 ____D C:\Windows.old
2015-08-01 16:23 - 2015-08-01 16:23 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-01 16:19 - 2015-08-01 16:19 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-01 16:18 - 2015-01-06 08:25 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YLMIVE.DLL
2015-08-01 16:18 - 2015-01-06 08:25 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YD4BIVE.DLL
2015-08-01 16:18 - 2015-01-06 08:25 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files\MSBuild
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-01 16:14 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-01 16:14 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-01 16:14 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-01 16:14 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-01 16:14 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-01 16:14 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-01 16:03 - 2015-08-17 10:43 - 02156688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-01 16:01 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-01 15:52 - 2015-08-01 15:52 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-01 15:43 - 2015-08-01 15:43 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-08-01 15:40 - 2015-08-18 21:24 - 00000000 ____D C:\Users\wunibald
2015-08-01 15:40 - 2015-08-11 12:11 - 00000000 ____D C:\Users\Gast
2015-08-01 15:40 - 2015-08-01 18:02 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-01 15:40 - 2015-08-01 15:42 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Vorlagen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Startmenü
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Netzwerkumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Lokale Einstellungen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Eigene Dateien
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Druckumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Documents\Eigene Musik
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Documents\Eigene Bilder
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Local\Verlauf
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Local\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Vorlagen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Startmenü
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Lokale Einstellungen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Eigene Dateien
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Anwendungsdaten
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-01 15:37 - 2015-08-01 15:43 - 00000000 ____D C:\Program Files\AMD
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-08-01 15:36 - 2015-08-01 15:36 - 00188490 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\Program Files\Realtek
2015-08-01 15:35 - 2015-08-01 15:44 - 00000000 ____D C:\Program Files\Intel
2015-08-01 15:35 - 2015-08-01 15:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-08-01 15:35 - 2015-08-01 15:35 - 00000000 ____D C:\Program Files\Synaptics
2015-08-01 15:32 - 2015-08-01 15:32 - 00041049 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-01 15:31 - 2015-08-17 09:09 - 00040698 _____ C:\WINDOWS\PFRO.log
2015-08-01 12:17 - 2015-08-01 14:41 - 00000000 ___HD C:\$Windows.~BT
2015-08-01 10:56 - 2015-08-01 10:56 - 00000000 ___HD C:\$Windows.~WS
2015-08-01 10:45 - 2015-08-01 10:46 - 19646888 _____ (Microsoft Corporation) C:\Users\wunibald\Downloads\MediaCreationToolx64.exe
2015-07-31 22:38 - 2015-07-31 22:38 - 12167616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 10281624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 09279840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 09063704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 08957368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 08083992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 07648032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 07554656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 01483504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 01229840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00484176 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00172432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00162096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00153104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00148400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00140016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00127440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00122128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00120080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00097584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00097584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00090640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00090640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-07-31 22:37 - 2015-08-01 12:44 - 01204784 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00688160 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00680992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-07-31 22:37 - 2015-08-01 12:44 - 00384544 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00350240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00263200 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00252448 _____ C:\WINDOWS\system32\clinfo.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00177696 _____ C:\WINDOWS\system32\atieah64.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00161312 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00068640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-07-31 22:37 - 2015-07-31 22:37 - 47800352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 39729696 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 30766624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 27553312 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 25314336 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 22336032 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 21629472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-07-31 22:37 - 2015-07-31 22:37 - 15734304 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 14319648 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 01263648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00944160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00944160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00883232 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00459808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00208416 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00174112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00159264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00120352 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00119840 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00106528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00098336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00092704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00087072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00087072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00082464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00079904 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00073248 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00069664 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00066592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00060960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00047136 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00021536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00021536 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-07-31 22:36 - 2015-08-01 12:44 - 01079344 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-07-31 22:36 - 2015-08-01 12:44 - 01012784 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-07-31 22:36 - 2015-08-01 12:44 - 00816176 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-07-31 22:36 - 2015-07-31 22:36 - 00222240 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00207392 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00152096 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00140832 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00076832 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00068128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00056864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 12334064 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 11905424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 11053040 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 10574976 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 04636608 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 03668768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 01155984 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 01151832 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00467688 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00378816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00229648 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00199080 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00194352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00169352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00040704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-07-30 22:45 - 2015-08-01 12:44 - 04371872 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 04368288 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 02508272 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 02035696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-07-30 22:45 - 2015-08-01 12:44 - 00969120 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00555424 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00554912 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00540064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00443296 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00409504 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00408992 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00393632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00328608 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00290208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00256928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00204192 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00164256 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-07-30 22:45 - 2015-07-30 22:45 - 22914032 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 17846768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 08528880 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 06512112 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 04024368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 03797960 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-07-30 22:45 - 2015-07-30 22:45 - 01994224 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01793008 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01766896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01468976 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00865328 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00678896 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00659504 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00632816 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00616496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00392688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00385520 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00374256 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00357936 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00329200 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00295408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00285168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00264176 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-07-30 22:45 - 2015-07-30 22:45 - 00261104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00232944 _____ C:\WINDOWS\system32\igdde64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00228848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00223792 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00194544 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00193520 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00191984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4252.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00191024 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00170992 _____ C:\WINDOWS\system32\igdail64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00163824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00152560 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00141872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00107568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00102896 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00095216 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00078320 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00072688 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00069104 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00068080 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00039408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00019440 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-07-28 22:29 - 2015-07-28 22:29 - 00065024 _____ C:\Users\wunibald\Desktop\Projektorganisation.vsd
2015-07-28 22:17 - 2015-07-28 22:17 - 00059392 _____ C:\Users\wunibald\Desktop\Zeichnung1.vsd
2015-07-22 19:55 - 2015-07-22 19:55 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\java
2015-07-21 10:55 - 2015-07-21 10:55 - 00000165 ____H C:\Users\wunibald\Desktop\~$Fächerplanung Master.xlsx
         

Alt 19.08.2015, 17:46   #2
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



zu 1) Frst Log Teil 2

Code:
ATTFilter
==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-18 21:38 - 2013-10-08 15:28 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-18 21:29 - 2014-05-20 11:05 - 01474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-08-18 21:25 - 2015-02-12 13:43 - 00755958 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2015-08-18 21:15 - 2013-11-03 19:20 - 00000000 __RDO C:\Users\wunibald\SkyDrive
2015-08-18 21:12 - 2013-10-08 15:28 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-18 21:11 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-18 21:09 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-18 21:08 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-18 21:08 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-18 21:08 - 2014-04-07 20:48 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\KeePass
2015-08-18 21:03 - 2015-06-16 18:51 - 00001258 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA.job
2015-08-18 20:39 - 2015-07-01 09:22 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-18 17:49 - 2014-02-06 23:37 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EA867E25-1991-4F38-9821-E0033C61BE2A}
2015-08-18 17:05 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-18 17:03 - 2015-06-28 17:25 - 00000000 ____D C:\Program Files (x86)\Comodo
2015-08-18 14:02 - 2015-06-16 18:51 - 00001206 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core.job
2015-08-18 13:24 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-18 12:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-18 12:45 - 2013-02-21 12:15 - 00000000 ____D C:\Users\wunibald\AppData\Local\Packages
2015-08-17 19:58 - 2013-05-22 15:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-17 18:57 - 2015-07-10 14:20 - 00401424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-17 18:54 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-17 18:54 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-17 18:46 - 2015-07-09 09:23 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-08-17 18:45 - 2015-07-09 09:23 - 00000000 ____D C:\Users\wunibald\AppData\Local\Battle.net
2015-08-17 14:21 - 2013-04-09 20:50 - 00000039 _____ C:\WINDOWS\vbaddin.ini
2015-08-17 14:21 - 2013-04-09 18:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-17 10:55 - 2014-05-20 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-08-17 10:47 - 2015-07-10 18:34 - 01302732 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-17 10:47 - 2015-07-10 18:34 - 00332988 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-17 10:47 - 2013-02-21 17:11 - 00002026 _____ C:\Users\wunibald\Desktop\Spotify.lnk
2015-08-17 10:42 - 2014-05-20 11:01 - 00000000 ____D C:\Users\wunibald\AppData\Local\Comodo
2015-08-17 10:07 - 2014-07-23 13:05 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-17 10:06 - 2013-02-21 17:10 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Dropbox
2015-08-17 09:09 - 2014-02-26 12:41 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-17 09:09 - 2014-02-26 12:41 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-17 09:09 - 2013-02-21 12:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-17 09:07 - 2013-08-12 14:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-17 09:06 - 2014-02-26 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-17 09:06 - 2013-02-24 20:02 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-15 12:22 - 2013-02-21 17:11 - 00000000 ____D C:\Users\wunibald\AppData\Local\Spotify
2015-08-15 12:22 - 2013-02-21 17:08 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Spotify
2015-08-15 12:11 - 2013-04-09 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-15 11:39 - 2015-07-01 09:22 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 12:10 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-11 12:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\registration
2015-08-03 15:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-03 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-03 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-01 18:36 - 2015-07-09 09:31 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-01 18:04 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-01 16:29 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-01 16:25 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-01 16:25 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default
2015-08-01 16:24 - 2015-07-10 14:20 - 00047524 _____ C:\WINDOWS\setupact.log
2015-08-01 16:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-01 16:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-01 16:24 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-01 16:24 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-01 16:24 - 2013-11-01 12:22 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-08-01 16:24 - 2013-11-01 12:22 - 00013338 _____ C:\WINDOWS\diagerr.xml
2015-08-01 16:21 - 2013-11-01 10:38 - 00013888 _____ C:\WINDOWS\comsetup.log
2015-08-01 16:20 - 2015-06-16 18:51 - 00004318 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA
2015-08-01 16:20 - 2015-06-16 18:51 - 00003938 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core
2015-08-01 16:20 - 2014-05-20 11:05 - 00003138 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2015-08-01 16:20 - 2014-05-04 20:00 - 00003304 _____ C:\WINDOWS\System32\Tasks\{942A19C8-02BF-43DB-9877-71A63CF0809F}
2015-08-01 16:20 - 2013-11-01 12:59 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-01 16:20 - 2013-10-08 15:28 - 00004226 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-01 16:20 - 2013-10-08 15:28 - 00003990 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-01 16:20 - 2013-04-10 18:49 - 00003306 _____ C:\WINDOWS\System32\Tasks\{E5347CD0-75EF-4F3A-B035-7A9B4DDAC90A}
2015-08-01 16:20 - 2013-03-05 02:09 - 00002886 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-01 16:20 - 2013-02-21 12:24 - 00003706 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1018402826-263647804-3193623928-1001
2015-08-01 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-01 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-01 16:14 - 2015-07-10 12:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-08-01 16:10 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-01 15:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-01 15:55 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-01 15:55 - 2015-07-09 09:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-08-01 15:55 - 2015-07-09 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-01 15:55 - 2015-07-07 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-01 15:55 - 2015-07-07 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-01 15:55 - 2015-04-16 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-01 15:55 - 2015-03-23 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular
2015-08-01 15:55 - 2015-02-18 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-01 15:55 - 2015-02-13 20:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-01 15:55 - 2015-02-13 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2015-08-01 15:55 - 2014-09-04 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Sims 4
2015-08-01 15:55 - 2014-06-04 13:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablett
2015-08-01 15:55 - 2014-02-06 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citavi 4
2015-08-01 15:55 - 2013-11-27 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-01 15:55 - 2013-11-04 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
2015-08-01 15:55 - 2013-10-08 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-01 15:55 - 2013-09-26 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-01 15:55 - 2013-09-24 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-08-01 15:55 - 2013-09-07 22:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-01 15:55 - 2013-09-01 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™
2015-08-01 15:55 - 2013-09-01 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-08-01 15:55 - 2013-08-28 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft PC Gamer Demo
2015-08-01 15:55 - 2013-05-22 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-01 15:55 - 2013-05-21 14:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-08-01 15:55 - 2013-05-19 19:26 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2015-08-01 15:55 - 2013-05-07 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2015-08-01 15:55 - 2013-04-09 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-01 15:55 - 2013-04-09 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-08-01 15:55 - 2013-03-22 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2015-08-01 15:55 - 2013-03-22 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 10
2015-08-01 15:55 - 2013-02-26 21:40 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-01 15:55 - 2013-02-26 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-01 15:55 - 2013-02-21 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2015-08-01 15:55 - 2013-02-21 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.0
2015-08-01 15:55 - 2013-02-16 20:23 - 00000000 ____D C:\WINDOWS\de
2015-08-01 15:55 - 2013-02-16 20:20 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-08-01 15:55 - 2013-02-16 20:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2015-08-01 15:55 - 2013-02-16 20:11 - 00000000 ____D C:\Program Files\Dell Support Center
2015-08-01 15:55 - 2013-02-16 20:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-01 15:52 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-01 15:52 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-08-01 15:47 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-01 15:47 - 2013-09-24 14:21 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2015-08-01 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-08-01 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-08-01 15:47 - 2013-05-05 22:37 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-08-01 15:47 - 2013-03-22 18:03 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-08-01 15:47 - 2013-02-27 21:25 - 00000000 ____D C:\WINDOWS\SysWOW64\Hotspot Shield
2015-08-01 15:45 - 2015-07-10 18:46 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-01 15:45 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Resources
2015-08-01 15:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-08-01 15:44 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-01 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod
2015-08-01 15:44 - 2014-06-27 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMind
2015-08-01 15:44 - 2014-05-24 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPEVO
2015-08-01 15:44 - 2013-11-17 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biet-O-Matic
2015-08-01 15:44 - 2013-11-14 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-08-01 15:44 - 2013-11-06 22:07 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-08-01 15:44 - 2013-11-01 12:13 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-01 15:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-08-01 15:44 - 2013-06-23 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\more software
2015-08-01 15:44 - 2013-05-04 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daedalic Entertainment
2015-08-01 15:44 - 2013-02-24 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
2015-08-01 15:44 - 2013-02-21 12:15 - 00000000 ____D C:\ProgramData\PRICache
2015-08-01 15:44 - 2013-02-16 20:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
2015-08-01 15:44 - 2013-02-16 20:09 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-08-01 15:43 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-01 15:43 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-01 15:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-08-01 15:42 - 2013-07-29 14:36 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2015-08-01 15:41 - 2014-06-03 19:04 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2015-08-01 14:56 - 2013-11-01 13:01 - 01663679 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-01 12:43 - 2015-06-24 22:59 - 13119736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-01 12:43 - 2015-06-24 22:59 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-01 12:43 - 2015-06-24 22:57 - 03700360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2015-07-28 04:30 - 2014-01-23 00:05 - 1052258000 _____ C:\WINDOWS\MEMORY.DMP
2015-07-27 10:11 - 2013-02-21 17:14 - 00000000 ___RD C:\Users\wunibald\Dropbox
2015-07-23 11:59 - 2014-02-06 13:11 - 00000000 ____D C:\Users\wunibald\Documents\Citavi 4
2015-07-22 20:27 - 2013-05-03 10:43 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-07-22 20:22 - 2013-08-28 15:57 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\.minecraft
2015-07-19 17:23 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-04-10 19:02 - 2013-04-10 19:02 - 0000074 _____ () C:\Users\wunibald\AppData\Roaming\gnuplot_history
2015-05-02 19:11 - 2015-05-02 19:11 - 0008982 _____ () C:\Users\wunibald\AppData\Local\recently-used.xbel
2015-08-01 15:36 - 2015-08-01 15:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-02-16 20:16 - 2013-02-16 20:16 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-02-16 20:12 - 2013-02-16 20:13 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-02-16 20:13 - 2013-02-16 20:14 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-02-16 20:11 - 2013-02-16 20:12 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-02-16 20:14 - 2013-02-16 20:16 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Public\VR-IBAN-Konverter.dat


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-18 13:21

==================== Ende von Ergebnis ============================
         
2) Addition Log

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-08-2015
durchgeführt von Kerstin (2015-08-18 21:39:00)
Gestartet von C:\Users\Kerstin\Desktop
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1018402826-263647804-3193623928-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1018402826-263647804-3193623928-503 - Limited - Disabled)
Gast (S-1-5-21-1018402826-263647804-3193623928-501 - Limited - Disabled) => C:\Users\Gast
Kerstin (S-1-5-21-1018402826-263647804-3193623928-1001 - Administrator - Enabled) => C:\Users\Kerstin

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {F25D0092-CDBE-B303-ADB7-88DE8CDECCF5}
AS: Comodo Defense+ (Enabled - Up to date) {493CE176-EB84-BC8D-9707-B3ACF7598648}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {CA6681B7-87D1-B25B-86E8-21EB720D8B8E}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 13.2.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe Connect 9 Add-in (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Adobe Connect 9 Add-in) (Version: 11,2,392,0 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{08D35D3C-C4F7-09FB-0F89-F680A1CCD3A3}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
Audials (HKLM-x32\...\{0E9EBAF3-67F8-430A-9852-D02E5F20031A}) (Version: 10.2.30900.0 - Audials AG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Biet-O-Matic v2.14.12 (HKLM-x32\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\Steam App 262940) (Version:  - Revolution Software Ltd)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Chromodo (HKLM-x32\...\Chromodo) (Version: 44.5.7.267 - Comodo)
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.2.0.11 - Swiss Academic Software)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 43.3.3.185 - Comodo)
COMODO Internet Security Premium (HKLM\...\{367D1EA4-24FD-402F-AFF0-08A678D2EE28}) (Version: 8.2.0.4674 - COMODO Security Solutions Inc.)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.0.0.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.0.0.2 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D9ED3EFC-AB00-4CE0-ADED-80EE6B1158A7}) (Version: 2.2.2000.0 - Dell Products, LP)
Dell Support Center (HKLM\...\PC-Doctor for Windows) (Version: 3.2.6032.39 - PC-Doctor, Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
Deponia (HKLM-x32\...\Deponia) (Version: 1.1.5 - Daedalic Entertainment)
Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.4.83.1010 - Electronic Arts Inc.)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - )
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Dropbox) (Version: 3.8.6 - Dropbox, Inc.)
DSC/AA Factory Installer (Version: 3.2.6032.39 - PC-Doctor, Inc.) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 16.1.20150309 - Landesfinanzdirektion Thüringen)
EPSON WF-2530 Series Printer Uninstall (HKLM\...\EPSON WF-2530 Series) (Version:  - SEIKO EPSON Corporation)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GeekBuddy (HKLM\...\{6839D104-506A-41EC-86D4-7E1C5F867C26}) (Version: 4.21.143 - Comodo Security Solutions Inc)
Geheimakte 2 - Puritas Cordis (HKLM-x32\...\{39B9D0EC-0387-4600-8526-A0C2ED5DCEDB}) (Version: 1.02 - Deep Silver)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hotspot Shield 3.42 (HKLM-x32\...\HotspotShield) (Version: 3.42 - AnchorFree Inc.)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{fad118b4-798f-4755-9e67-a622eec95b62}) (Version: 15.6.1 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
KeePass Password Safe 1.28 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.28 - Dominik Reichl)
KeePass Password Safe 2.25 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.25 - Dominik Reichl)
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
LibreOffice 4.0.0.3 (HKLM-x32\...\{8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}) (Version: 4.0.0.3 - The Document Foundation)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4737.1003 - Microsoft Corporation)
Microsoft OneNote 2013 (HKLM-x32\...\Office15.ONENOTER) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM-x32\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Compatibility Pack (HKLM-x32\...\{95150000-005B-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1509 - Microsoft Corporation)
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft PC Gamer Demo version 1.5 (HKLM-x32\...\{55D65D27-C0CD-4375-9021-F3D3D024ED90}_is1) (Version: 1.5 - Mojang)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 de)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 31.7.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.7.0 (x86 de)) (Version: 31.7.0 - Mozilla)
Mp3tag v2.54 (HKLM-x32\...\Mp3tag) (Version: v2.54 - Florian Heidenreich)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.1 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.2.2730 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.7 - )
Presenter version 3.0.3.6 (HKLM-x32\...\{73E8CFA8-F031-40B1-9129-C1247D178DCD}_is1) (Version: 3.0.3.6 - IPEVO Inc.)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.012 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung CLP-410 Series (HKLM-x32\...\Samsung CLP-410 Series) (Version: 1.01 (01.05.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.45.01(30.04.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00.04 - Samsung Electronics Co., Ltd.)
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-00A1-0000-0000-0000000FF1CE}_Office15.ONENOTER_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Spotify) (Version: 1.0.8.59.gee82e7e6 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
The Settlers 7: Paths to a Kingdom - Gold Edition (HKLM-x32\...\Steam App 48210) (Version:  - Blue Byte)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 5.0.1 - VMware, Inc)
VMware Player (Version: 5.0.1 - VMware, Inc.) Hidden
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.6-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
XMind 2013 (v3.4.1) (HKLM-x32\...\XMind_is1) (Version: 3.4.1.201401221918 - XMind Ltd.)
XnView 2.00 (HKLM-x32\...\XnView_is1) (Version: 2.00 - Gougelet Pierre-e)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{092dfa86-5807-5a94-bf3b-5a53ba9e5308}\InprocServer32 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1B}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Kerstin\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

15-08-2015 11:56:02 Windows Update
17-08-2015 10:43:50 Installing COMODO Internet Security Premium

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2015-02-13 20:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {012A5176-38C5-48BF-9A6B-14F140CCEFC4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-13] (Piriform Ltd)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1211F63C-F449-4FAD-BF13-69C36D137452} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-22] (Microsoft Corporation)
Task: {188204CF-6142-418E-BC68-074101C41095} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {1B297BCA-3A4D-4D86-888D-BFD87D1CCAB5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-17] (Microsoft Corporation)
Task: {274BE484-6C7F-44AF-8E56-8E3E2764C6B6} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {29423978-13AA-4E84-BE00-558D1EEB28E2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {2B0F9DF6-F139-4270-B928-C37CD2CB76C2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {47184EB4-DE15-4BB1-9028-C1351A42C1D9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-15] (Adobe Systems Incorporated)
Task: {5B15B328-E84F-4E03-8E67-561864A8AD82} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {6BA91862-14A7-4640-AE77-5710A4E4610F} - System32\Tasks\{E5347CD0-75EF-4F3A-B035-7A9B4DDAC90A} => pcalua.exe -a C:\Users\Kerstin\Downloads\setupfunktion.exe -d C:\Users\Kerstin\Downloads
Task: {7130BB98-3385-431A-B93F-1CD47C876DE2} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {71FFE864-B452-4107-BB41-CB2C0E71DCA3} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA => C:\Users\Kerstin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {73344434-33B9-49A0-AD70-A3F9D2D166D1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7F04FB47-9DE3-4807-A5BD-3BC62E6AC3B5} - System32\Tasks\{942A19C8-02BF-43DB-9877-71A63CF0809F} => pcalua.exe -a C:\Users\Kerstin\Downloads\Ext2Fsd-0.51.exe -d C:\Users\Kerstin\Downloads
Task: {83EFAF0B-63F5-42A3-B1DA-9E8E8F0D6078} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-01] (Microsoft Corporation)
Task: {94C89B03-9E9A-4A8A-8B44-DA9543708F38} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {94D1C92E-A48D-4F06-9A89-5A8E33BFDD01} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {96FE7265-9E71-42D6-B813-006A113BB1EF} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-06-09] (Microsoft Corporation)
Task: {976608D5-623D-4ABA-9AAF-7FED5AF564BF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {9DAA94BB-A65E-41FA-BF22-A160CBE81C0C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {A24EA4D0-2BBA-4E56-905C-036833321BEB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {B41B994E-CAF6-4BE0-93E4-07EDAEFD1DDC} - \PCDEventLauncher -> Keine Datei <==== ACHTUNG
Task: {B7B90ED7-D7AE-4DD7-B08C-87FEB5C81B3B} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {C135F80C-62D6-4991-981A-5E80E30431A8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-22] (Microsoft Corporation)
Task: {C19403F8-6FF1-4D8B-90FD-F08A77BA9168} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C6178C98-E6D4-460C-B497-EE64099AECF4} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core => C:\Users\Kerstin\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CD7B99AF-250A-42D6-84B4-E5620B8D6EF8} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {D14C4B61-7A55-4356-BBA6-22E52AC0168B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {D6E3EC5E-D4BE-4E0E-B123-7D23B4878A92} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-08] (Google Inc.)
Task: {E04858BC-6D42-4D22-B408-7A975CE18C00} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E57F8B3A-375F-4EA4-AE87-545D52775149} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {EBB98FF0-A7BA-4F6C-990C-966B76D39880} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-08] (Google Inc.)
Task: {EF82BAF9-E145-4D80-AE6D-553E02F0E8C9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {F1FA1268-FCA5-4C59-B39C-CA8D4FD7323D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {F7CEA030-0CAA-44ED-AA10-242250708760} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => 0x000A0100290EA34630604643851DC4B004A344E74600D400000000003C000A00200000000014730F000000000513040020200401000000000000000000000000000000000000180043003A005C00570049004E0044004F00570053005C006500780070006C006F007200650072002E0065007800650000000C002F004E004F0055004100430043004800450043004B000000000018004500780070006C006F007200650072005300680065006C006C0055006E0065006C00650076006100740065006400000000000000080003130400000000000000
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core.job => C:\Users\Kerstin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA.job => C:\Users\Kerstin\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-10 13:00 - 2015-07-10 13:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-05-21 14:38 - 2012-02-09 12:42 - 00034304 _____ () C:\WINDOWS\System32\ssd4clm.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-03-31 11:21 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-05-17 00:34 - 2015-02-13 20:18 - 00430344 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-02-16 20:14 - 2012-04-25 04:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-05-29 18:35 - 2013-06-06 04:09 - 01185048 ____N () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2012-02-20 22:23 - 2012-02-20 22:23 - 00456704 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-02-20 22:23 - 2012-02-20 22:23 - 00051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2015-07-16 02:28 - 2015-08-01 12:43 - 05719752 _____ () C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
2015-07-30 13:53 - 2015-07-30 13:53 - 02875584 _____ () C:\Program Files\COMODO\GeekBuddy\QtCore4.dll
2015-07-30 13:53 - 2015-07-30 13:53 - 01283776 _____ () C:\Program Files\COMODO\GeekBuddy\QtNetwork4.dll
2015-07-30 13:53 - 2015-07-30 13:53 - 10451648 _____ () C:\Program Files\COMODO\GeekBuddy\QtGui4.dll
2015-07-30 13:54 - 2015-07-30 13:54 - 00039104 _____ () C:\Program Files\COMODO\GeekBuddy\imageformats\qgif4.dll
2015-07-30 13:53 - 2015-07-30 13:53 - 01529024 _____ () C:\Program Files\COMODO\GeekBuddy\QtScript4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-01-08 23:02 - 2015-01-08 23:02 - 00067808 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2015-07-10 13:00 - 2015-07-10 13:00 - 00215352 _____ () c:\windows\system32\WerEtw.dll
2014-05-17 02:11 - 2014-05-17 02:11 - 00908584 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2012-11-01 03:34 - 2012-11-01 03:34 - 01260184 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2015-08-18 13:47 - 2015-08-18 13:47 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\7059fb1ab1c10eeec73c9c76bba579d5\PSIClient.ni.dll
2015-08-15 11:44 - 2015-08-08 02:13 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libglesv2.dll
2015-08-15 11:44 - 2015-08-08 02:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\libegl.dll
2015-08-15 11:44 - 2015-08-08 02:13 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.155\PepperFlash\pepflashplayer.dll
2013-02-16 20:05 - 2012-06-25 20:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\WINDOWS\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\amdocl_as64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\amdocl_ld64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentExtensions.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentServer.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppxSysprep.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atiapfxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atieah64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atieclxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atiesrxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ATIODCLI.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ATIODE.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioEndpointBuilder.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\clinfo.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\configmanager2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\coredpus.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CustomModeApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CustomModeAppv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dfp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DfpCommon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\difx64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DPTopologyApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DPTopologyAppv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\facecredentialprovider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FntCache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GEARAspi64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GfxUIEx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Gfxv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Gfxv4_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxcmjit64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxCUIService.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxEM.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxext.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxHK.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxTray.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\InputService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\InstallAgent.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelWiDiUMS64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelWiDiVAD64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LicenseManagerShellext.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO4064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioMeters64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO3064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\modernexecserver.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MusNotificationUx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NetworkStatus.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationControllerPS.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provengine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provhandlers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provisioningcsp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PsmServiceExtHost.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rdbui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RDXService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\schedsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SensorService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_nt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SharedStartModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SharedStartModelShim.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SkyDriveTelemetry.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\StoreAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SubscriptionMgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sysmain.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tileobjserver.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\twinui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UserDataService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VPNv2CSP.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wcmcsp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wcmsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wifinetworkmanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\win32kbase.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\win32kfull.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinBioDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Cortana.Desktop.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Shell.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\winmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wmpmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpncore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wu.upgrade.ps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\amdocl_as32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\amdocl_ld32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atieah32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\GEARAspi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\InputService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\twinui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\winmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\atikmpag.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\bthhfenum.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgkrnl.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgmms1.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgmms2.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\hssdrv6.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\msgpiowin32.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ntfs.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\rdyboost.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\tunnel.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\USBHUB3.SYS:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\WdiWiFi.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wof.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wpcfltr.sys:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Kerstin\Desktop\1vneerpp.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\1vneerpp.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\cispremium_installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\cispremium_installer.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\Defogger.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\Defogger.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\FRST64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\FRST64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\MongoDB-Basics.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\MongoDB-Basics.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\MongoDB-security-guide.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\MongoDB-security-guide.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\MongoDB_Security_Architecture_WP.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\MongoDB_Security_Architecture_WP.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Desktop\TheDefinitiveGuideToMongoDB.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Desktop\TheDefinitiveGuideToMongoDB.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\38fad22242bc68b3487b6ab3db3e70d8.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\adwcleaner_4.111.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\adwcleaner_4.111.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Barrierefrei.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Barrierefrei.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\ccsetup502_slim.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\ccsetup502_slim.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\dbs2-ss14-kap8-NoSQL.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\dbs2-ss14-kap8-NoSQL.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\eGovernmentMONITOR_2013_web.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\ElsterFormular-16.1.20150309p.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\ElsterFormular-16.1.20150309p.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\FTB_Launcher.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\FTB_Launcher.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\gesamt.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\gesamt.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Hearthstone-Setup-deDE.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Hearthstone-Setup-deDE.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\hotspotshield-setup_540.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\hotspotshield-setup_540.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\HSS-3.42-install-plain-701-plain.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\HSS-3.42-install-plain-701-plain.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\JRT.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\JRT.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\jxpiinstall(2).exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\jxpiinstall(2).exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\KeePass-1.28-Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\KeePass-1.28-Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\MediaCreationToolx64.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\MediaCreationToolx64.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Provision_Data.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Schwarze_IT-Outsourcing-Erfahrungen_Status_und_zukuenftige_Herausforderungen.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Schwarze_IT-Outsourcing-Erfahrungen_Status_und_zukuenftige_Herausforderungen.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\SDM_DE(1).msi:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\SEPA_Lastschriftmandat.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\SEPA_Lastschriftmandat.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\SITM.zip:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\SITM.zip:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\StudienplanMasterWINWS14.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\StudienplanMasterWINWS14.pdf:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\uninstall_flash_player.exe:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\uninstall_flash_player.exe:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\V06_CIO-Artikel_fuer_U06.zip:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\V06_CIO-Artikel_fuer_U06.zip:$CmdZnID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Vergleich CIO Studie vs Don Marchand.pdf:$CmdTcID
AlternateDataStreams: C:\Users\Kerstin\Downloads\Vergleich CIO Studie vs Don Marchand.pdf:$CmdZnID

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Kerstin\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\floar wooden.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "Ext2 Volume Manager"
HKLM\...\StartupApproved\Run32: => "tvncontrol"
HKLM\...\StartupApproved\Run32: => "PrivDogService"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "AmazonMP3DownloaderHelper"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "SDP"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "FLV Player"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Wunderlist"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{205D30E2-173F-4C56-8711-27F5556D440A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{B8BA7336-9AAC-4A66-8172-061D92F44339}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{AB555750-15E0-426D-9135-59EE73DE1FE6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A4AEA136-1E72-4751-939C-ADB060C0BEF0}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{8BC1AD74-CC27-4897-ACD1-7EC0949464BB}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{EB4035AB-1160-4D5B-948F-AB743984B645}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{6359C65D-4CC7-4E4D-BD8F-9E9C071C7B61}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{3F0AE8C5-317F-4100-B098-F7623E1B0FC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{4BD97D4C-55DA-4C5A-852C-5683D4B1051F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{E13C0288-B508-4AC3-8459-0278B631F27D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1CEFD603-E141-44C0-93AD-CD73F20CC6A3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{72527005-A039-47EB-9EEE-4593BD8F3790}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{41392DAE-FEC1-4943-8904-D4C6345A1889}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{1A95054C-5CE4-4B2A-B319-56879BD4101C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{1AC5C4BE-69B2-400C-B276-33F097FA5022}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{439FDD92-0618-437B-AE3F-A86F09F815E4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3105BD15-DA5C-4147-ABF6-97E1DCB22BF6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B884C4B0-17D7-4846-98F5-D8ED9DAC7198}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{D94F7E59-4349-4650-9B13-EE11BA436D74}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{2DBB9413-E3C1-4CF2-AC69-E7B64F6DF4F9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6CDF6CCC-C0A6-46BA-9140-6EBF08455498}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4DC100E1-5940-4AF3-977B-5197A7133948}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{C6255E83-8F51-4566-A4BB-0BE61E176311}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [UDP Query User{725CF103-46F0-471F-B10D-11713652ABB1}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{A02EB36A-F6FC-4EE4-B7B0-33E4CA0A2646}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{A597D30D-F4B2-419F-94D7-D53918F6C65D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broken Sword 5\BS5.exe
FirewallRules: [{39BE8E81-F546-4985-B8EE-4DFBE86DB0E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broken Sword 5\BS5.exe
FirewallRules: [UDP Query User{9E87A281-E0CF-454F-AE81-4B9A2BC9FF59}C:\users\kerstin\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\kerstin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{BEA4796C-8A2A-45CC-A1E7-D0FE7A76DEBC}C:\users\kerstin\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\kerstin\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{7B1FECD6-F55C-4E8A-AAB3-79E9F2812C95}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{922C40F1-D0EC-49CB-AB88-665B29452009}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{8B2C5228-4E45-4F80-BA92-587839683B93}C:\users\kerstin\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kerstin\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E176A975-2C16-4565-B1F6-D869F6D14775}C:\users\kerstin\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kerstin\appdata\roaming\spotify\spotify.exe
FirewallRules: [{40630B57-ECAD-475C-AE95-CB761929E0B7}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{32C5F2E6-E834-47A8-BB27-D593E8E556B5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{8A68171E-783A-4270-B729-0CCA7995906D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{9E270A3C-D943-489A-9BD2-F0D42AFFB5C9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{40CF49CE-C843-49C8-BD99-03D6254BC1CC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{AABD66AB-B839-4F71-AD90-14C6F16BFB70}] => (Allow) LPort=2869
FirewallRules: [{34BBB97E-92C5-4D0B-8AA9-1CC10D50C637}] => (Allow) LPort=1900
FirewallRules: [{0DDB0BA4-AD14-4CF0-B42B-358233910FE3}] => (Allow) C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{F83F4375-B857-4789-B9E2-AD108DC0FE94}] => (Allow) C:\Users\Kerstin\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FD3F1618-B551-4F84-976E-98AE7D9B9EED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{827908D4-F234-483D-801D-3EE1600765B9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6CFB202D-69E8-45AD-8ACB-4FC9DB7D9A6F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E96C4B86-DA43-4CA6-AF0A-F88B36254CB2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B1CB5CE6-49ED-43F6-9E07-CD8AACC93633}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{E5394E09-927C-48E7-8DF0-C6D9E6549710}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{AFB00296-4A8A-4ED0-8995-1053EC9D3882}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6AADDD7A-A518-4524-A514-BC633BF48808}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2179BEDA-1732-413A-AE26-DA16DBB65D6F}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{5ACEB1EF-BD4C-4B6A-845F-18CF718B6833}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{BB503B34-A616-48CB-8697-6F665D7B6A03}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{448B7BDF-5837-4983-945B-2BB3979C27CD}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{858EA72B-B5BA-4C49-B6ED-CC5989126D05}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{8DB09FA9-2DFE-46E3-A91B-E0209A183C88}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{EFECA1CE-EC0A-417F-8707-A7506190C7DB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{1827F6C7-E4FF-4613-8FA8-8B3DA47231A7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{710D1448-8659-4E39-980C-ADE23B7A8710}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{8874CF80-56EE-4375-8EE7-4C775B368A69}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{4D433ED8-33B0-42E1-9BDE-C8695EB3FE58}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8B7BB47A-37CC-4291-BCE6-B2BAFCFFB307}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BF45B3AD-3D82-4700-B185-7F4361E2AE9E}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{5E444E0E-F7CC-4657-9B03-EAE247D934AF}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{9B348B07-F73F-44CC-AD7C-17285C52ED53}] => (Allow) C:\Program Files (x86)\Audials\Audials 10\Audials.exe
FirewallRules: [{C8160CE8-38C7-432A-BA6D-90F0D9A9B0B3}] => (Allow) LPort=12972
FirewallRules: [{7864C4ED-5988-42F3-A7D6-6884108862CE}] => (Allow) LPort=14714
FirewallRules: [{E33F477A-5935-461C-B270-61450F25A524}] => (Allow) LPort=31931
FirewallRules: [{AF868C55-BEC0-40A5-9289-46C7405F5B76}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{3C78BA07-9793-4278-A599-35ACA988218A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{0831FAD0-AF0A-48DF-92F4-0DAF5ECF6896}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{F88F15B9-89A5-4C1B-9BC6-F80E2189C551}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{178F5163-9492-4D1C-BF13-07F6DA01E84D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{3FEA5683-EFDA-408B-906A-CF3BAF96E81A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{2E6DDD22-F410-4FCD-8F2A-D8A3759B990C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{8FF2CF76-A3B0-4FD4-980D-2EC3688EB0E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{F8696CE0-C278-4E00-AAB8-7D72BFD152E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/18/2015 09:36:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 17.8.2015.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1b58

Startzeit: 01d0d9ebb0963069

Beendigungszeit: 4294967295

Anwendungspfad: C:\Users\Kerstin\Desktop\FRST64.exe

Berichts-ID: 68099aca-45e0-11e5-bf46-6036ddceade1

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (08/18/2015 09:13:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Die App „Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (08/18/2015 09:13:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KERSTIN-DELL)
Description: Bei der Aktivierung der App „Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (08/18/2015 09:13:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Die App „Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (08/18/2015 09:13:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KERSTIN-DELL)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (08/18/2015 09:12:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Die App „Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (08/18/2015 09:12:30 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KERSTIN-DELL)
Description: Bei der Aktivierung der App „Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (08/18/2015 09:12:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Die App „Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.

Error: (08/18/2015 09:09:41 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=43, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0

Error: (08/18/2015 09:09:41 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Überspringen: Eap method DLL path Fehler bei der Überprüfung. Fehler: Type-ID=25, Autor-ID=9, Lieferant-ID=0, Lieferant-Typ=0


Systemfehler:
=============
Error: (08/18/2015 09:24:12 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:11 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:10 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:09 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:08 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:07 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:05 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:05 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/18/2015 09:24:04 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


Microsoft Office:
=========================
Error: (08/18/2015 09:36:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: FRST64.exe17.8.2015.01b5801d0d9ebb09630694294967295C:\Users\Kerstin\Desktop\FRST64.exe68099aca-45e0-11e5-bf46-6036ddceade1

Error: (08/18/2015 09:13:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App

Error: (08/18/2015 09:13:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KERSTIN-DELL)
Description: Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App-2147023170

Error: (08/18/2015 09:13:17 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App

Error: (08/18/2015 09:13:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KERSTIN-DELL)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2147023170

Error: (08/18/2015 09:12:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI

Error: (08/18/2015 09:12:30 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KERSTIN-DELL)
Description: Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App-2147023170

Error: (08/18/2015 09:12:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: KERSTIN-DELL)
Description: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App

Error: (08/18/2015 09:09:41 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path43900

Error: (08/18/2015 09:09:41 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT-AUTORITÄT)
Description: Eap method DLL path25900


CodeIntegrity:
===================================
  Date: 2015-08-18 21:35:54.773
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 21:24:11.504
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 21:17:28.660
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 21:07:25.240
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 20:59:04.781
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 20:49:01.514
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 20:35:28.076
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 17:47:49.716
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 15:49:46.921
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-18 15:25:05.026
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Processor: Intel(R) Core(TM) i7-3517U CPU @ 1.90GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 8061.27 MB
Verfügbarer physikalischer RAM: 5352.3 MB
Summe virtueller Speicher: 9341.27 MB
Verfügbarer virtueller Speicher: 6209.52 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:915.87 GB) (Free:733.28 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 7AD83C4F)

Partition: GPT.

==================== Ende von Ergebnis ============================
         
3) Gmer läuft nicht durch. Habe es insgesamt 4x getestet. Bekomme immer nach ca. 3 Minuten nen Bluescreen. Fehlermeldung ist: Attempted write to readonly memory.

Vielen Dank euch!

Hab ich etwas vergessen, weil andere die nach mir gepostet haben bereits Antworten erhalten haben?

Will nicht drängeln
__________________


Alt 19.08.2015, 17:55   #3
schrauber
/// the machine
/// TB-Ausbilder
 

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



hi,

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
__________________

Alt 20.08.2015, 16:56   #4
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Vielen Dank, schrauber!

Ich habe die Programme alle ausgeführt. Sind auch alle durchgelaufen. Leider ist der JRT Log nicht gespeichert worden. Ich war mir eigentlich sicher, dass dieser auf dem Desktop liegt, tut er nur aber nicht. Ist das ein Problem?

Hier die anderen Logs:

1) MBAM
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 19.08.2015
Suchlaufzeit: 18:09
Protokolldatei: MBAM.txt
Administrator: Ja

Version: 2.1.8.1057
Malware-Datenbank: v2015.08.19.04
Rootkit-Datenbank: v2015.08.16.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: wunibald

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 466016
Abgelaufene Zeit: 1 Std., 8 Min., 0 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 5
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{164E9B12-3A5A-420C-BFBF-B819B1FF89CB}, In Quarantäne, [ab0579910289c571765cadf96e9614ec], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{77767CBC-E832-42DF-9262-522BF7139601}, In Quarantäne, [a40c92781b7081b52ea65452020258a8], 
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{AD2F012A-8FDE-4848-9634-08732D9B1066}, In Quarantäne, [b5fbf61495f6b581dcf71096a65e5ba5], 
PUP.Optional.TNT.A, HKU\S-1-5-21-1018402826-263647804-3193623928-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{5A133EC9-530F-4030-96AF-6D25FD4D281D}, In Quarantäne, [c1ef48c278133afc8736130c5aa911ef], 
PUP.Optional.TNT.A, HKU\S-1-5-21-1018402826-263647804-3193623928-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{677FB93A-4DBE-421D-86A7-3FFDA962B431}, In Quarantäne, [0aa6a466107bc76f526b3ce3ba496898], 

Registrierungswerte: 6
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{164e9b12-3a5a-420c-bfbf-b819b1ff89cb}|AppName, a2zLyrics-1-bg.exe, In Quarantäne, [ab0579910289c571765cadf96e9614ec]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{77767cbc-e832-42df-9262-522bf7139601}|AppName, a2zLyrics-1-codedownloader.exe, In Quarantäne, [a40c92781b7081b52ea65452020258a8]
PUP.Optional.CrossRider.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ad2f012a-8fde-4848-9634-08732d9b1066}|AppName, a2zLyrics-1-buttonutil.exe, In Quarantäne, [b5fbf61495f6b581dcf71096a65e5ba5]
PUP.Optional.TNT.A, HKU\S-1-5-21-1018402826-263647804-3193623928-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{5A133EC9-530F-4030-96AF-6D25FD4D281D}|OSDFileURL, file:///C:/Users/wunibald/AppData/Local/TNT2/Profiles/10557/yah10557.xml, In Quarantäne, [c1ef48c278133afc8736130c5aa911ef]
PUP.Optional.TNT.A, HKU\S-1-5-21-1018402826-263647804-3193623928-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{677FB93A-4DBE-421D-86A7-3FFDA962B431}|OSDFileURL, file:///C:/Users/wunibald/AppData/Local/TNT2/Profiles/10557/os10557.xml, In Quarantäne, [0aa6a466107bc76f526b3ce3ba496898]
PUP.Optional.TNT.A, HKU\S-1-5-21-1018402826-263647804-3193623928-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{677FB93A-4DBE-421D-86A7-3FFDA962B431}|FaviconURL, hxxp://mirror.mirror-files.com/tnt2/10252/su_16.ico, In Quarantäne, [644cec1ecebdfa3c3984d649a26110f0]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 2
PUP.Optional.GateSnapper.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko\1.0.1_0, In Quarantäne, [10a064a6701bde58908a0289b451d62a], 
PUP.Optional.GateSnapper.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko, In Quarantäne, [10a064a6701bde58908a0289b451d62a], 

Dateien: 6
PUP.Optional.PricePeep.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage, In Quarantäne, [f7b91af0d9b290a6e64c9f81699afe02], 
PUP.Optional.PricePeep.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.pricepeep00.pricepeep.net_0.localstorage-journal, In Quarantäne, [4b65d3376229d85e68caf030b44fae52], 
PUP.Optional.GateSnapper.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko\1.0.1_0\manifest.json, In Quarantäne, [10a064a6701bde58908a0289b451d62a], 
PUP.Optional.GateSnapper.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko\1.0.1_0\background.js, In Quarantäne, [10a064a6701bde58908a0289b451d62a], 
PUP.Optional.GateSnapper.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko\1.0.1_0\content.js, In Quarantäne, [10a064a6701bde58908a0289b451d62a], 
PUP.Optional.GateSnapper.A, C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcbdepdlhakkcblhbbiidelbofmgfgko\1.0.1_0\icon.png, In Quarantäne, [10a064a6701bde58908a0289b451d62a], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         
2) AdwCleaner
Code:
ATTFilter
# AdwCleaner v5.002 - Bericht erstellt 20/08/2015 um 09:51:30
# Aktualisiert 18/08/2015 von Xplode
# Datenbank : 2015-08-18.2 [Server]
# Betriebssystem : Windows 10 Home  (x64)
# Benutzername : wunibald - wunibald-DELL
# Gestarted von : C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\ftb
[-] Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\afurladvisor@anchorfree.com

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
[-] Datei Gelöscht : C:\Users\Public\Desktop\GeekBuddy.lnk

***** [ Verknüpfungen ] *****


***** [ Geplante Tasks ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SDP
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444154454}
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\GeekBuddyRSP
[!] Schlüssel Nicht Gelöscht : [x64] HKCU\Software\OCS

***** [ Internetbrowser ] *****


*************************

:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1370 Bytes] ##########
         
FRST folgt im nächsten Post..

3.1) Frst Log Teil 1

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:20-08-2015
durchgeführt von wunibald (Administrator) auf wunibald-DELL (20-08-2015 16:45:34)
Gestartet von C:\Users\wunibald\Desktop
Geladene Profile: wunibald (Verfügbare Profile: wunibald & Gast)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Comodo) C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
() C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.12.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-08-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-08-01] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5757328 2012-10-19] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [IntelPROSet] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM\...\Run: [DellWPF] => C:\Program Files\Synaptics\SynTP\DellTouchpad.exe [5719752 2015-08-01] ()
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-07] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-08-01] (Synaptics Incorporated)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-05] (COMODO)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [143888 2012-06-01] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-07-07] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-03-28] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2092032 2015-02-23] (Dominik Reichl)
HKLM-x32\...\Run: [tvncontrol] => C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2015-08-17] (Comodo Security Solutions, Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Spotify Web Helper] => C:\Users\wunibald\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030648 2015-07-07] (Spotify Ltd)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2899136 2015-08-17] (Valve Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\wunibald\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2015-01-06] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-07-07] (Apple Inc.)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Dropbox Update] => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [OneDrive] => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\OneDrive.exe [402632 2015-08-19] (Microsoft Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Spotify] => C:\Users\wunibald\AppData\Roaming\Spotify\spotify.exe [7504952 2015-07-07] (Spotify Ltd)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\RunOnce: [Uninstall C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64"
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE [283232 2015-01-06] (SEIKO EPSON CORPORATION)
Startup: C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2013-04-09]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-07-27]
ShortcutTarget: Dropbox.lnk -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\FileSyncShell.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\FileSyncShell.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\FileSyncShell.dll [2015-08-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
GroupPolicy: Gruppenrichtline auf Chrome erkannt <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1018402826-263647804-3193623928-1001 -> {FCCB729B-A01B-450D-B5D8-7697FE2DAB89} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-28] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-28] (Oracle Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-28] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-28] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1c2d1d95-1979-413f-b121-390e1a01eef3}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354
FF NetworkProxy: "http", "proxy.cs.fh-nuernberg.de"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-15] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-28] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: @citrixonline.com/appdetectorplugin -> C:\Users\wunibald\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-01-11] (Citrix Online)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\wunibald\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-07-28] ()
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom)
FF Extension: FoxyProxy Standard - C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354\Extensions\foxyproxy@eric.h.jung [2015-06-27]
FF Extension: Adblock Plus - C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-04]
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2015-08-11]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2014-02-06]

Chrome: 
=======
CHR Profile: C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-08]
CHR Extension: (Google Drive) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-08]
CHR Extension: (YouTube) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-08]
CHR Extension: (Adblock Plus) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-08]
CHR Extension: (Adblock for Youtube™) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2013-10-08]
CHR Extension: (Google Search) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2013-10-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-08]
CHR Extension: (Citavi Picker) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\piehhloihgjjiomhieeddiidpekaajio [2014-02-06]
CHR Extension: (Gmail) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [piehhloihgjjiomhieeddiidpekaajio] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Chrome\ChromePicker.crx [2014-02-06]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

U2 EventLog; C:\Windows\System32\wevtsvc.dll [1729024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EventLog; C:\Windows\System32\wevtsvc.dll [1729024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [1335296 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 nsi; C:\Windows\System32\nsisvc.dll [29184 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 VSS; C:\Windows\system32\vssvc.exe [1370112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [855552 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [667136 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AJRouter; C:\Windows\System32\AJRouter.dll [23040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ALG; C:\Windows\System32\alg.exe [97792 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AppIDSvc; C:\Windows\System32\appidsvc.dll [43520 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Appinfo; C:\Windows\System32\appinfo.dll [93696 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-07-07] (Apple Inc.)
U3 AppReadiness; C:\Windows\system32\AppReadiness.dll [621056 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [2178560 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [280064 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [1067520 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114176 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BDESVC; C:\Windows\System32\bdesvc.dll [359936 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BFE; C:\Windows\System32\bfe.dll [794112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BITS; C:\Windows\System32\qmgr.dll [1168896 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [526336 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Browser; C:\Windows\System32\browser.dll [133120 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 bthserv; C:\Windows\system32\bthserv.dll [85504 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 CertPropSvc; C:\Windows\System32\certprop.dll [192000 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ChromodoUpdater; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [1998520 2015-08-18] (Comodo)
U2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2753720 2015-07-22] (Microsoft Corporation)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70848 2015-08-17] (Comodo Security Solutions, Inc.)
U2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-08-05] (COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-05] (COMODO)
U2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-01] (Microsoft Corporation)
U2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [77312 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [873984 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DcpSvc; C:\Windows\system32\dcpsvc.dll [196096 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 defragsvc; C:\Windows\System32\defragsvc.dll [495104 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DellDigitalDelivery; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [173056 2012-06-19] (Dell Products, LP.) [Datei ist nicht signiert]
U2 DeviceAssociationService; C:\Windows\system32\das.dll [405504 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [111616 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DevQueryBroker; C:\Windows\system32\DevQueryBroker.dll [33280 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Dhcp; C:\Windows\system32\dhcpcore.dll [356352 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [292352 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 dmwappushservice; C:\Windows\system32\dmwappushsvc.dll [63488 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Dnscache; C:\Windows\System32\dnsrslvr.dll [276992 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DoSvc; C:\Windows\system32\dosvc.dll [1169408 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 dot3svc; C:\Windows\System32\dot3svc.dll [263680 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DPS; C:\Windows\system32\dps.dll [168960 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [1994936 2015-06-28] (Comodo)
U3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [237568 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DsSvc; C:\Windows\System32\DsSvc.dll [143872 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Eaphost; C:\Windows\System32\eapsvc.dll [106496 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EFS; C:\Windows\system32\efssvc.dll [55808 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EventSystem; C:\Windows\system32\es.dll [472576 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EventSystem; C:\Windows\SysWOW64\es.dll [344576 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Fax; C:\Windows\system32\fxssvc.exe [651776 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 FDResPub; C:\Windows\system32\fdrespub.dll [35840 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fhsvc; C:\Windows\system32\fhsvc.dll [118784 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 FontCache; C:\Windows\system32\FntCache.dll [1679360 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2015-08-17] (Comodo Security Solutions, Inc.)
U3 hidserv; C:\Windows\system32\hidserv.dll [34304 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [273408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [463872 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [381440 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [430344 2015-02-13] ()
U2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [Datei ist nicht signiert]
U3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [115200 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-08-01] (Intel Corporation)
U2 IKEEXT; C:\Windows\System32\ikeext.dll [954368 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [954880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
U3 KeyIso; C:\Windows\system32\keyiso.dll [96256 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [69632 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 KtmRm; C:\Windows\system32\msdtckrm.dll [378880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 LanmanServer; C:\Windows\system32\srvsvc.dll [283136 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [279040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lfsvc; C:\Windows\System32\lfsvc.dll [27136 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lltdsvc; C:\Windows\System32\lltdsvc.dll [279040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lmhosts; C:\Windows\System32\lmhsvc.dll [23040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 LSM; C:\Windows\System32\lsm.dll [749056 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-08-19] (Malwarebytes Corporation)
U2 MpsSvc; C:\Windows\system32\mpssvc.dll [856576 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSDTC; C:\Windows\System32\msdtc.exe [147968 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [151040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 msiserver; C:\Windows\System32\msiexec.exe [65536 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [58368 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NcaSvc; C:\Windows\System32\ncasvc.dll [167424 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NcbService; C:\Windows\System32\ncbservice.dll [337408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [75264 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [Datei ist nicht signiert]
U3 Netlogon; C:\Windows\system32\netlogon.dll [836096 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [708608 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Netman; C:\Windows\System32\netman.dll [265728 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 netprofm; C:\Windows\System32\netprofmsvc.dll [550400 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NetSetupSvc; C:\Windows\System32\NetSetupSvc.dll [186368 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NgcCtnrSvc; C:\Windows\System32\NgcCtnrSvc.dll [268800 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NgcSvc; C:\Windows\system32\ngcsvc.dll [512000 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 NlaSvc; C:\Windows\System32\nlasvc.dll [371712 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-02-27] (Electronic Arts)
U3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [351232 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 p2psvc; C:\Windows\system32\p2psvc.dll [434176 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 pla; C:\Windows\system32\pla.dll [1486848 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 pla; C:\Windows\SysWOW64\pla.dll [1536512 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [111616 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [Datei ist nicht signiert]
U3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [27648 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [351232 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [390656 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Power; C:\Windows\system32\umpo.dll [93184 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [2987520 2015-04-18] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ProfSvc; C:\Windows\system32\profsvc.dll [324608 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 QWAVE; C:\Windows\system32\qwave.dll [286720 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 RasAuto; C:\Windows\System32\rasauto.dll [106496 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 RasMan; C:\Windows\System32\rasmans.dll [679936 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [497152 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [410112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U4 RemoteRegistry; C:\Windows\system32\regsvc.dll [154112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79360 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RpcLocator; C:\Windows\system32\locator.exe [10752 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 RpcSs; C:\Windows\system32\rpcss.dll [873984 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-08-01] (Realtek Semiconductor)
U4 SCardSvr; C:\Windows\System32\SCardSvr.dll [232448 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [181760 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Schedule; C:\Windows\system32\schedsvc.dll [1008640 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SCPolicySvc; C:\Windows\System32\certprop.dll [192000 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SDRSVC; C:\Windows\System32\SDRSVC.dll [150528 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 seclogon; C:\Windows\system32\seclogon.dll [31232 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 SENS; C:\Windows\System32\sens.dll [72192 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SensorService; C:\Windows\system32\SensorService.dll [229376 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SensrSvc; C:\Windows\system32\sensrsvc.dll [177152 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SessionEnv; C:\Windows\system32\sessenv.dll [371200 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [312320 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SharedAccess; C:\Windows\System32\ipnathlp.dll [452608 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [593920 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [544768 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 smphost; C:\Windows\System32\smphost.dll [19968 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 smphost; C:\Windows\SysWOW64\smphost.dll [17920 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SmsRouter; C:\Windows\system32\SmsRouterSvc.dll [583680 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [15872 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Spooler; C:\Windows\System32\spoolsv.exe [781824 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [243712 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SstpSvc; C:\Windows\system32\sstpsvc.dll [210944 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 stisvc; C:\Windows\System32\wiaservc.dll [637440 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 StorSvc; C:\Windows\system32\storsvc.dll [394240 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 svsvc; C:\Windows\system32\svsvc.dll [13824 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 swprv; C:\Windows\System32\swprv.dll [464896 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-08-01] (Synaptics Incorporated)
U2 SysMain; C:\Windows\system32\sysmain.dll [1106432 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [379904 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TabletInputService; C:\Windows\System32\TabSvc.dll [151040 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TapiSrv; C:\Windows\System32\tapisrv.dll [311808 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [254976 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 TermService; C:\Windows\System32\termsrv.dll [1032192 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Themes; C:\Windows\system32\themeservice.dll [58368 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 tiledatamodelsvc; C:\Windows\system32\tileobjserver.dll [503808 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [167936 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 TrkWks; C:\Windows\System32\trkwks.dll [114176 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [120832 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UI0Detect; C:\Windows\system32\UI0Detect.exe [43008 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UmRdpService; C:\Windows\System32\umrdp.dll [276992 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U3 upnphost; C:\Windows\System32\upnphost.dll [452096 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 upnphost; C:\Windows\SysWOW64\upnphost.dll [329216 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
U3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
U2 UserManager; C:\Windows\System32\usermgr.dll [717312 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UsoSvc; C:\Windows\system32\usocore.dll [343040 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 VaultSvc; C:\Windows\System32\vaultsvc.dll [322048 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vds; C:\Windows\System32\vds.exe [665088 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [79872 2012-11-01] (VMware, Inc.) [Datei ist nicht signiert]
U3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicrdv; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicshutdown; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmictimesync; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicvss; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 W32Time; C:\Windows\system32\w32time.dll [518656 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wbengine; C:\Windows\system32\wbengine.exe [1570816 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [605184 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [593920 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wcncsvc; C:\Windows\System32\wcncsvc.dll [471040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [43008 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [33792 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiServiceHost; C:\Windows\system32\wdi.dll [98304 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [89600 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiSystemHost; C:\Windows\system32\wdi.dll [98304 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [89600 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
U3 WebClient; C:\Windows\System32\webclnt.dll [228864 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WebClient; C:\Windows\SysWOW64\webclnt.dll [199680 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Wecsvc; C:\Windows\system32\wecsvc.dll [211456 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [27648 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wercplsupport; C:\Windows\System32\wercplsupport.dll [95744 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WerSvc; C:\Windows\System32\WerSvc.dll [133120 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WiaRpc; C:\Windows\System32\wiarpc.dll [74752 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
U2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [226304 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinRM; C:\Windows\system32\WsmSvc.dll [2556928 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2181120 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WlanSvc; C:\Windows\System32\wlansvc.dll [2226688 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wlidsvc; C:\Windows\system32\wlidsvc.dll [2093056 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [202752 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1473536 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1844736 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [86016 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WpnService; C:\Windows\system32\WpnService.dll [49152 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 wscsvc; C:\Windows\System32\wscsvc.dll [179200 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WSearch; C:\Windows\system32\SearchIndexer.exe [902656 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [712192 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [598808 2013-06-06] (Wacom Technology, Corp.)
U3 wuauserv; C:\Windows\system32\wuaueng.dll [2235904 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [96256 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WwanSvc; C:\Windows\System32\wwansvc.dll [1178112 2015-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
U3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

U5 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] (Microsoft Corporation)
U3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [235520 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] (LSI)
U5 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-08-01] (Microsoft Corporation)
U5 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] (Microsoft Corporation)
U3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [12288 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [13312 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 acpitime; C:\Windows\System32\drivers\acpitime.sys [12800 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] (PMC-Sierra)
U5 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] (Microsoft Corporation)
U1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [215552 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
U3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [121344 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
U3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [118272 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] (Advanced Micro Devices)
U5 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] (AMD Technologies Inc.)
U5 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] (Advanced Micro Devices)
U5 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] (PMC-Sierra, Inc.)
U3 AsyncMac; C:\Windows\System32\drivers\asyncmac.sys [28160 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] (Microsoft Corporation)
U2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-03-03] ()
U5 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] (Broadcom Corporation)
U1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [55296 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [41472 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [105472 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [42496 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [105984 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [65536 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [65536 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthPan; C:\Windows\System32\drivers\bthpan.sys [128512 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [928768 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [84992 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [32256 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 CapImg; C:\Windows\System32\drivers\capimg.sys [116736 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92672 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 cdrom; C:\Windows\System32\drivers\cdrom.sys [174080 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2014-06-26] (Windows (R) Win 7 DDK provider)
U3 circlass; C:\Windows\System32\drivers\circlass.sys [48640 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] (Microsoft Corporation)
U1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
U3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [29184 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21720 2015-08-05] (COMODO)
U1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [827632 2015-08-05] (COMODO)
U1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [35056 2015-08-05] (COMODO)
U5 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-08-01] (Microsoft Corporation)
U3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 condrv; C:\Windows\System32\drivers\condrv.sys [41984 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2012-08-05] (OSR Open Systems Resources, Inc.) [Datei ist nicht signiert]
U1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [138240 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] (Microsoft Corporation)
U3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [33792 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
U5 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] (Microsoft Corporation)
U5 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] (Microsoft Corporation)
U3 ErrDev; C:\Windows\System32\drivers\errdev.sys [11776 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 exfat; C:\Windows\System32\Drivers\exfat.sys [313856 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fcvsc; C:\Windows\System32\drivers\fcvsc.sys [31232 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fdc; C:\Windows\System32\drivers\fdc.sys [32256 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] (Microsoft Corporation)
U3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [35840 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [26112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] (Microsoft Corporation)
U5 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] (Microsoft Corporation)
U5 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] (Microsoft Corporation)
U5 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] (Microsoft Corporation)
U3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [13312 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [80896 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [28160 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidBth; C:\Windows\System32\drivers\hidbth.sys [107520 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [51200 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidIr; C:\Windows\System32\drivers\hidir.sys [46592 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [38400 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 HMD; C:\Windows\system32\DRIVERS\hmd.sys [14888 2014-06-26] ()
U5 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] (Hewlett-Packard Company)
U1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-02-13] (AnchorFree Inc.)
U5 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] (Microsoft Corporation)
U3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [16384 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [26112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [114688 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [645952 2012-07-10] (Intel Corporation)
U5 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] (Intel Corporation)
U5 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] (Intel Corporation)
U3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
U1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [127232 2015-08-05] (COMODO)
U3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [342528 2012-06-19] (Intel(R) Corporation) [Datei ist nicht signiert]
U5 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] (Microsoft Corporation)
U5 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] (Microsoft Corporation)
U3 intelppm; C:\Windows\System32\drivers\intelppm.sys [129536 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [85504 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [81408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [143360 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IRENUM; C:\Windows\System32\drivers\irenum.sys [19456 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] (Microsoft Corporation)
U3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [36864 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 kdnic; C:\Windows\System32\drivers\kdnic.sys [23040 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] (Microsoft Corporation)
U5 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] (Microsoft Corporation)
U3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [26112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-02-27] ()
U2 lltdio; C:\Windows\System32\drivers\lltdio.sys [64000 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] (LSI Corporation)
U5 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] (LSI Corporation)
U5 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
U5 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] (LSI Corporation)
U2 luafv; C:\Windows\system32\drivers\luafv.sys [127488 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-08-19] (Malwarebytes Corporation)
U3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-08-19] (Malwarebytes Corporation)
U5 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] (Avago Technologies)
U5 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] (LSI Corporation, Inc.)
U3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
U2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [48128 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Modem; C:\Windows\System32\drivers\modem.sys [41984 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 monitor; C:\Windows\System32\drivers\monitor.sys [38400 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mouhid; C:\Windows\System32\drivers\mouhid.sys [32256 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-15] (Microsoft Corporation)
U3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [76288 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [143872 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [415232 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [284672 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [217600 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MsBridge; C:\Windows\System32\drivers\bridge.sys [114688 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8704 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [11776 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] (Microsoft Corporation)
U3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [13824 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [82432 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [10752 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [10752 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [12800 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [15872 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] (Microsoft Corporation)
U5 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] (Marvell Semiconductor, Inc.)
U3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [529408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
U5 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-08-01] (Microsoft Corporation)
U3 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [50176 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [129024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [25600 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Ndisuio; C:\Windows\System32\drivers\ndisuio.sys [63488 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [20992 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisWan; C:\Windows\System32\drivers\ndiswan.sys [188928 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ndiswanlegacy; C:\Windows\System32\DRIVERS\ndiswan.sys [188928 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [60928 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Ndu; C:\Windows\System32\drivers\Ndu.sys [124928 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [273408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 netvsc; C:\Windows\System32\drivers\netvsc.sys [94720 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
U1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [26624 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [40448 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 Null; C:\Windows\System32\Drivers\Null.sys [7168 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] (NVIDIA Corporation)
U5 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] (NVIDIA Corporation)
U5 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] (Microsoft Corporation)
U3 Parport; C:\Windows\System32\drivers\parport.sys [96768 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] (Microsoft Corporation)
U5 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-08-01] (Microsoft Corporation)
U5 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] (Microsoft Corporation)
U5 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] (Microsoft Corporation)
U5 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] (Microsoft Corporation)
U5 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] (Microsoft Corporation)
U2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [721408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] (LSI Corporation)
U5 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] (Avago Technologies)
U3 PptpMiniport; C:\Windows\System32\drivers\raspptp.sys [95744 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Processor; C:\Windows\System32\drivers\processr.sys [117248 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [48640 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [105984 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Rasl2tp; C:\Windows\System32\drivers\rasl2tp.sys [104960 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasPppoe; C:\Windows\System32\drivers\raspppoe.sys [81408 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasSstp; C:\Windows\System32\drivers\rassstp.sys [78336 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [414720 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [26112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [176128 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-15] (Microsoft Corporation)
U3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [167936 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RRNetCap; C:\Windows\system32\DRIVERS\rrnetcap.sys [37480 2013-03-20] (RapidSolution Software AG)
U3 RRNetCapMP; C:\Windows\system32\DRIVERS\rrnetcap.sys [37480 2013-03-20] (RapidSolution Software AG)
U2 rspndr; C:\Windows\System32\drivers\rspndr.sys [80896 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            ) [Datei ist nicht signiert]
U3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Realsil Semiconductor Corporation)
U3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [8704 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] (Microsoft Corporation)
U3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [43008 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Serenum; C:\Windows\System32\drivers\serenum.sys [24576 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Serial; C:\Windows\System32\drivers\serial.sys [83968 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 sermouse; C:\Windows\System32\drivers\sermouse.sys [27648 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [18432 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 silabenm; C:\Windows\system32\DRIVERS\silabenm.sys [27336 2012-12-12] (Silicon Laboratories) [Datei ist nicht signiert]
U3 silabser; C:\Windows\system32\DRIVERS\silabser.sys [73216 2012-12-12] (Silicon Laboratories) [Datei ist nicht signiert]
U5 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] (Silicon Integrated Systems Corp.)
U5 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] (Silicon Integrated Systems)
U3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-21] (Synaptics Incorporated)
U3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-16] (Synaptics Incorporated)
U5 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] (Microsoft Corporation)
U2 srv; C:\Windows\System32\DRIVERS\srv.sys [410624 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [674304 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [239616 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] (Promise Technology, Inc.)
U5 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] (Microsoft Corporation)
U5 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] (Microsoft Corporation)
U5 stornvme; C:\Windows\System32\drivers\stornvme.sys [80720 2015-08-19] (Microsoft Corporation)
U2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] (Microsoft Corporation)
U5 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] (Microsoft Corporation)
U3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
U3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [64000 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
U2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [52224 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TsUsbFlt; C:\Windows\System32\drivers\TsUsbFlt.sys [61440 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [33280 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] (Microsoft Corporation)
U3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () [Datei ist nicht signiert]
U4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [321024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] (Microsoft Corporation)
U3 umbus; C:\Windows\System32\drivers\umbus.sys [57344 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UmPass; C:\Windows\System32\drivers\umpass.sys [12800 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbcir; C:\Windows\System32\drivers\usbcir.sys [102400 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbohci; C:\Windows\System32\drivers\usbohci.sys [29184 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbprint; C:\Windows\System32\drivers\usbprint.sys [27136 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbser; C:\Windows\System32\drivers\usbser.sys [67072 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [34816 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [221184 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] (Microsoft Corporation)
U3 vhf; C:\Windows\System32\drivers\vhf.sys [31744 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] (Microsoft Corporation)
U3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [25088 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 vmci; C:\Windows\System32\drivers\vmci.sys [85104 2012-10-24] (VMware, Inc.)
U5 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] (Microsoft Corporation)
U5 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] (Microsoft Corporation)
U5 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] (Microsoft Corporation)
U5 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] (VIA Technologies Inc.,Ltd)
U5 vsock; C:\Windows\System32\drivers\vsock.sys [70296 2012-10-24] (VMware, Inc.)
U5 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] (VIA Corporation)
U3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [26112 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [72704 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vwifimp; C:\Windows\System32\drivers\vwifimp.sys [39936 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [29696 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [80384 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [80384 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] (Microsoft Corporation)
U3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [685568 2015-08-15] (Microsoft Corporation) [Datei ist nicht signiert]
U5 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] (Microsoft Corporation)
U5 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
U5 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
U3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
U3 WINUSB; C:\Windows\System32\drivers\WinUSB.SYS [87552 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
U3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [18432 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U5 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-15] (Microsoft Corporation)
U4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [22528 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WSDPrintDevice; C:\Windows\System32\drivers\WSDPrint.sys [22528 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WSDScan; C:\Windows\system32\DRIVERS\WSDScan.sys [24576 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [97280 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [214016 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Keine Datei
         

Alt 20.08.2015, 16:59   #5
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



3.2) Frst Teil 2
Code:
ATTFilter
==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-20 16:45 - 2015-08-20 16:47 - 00083358 _____ C:\Users\wunibald\Desktop\FRST.txt
2015-08-20 16:45 - 2015-08-20 16:45 - 02173952 _____ (Farbar) C:\Users\wunibald\Desktop\FRST64.exe
2015-08-20 16:45 - 2015-08-20 16:45 - 00000000 ____D C:\Users\wunibald\Desktop\FRST-OlderVersion
2015-08-20 16:44 - 2015-08-20 16:44 - 00016148 _____ C:\WINDOWS\system32\wunibald-DELL_wunibald_HistoryPrediction.bin
2015-08-20 13:45 - 2015-08-20 13:45 - 00001591 _____ C:\Users\wunibald\Desktop\JRT.txt
2015-08-20 10:05 - 2015-08-19 21:14 - 01798576 _____ (Malwarebytes Corporation) C:\Users\wunibald\Desktop\JRT.exe
2015-08-20 10:04 - 2015-08-20 10:04 - 00001453 _____ C:\Users\wunibald\Desktop\AdwCleaner[C2].txt
2015-08-20 09:42 - 2015-08-20 16:49 - 00005313 _____ C:\Users\wunibald\Desktop\MBAM.txt
2015-08-19 18:22 - 2015-08-19 18:22 - 07812296 _____ (Microsoft Corporation) C:\Users\wunibald\Downloads\OneDriveSetup.exe
2015-08-19 18:16 - 2015-08-19 18:16 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 18:16 - 2015-08-19 18:16 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 18:16 - 2015-08-19 18:16 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 18:15 - 2015-08-19 18:16 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 18:15 - 2015-08-19 18:15 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 18:15 - 2015-08-19 18:15 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 18:15 - 2015-08-19 18:15 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 18:10 - 2015-08-20 10:04 - 01791580 _____ (Malwarebytes Corporation) C:\Users\wunibald\Desktop\JRT(1).exe
2015-08-19 18:10 - 2015-08-20 09:43 - 01585664 _____ C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe
2015-08-19 18:08 - 2015-08-19 18:09 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-19 18:02 - 2015-08-19 18:06 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\wunibald\Downloads\mbam-setup-2.1.8.1057.exe
2015-08-18 22:13 - 2015-08-18 22:14 - 00287344 _____ C:\WINDOWS\Minidump\081815-36531-01.dmp
2015-08-18 22:06 - 2015-08-18 22:13 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-18 22:06 - 2015-08-18 22:06 - 00288136 _____ C:\WINDOWS\Minidump\081815-35734-01.dmp
2015-08-18 22:03 - 2015-08-18 22:03 - 00000000 ____D C:\Users\wunibald\AppData\Local\TempTaskUpdateDetectionAAA60B6D-D985-43B7-87C0-F446692A2CD9
2015-08-18 22:02 - 2015-08-18 22:02 - 00000000 ___HD C:\OneDriveTemp
2015-08-18 21:35 - 2015-08-18 21:35 - 00033129 _____ C:\Users\wunibald\Downloads\Addition.txt
2015-08-18 21:26 - 2015-08-18 21:44 - 00380416 _____ C:\Users\wunibald\Desktop\1vneerpp.exe
2015-08-18 21:25 - 2015-08-18 21:43 - 00000000 ____D C:\FRST
2015-08-18 21:24 - 2015-08-18 21:24 - 00000168 _____ C:\Users\wunibald\defogger_reenable
2015-08-18 21:07 - 2015-08-18 21:24 - 00000546 _____ C:\Users\wunibald\Desktop\defogger_disable.log
2015-08-18 21:07 - 2015-08-18 21:07 - 00000348 _____ C:\Users\wunibald\Downloads\defogger_enable.log
2015-08-18 21:06 - 2015-08-18 21:07 - 00050477 _____ C:\Users\wunibald\Desktop\Defogger.exe
2015-08-17 18:59 - 2015-08-15 11:59 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-17 18:59 - 2015-08-15 11:59 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-17 15:48 - 2015-08-17 15:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-17 11:56 - 2015-08-17 11:56 - 00466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00000000 ____D C:\Program Files (x86)\OpenAL
2015-08-17 10:55 - 2015-08-17 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo Security Solutions Inc
2015-08-17 10:47 - 2015-08-17 10:47 - 00001904 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2015-08-17 10:47 - 2015-08-17 10:47 - 00001904 _____ C:\ProgramData\Desktop\COMODO Internet Security.lnk
2015-08-17 10:46 - 2015-08-17 10:46 - 00000000 ____D C:\ProgramData\Shared Space
2015-08-17 10:30 - 2015-08-17 10:47 - 00000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2015-08-17 10:25 - 2015-08-17 10:39 - 226558984 _____ (COMODO) C:\Users\wunibald\Desktop\cispremium_installer.exe
2015-08-17 10:06 - 2015-08-17 10:06 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-17 10:04 - 2015-08-17 10:04 - 00000000 ____D C:\Users\wunibald\AppData\Local\CEF
2015-08-17 09:06 - 2015-08-17 09:06 - 00000000 ____D C:\5db91e8eeff514c049a1a012c333
2015-08-17 09:05 - 2015-08-17 09:05 - 00000000 ____D C:\Users\wunibald\AppData\Local\NetworkTiles
2015-08-15 12:08 - 2015-08-15 12:08 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-08-15 12:07 - 2015-08-15 12:07 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-15 12:07 - 2015-08-15 12:07 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-15 12:05 - 2015-08-15 12:05 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-11 12:12 - 2015-08-17 09:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-11 11:29 - 2015-08-11 11:29 - 00000000 ____D C:\$SysReset
2015-08-11 11:27 - 2015-08-11 11:27 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-08-05 01:31 - 2015-08-05 01:31 - 00827632 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdguard.sys
2015-08-05 01:31 - 2015-08-05 01:31 - 00127232 _____ (COMODO) C:\WINDOWS\system32\Drivers\inspect.sys
2015-08-05 01:31 - 2015-08-05 01:31 - 00035056 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdhlp.sys
2015-08-05 01:31 - 2015-08-05 01:31 - 00021720 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmderd.sys
2015-08-05 01:29 - 2015-08-05 01:29 - 00579408 _____ (COMODO) C:\WINDOWS\system32\guard64.dll
2015-08-05 01:29 - 2015-08-05 01:29 - 00445472 _____ (COMODO) C:\WINDOWS\SysWOW64\guard32.dll
2015-08-05 01:29 - 2015-08-05 01:29 - 00041224 _____ (COMODO) C:\WINDOWS\system32\cmdcsr.dll
2015-08-05 01:28 - 2015-08-05 01:28 - 00358080 _____ (COMODO) C:\WINDOWS\system32\cmdvrt64.dll
2015-08-05 01:28 - 2015-08-05 01:28 - 00045760 _____ (COMODO) C:\WINDOWS\system32\cmdkbd64.dll
2015-08-05 01:27 - 2015-08-05 01:27 - 00288448 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdvrt32.dll
2015-08-05 01:26 - 2015-08-05 01:26 - 00040640 _____ (COMODO) C:\WINDOWS\SysWOW64\cmdkbd32.dll
2015-08-03 16:05 - 2015-08-03 16:10 - 00251392 _____ C:\Users\wunibald\Desktop\Draft_ITProjektplan.mpp
2015-08-01 18:36 - 2015-08-19 18:22 - 00002362 _____ C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-01 18:31 - 2015-08-01 18:31 - 00000000 ____D C:\Users\wunibald\AppData\Local\MicrosoftEdge
2015-08-01 18:27 - 2015-08-01 18:27 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-01 18:11 - 2015-08-01 18:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-01 18:09 - 2015-08-01 18:09 - 00000000 ____D C:\Users\wunibald\AppData\Local\Publishers
2015-08-01 18:03 - 2015-08-01 18:05 - 00000000 ____D C:\Users\wunibald\AppData\Local\Comms
2015-08-01 18:02 - 2015-08-01 18:37 - 00000000 ___RD C:\Users\wunibald\OneDrive
2015-08-01 18:02 - 2015-08-01 18:02 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-08-01 18:02 - 2015-08-01 18:02 - 00000020 ___SH C:\Users\wunibald\ntuser.ini
2015-08-01 18:02 - 2015-08-01 18:02 - 00000000 ____D C:\Users\wunibald\AppData\Local\TileDataLayer
2015-08-01 16:29 - 2015-08-01 18:01 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-01 16:29 - 2015-08-01 15:39 - 00000000 __SHD C:\Recovery
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Vorlagen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Startmenü
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Netzwerkumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Lokale Einstellungen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Eigene Dateien
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Druckumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Anwendungsdaten
2015-08-01 16:24 - 2015-08-01 16:24 - 00000000 ____D C:\Windows.old
2015-08-01 16:23 - 2015-08-01 16:23 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-01 16:19 - 2015-08-01 16:19 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-01 16:18 - 2015-01-06 08:25 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YLMIVE.DLL
2015-08-01 16:18 - 2015-01-06 08:25 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YD4BIVE.DLL
2015-08-01 16:18 - 2015-01-06 08:25 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files\MSBuild
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-01 16:14 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-01 16:14 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-01 16:14 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-01 16:14 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-01 16:14 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-01 16:14 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-01 16:03 - 2015-08-17 10:43 - 02156688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-01 16:01 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-01 15:52 - 2015-08-01 15:52 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-01 15:43 - 2015-08-01 15:43 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-08-01 15:40 - 2015-08-18 22:54 - 00000000 ____D C:\Users\wunibald
2015-08-01 15:40 - 2015-08-11 12:11 - 00000000 ____D C:\Users\Gast
2015-08-01 15:40 - 2015-08-01 18:02 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-01 15:40 - 2015-08-01 15:42 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Vorlagen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Startmenü
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Netzwerkumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Lokale Einstellungen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Eigene Dateien
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Druckumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Documents\Eigene Musik
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Documents\Eigene Bilder
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Local\Verlauf
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Local\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Vorlagen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Startmenü
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Lokale Einstellungen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Eigene Dateien
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Anwendungsdaten
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-01 15:37 - 2015-08-01 15:43 - 00000000 ____D C:\Program Files\AMD
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-08-01 15:36 - 2015-08-01 15:36 - 00188490 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\Program Files\Realtek
2015-08-01 15:35 - 2015-08-01 15:44 - 00000000 ____D C:\Program Files\Intel
2015-08-01 15:35 - 2015-08-01 15:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-08-01 15:35 - 2015-08-01 15:35 - 00000000 ____D C:\Program Files\Synaptics
2015-08-01 15:32 - 2015-08-01 15:32 - 00041049 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-01 15:31 - 2015-08-20 09:57 - 00041066 _____ C:\WINDOWS\PFRO.log
2015-08-01 12:17 - 2015-08-01 14:41 - 00000000 ___HD C:\$Windows.~BT
2015-08-01 10:56 - 2015-08-01 10:56 - 00000000 ___HD C:\$Windows.~WS
2015-08-01 10:45 - 2015-08-01 10:46 - 19646888 _____ (Microsoft Corporation) C:\Users\wunibald\Downloads\MediaCreationToolx64.exe
2015-07-31 22:38 - 2015-07-31 22:38 - 12167616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 10281624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 09279840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 09063704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 08957368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 08083992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 07648032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 07554656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 01483504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 01229840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00484176 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00172432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00162096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00153104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00148400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00140016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00127440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00122128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00120080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00097584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00097584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00090640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00090640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-07-31 22:37 - 2015-08-01 12:44 - 01204784 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00688160 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00680992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-07-31 22:37 - 2015-08-01 12:44 - 00384544 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00350240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00263200 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00252448 _____ C:\WINDOWS\system32\clinfo.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00177696 _____ C:\WINDOWS\system32\atieah64.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00161312 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00068640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-07-31 22:37 - 2015-07-31 22:37 - 47800352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 39729696 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 30766624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 27553312 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 25314336 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 22336032 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 21629472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-07-31 22:37 - 2015-07-31 22:37 - 15734304 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 14319648 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 01263648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00944160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00944160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00883232 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00459808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00208416 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00174112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00159264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00120352 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00119840 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00106528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00098336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00092704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00087072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00087072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00082464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00079904 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00073248 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00069664 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00066592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00060960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00047136 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00021536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00021536 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-07-31 22:36 - 2015-08-01 12:44 - 01079344 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-07-31 22:36 - 2015-08-01 12:44 - 01012784 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-07-31 22:36 - 2015-08-01 12:44 - 00816176 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-07-31 22:36 - 2015-07-31 22:36 - 00222240 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00207392 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00152096 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00140832 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00076832 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00068128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00056864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 12334064 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 11905424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 11053040 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 10574976 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 04636608 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 03668768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 01155984 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 01151832 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00467688 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00378816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00229648 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00199080 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00194352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00169352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00040704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-07-30 22:45 - 2015-08-01 12:44 - 04371872 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 04368288 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 02508272 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 02035696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-07-30 22:45 - 2015-08-01 12:44 - 00969120 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00555424 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00554912 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00540064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00443296 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00409504 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00408992 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00393632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00328608 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00290208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00256928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00204192 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00164256 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-07-30 22:45 - 2015-07-30 22:45 - 22914032 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 17846768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 08528880 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 06512112 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 04024368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 03797960 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-07-30 22:45 - 2015-07-30 22:45 - 01994224 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01793008 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01766896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01468976 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00865328 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00678896 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00659504 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00632816 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00616496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00392688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00385520 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00374256 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00357936 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00329200 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00295408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00285168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00264176 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-07-30 22:45 - 2015-07-30 22:45 - 00261104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00232944 _____ C:\WINDOWS\system32\igdde64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00228848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00223792 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00194544 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00193520 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00191984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4252.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00191024 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00170992 _____ C:\WINDOWS\system32\igdail64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00163824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00152560 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00141872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00107568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00102896 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00095216 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00078320 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00072688 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00069104 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00068080 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00039408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00019440 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-07-28 22:29 - 2015-07-28 22:29 - 00065024 _____ C:\Users\wunibald\Desktop\Projektorganisation.vsd
2015-07-28 22:17 - 2015-07-28 22:17 - 00059392 _____ C:\Users\wunibald\Desktop\Zeichnung1.vsd
2015-07-22 19:55 - 2015-07-22 19:55 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\java
2015-07-21 10:55 - 2015-07-21 10:55 - 00000165 ____H C:\Users\wunibald\Desktop\~$Fächerplanung Master.xlsx

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-20 16:44 - 2015-02-12 13:43 - 00825494 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2015-08-20 16:39 - 2015-07-01 09:22 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-20 16:38 - 2013-10-08 15:28 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-20 16:02 - 2015-06-16 18:51 - 00001258 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA.job
2015-08-20 16:01 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-20 15:48 - 2014-02-06 23:37 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EA867E25-1991-4F38-9821-E0033C61BE2A}
2015-08-20 15:02 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-20 14:02 - 2015-06-16 18:51 - 00001206 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core.job
2015-08-20 13:38 - 2013-10-08 15:28 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-20 10:03 - 2013-11-03 19:20 - 00000000 __RDO C:\Users\wunibald\SkyDrive
2015-08-20 09:58 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-20 09:56 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-20 09:56 - 2014-05-20 11:05 - 01474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-08-20 09:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-20 09:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-20 09:51 - 2015-02-13 13:40 - 00000000 ____D C:\AdwCleaner
2015-08-20 09:45 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-20 09:43 - 2014-04-07 20:48 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\KeePass
2015-08-19 18:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-19 18:07 - 2015-02-18 22:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-19 18:06 - 2013-02-21 17:14 - 00000000 ___RD C:\Users\wunibald\Dropbox
2015-08-18 22:13 - 2014-01-23 00:05 - 630955586 _____ C:\WINDOWS\MEMORY.DMP
2015-08-18 17:05 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-18 17:03 - 2015-06-28 17:25 - 00000000 ____D C:\Program Files (x86)\Comodo
2015-08-18 12:45 - 2013-02-21 12:15 - 00000000 ____D C:\Users\wunibald\AppData\Local\Packages
2015-08-17 19:58 - 2013-05-22 15:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-17 18:57 - 2015-07-10 14:20 - 00401424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-17 18:54 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-17 18:54 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-17 18:46 - 2015-07-09 09:23 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-08-17 18:45 - 2015-07-09 09:23 - 00000000 ____D C:\Users\wunibald\AppData\Local\Battle.net
2015-08-17 14:21 - 2013-04-09 20:50 - 00000039 _____ C:\WINDOWS\vbaddin.ini
2015-08-17 14:21 - 2013-04-09 18:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-17 10:55 - 2014-05-20 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-08-17 10:47 - 2015-07-10 18:34 - 01302732 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-17 10:47 - 2015-07-10 18:34 - 00332988 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-17 10:47 - 2013-02-21 17:11 - 00002026 _____ C:\Users\wunibald\Desktop\Spotify.lnk
2015-08-17 10:42 - 2014-05-20 11:01 - 00000000 ____D C:\Users\wunibald\AppData\Local\Comodo
2015-08-17 10:07 - 2014-07-23 13:05 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-17 10:06 - 2013-02-21 17:10 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Dropbox
2015-08-17 09:09 - 2014-02-26 12:41 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-17 09:09 - 2014-02-26 12:41 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-17 09:09 - 2013-02-21 12:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-17 09:07 - 2013-08-12 14:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-17 09:06 - 2014-02-26 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-17 09:06 - 2013-02-24 20:02 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-15 12:22 - 2013-02-21 17:11 - 00000000 ____D C:\Users\wunibald\AppData\Local\Spotify
2015-08-15 12:22 - 2013-02-21 17:08 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Spotify
2015-08-15 12:11 - 2013-04-09 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-15 11:39 - 2015-07-01 09:22 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 12:10 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-11 12:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\registration
2015-08-03 15:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-03 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-03 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-01 18:36 - 2015-07-09 09:31 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-01 18:04 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-01 16:29 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-01 16:25 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-01 16:25 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default
2015-08-01 16:24 - 2015-07-10 14:20 - 00047524 _____ C:\WINDOWS\setupact.log
2015-08-01 16:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-01 16:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-01 16:24 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-01 16:24 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-01 16:24 - 2013-11-01 12:22 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-08-01 16:24 - 2013-11-01 12:22 - 00013338 _____ C:\WINDOWS\diagerr.xml
2015-08-01 16:21 - 2013-11-01 10:38 - 00013888 _____ C:\WINDOWS\comsetup.log
2015-08-01 16:20 - 2015-06-16 18:51 - 00004318 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA
2015-08-01 16:20 - 2015-06-16 18:51 - 00003938 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core
2015-08-01 16:20 - 2014-05-20 11:05 - 00003138 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2015-08-01 16:20 - 2014-05-04 20:00 - 00003304 _____ C:\WINDOWS\System32\Tasks\{942A19C8-02BF-43DB-9877-71A63CF0809F}
2015-08-01 16:20 - 2013-11-01 12:59 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-01 16:20 - 2013-10-08 15:28 - 00004226 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-01 16:20 - 2013-10-08 15:28 - 00003990 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-01 16:20 - 2013-04-10 18:49 - 00003306 _____ C:\WINDOWS\System32\Tasks\{E5347CD0-75EF-4F3A-B035-7A9B4DDAC90A}
2015-08-01 16:20 - 2013-03-05 02:09 - 00002886 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-01 16:20 - 2013-02-21 12:24 - 00003706 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1018402826-263647804-3193623928-1001
2015-08-01 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-01 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-01 16:14 - 2015-07-10 12:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-08-01 16:10 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-01 15:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-01 15:55 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-01 15:55 - 2015-07-09 09:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-08-01 15:55 - 2015-07-09 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-01 15:55 - 2015-07-07 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-01 15:55 - 2015-07-07 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-01 15:55 - 2015-04-16 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-01 15:55 - 2015-03-23 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular
2015-08-01 15:55 - 2015-02-13 20:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-01 15:55 - 2015-02-13 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2015-08-01 15:55 - 2014-09-04 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Sims 4
2015-08-01 15:55 - 2014-06-04 13:53 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablett
2015-08-01 15:55 - 2014-02-06 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citavi 4
2015-08-01 15:55 - 2013-11-27 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-01 15:55 - 2013-11-04 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
2015-08-01 15:55 - 2013-10-08 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-01 15:55 - 2013-09-26 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-01 15:55 - 2013-09-24 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-08-01 15:55 - 2013-09-07 22:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-01 15:55 - 2013-09-01 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™
2015-08-01 15:55 - 2013-09-01 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-08-01 15:55 - 2013-08-28 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft PC Gamer Demo
2015-08-01 15:55 - 2013-05-22 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-01 15:55 - 2013-05-21 14:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-08-01 15:55 - 2013-05-19 19:26 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2015-08-01 15:55 - 2013-05-07 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2015-08-01 15:55 - 2013-04-09 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-01 15:55 - 2013-04-09 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-08-01 15:55 - 2013-03-22 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2015-08-01 15:55 - 2013-03-22 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 10
2015-08-01 15:55 - 2013-02-26 21:40 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-01 15:55 - 2013-02-26 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-01 15:55 - 2013-02-21 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2015-08-01 15:55 - 2013-02-21 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.0
2015-08-01 15:55 - 2013-02-16 20:23 - 00000000 ____D C:\WINDOWS\de
2015-08-01 15:55 - 2013-02-16 20:20 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-08-01 15:55 - 2013-02-16 20:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2015-08-01 15:55 - 2013-02-16 20:11 - 00000000 ____D C:\Program Files\Dell Support Center
2015-08-01 15:55 - 2013-02-16 20:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-01 15:52 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-01 15:52 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-08-01 15:47 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-01 15:47 - 2013-09-24 14:21 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2015-08-01 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-08-01 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-08-01 15:47 - 2013-05-05 22:37 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-08-01 15:47 - 2013-02-27 21:25 - 00000000 ____D C:\WINDOWS\SysWOW64\Hotspot Shield
2015-08-01 15:45 - 2015-07-10 18:46 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-01 15:45 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Resources
2015-08-01 15:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-08-01 15:44 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-01 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod
2015-08-01 15:44 - 2014-06-27 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMind
2015-08-01 15:44 - 2014-05-24 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPEVO
2015-08-01 15:44 - 2013-11-17 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biet-O-Matic
2015-08-01 15:44 - 2013-11-14 13:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2015-08-01 15:44 - 2013-11-06 22:07 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-08-01 15:44 - 2013-11-01 12:13 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-01 15:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-08-01 15:44 - 2013-06-23 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\more software
2015-08-01 15:44 - 2013-05-04 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daedalic Entertainment
2015-08-01 15:44 - 2013-02-24 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
2015-08-01 15:44 - 2013-02-21 12:15 - 00000000 ____D C:\ProgramData\PRICache
2015-08-01 15:44 - 2013-02-16 20:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
2015-08-01 15:44 - 2013-02-16 20:09 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-08-01 15:43 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-01 15:43 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-01 15:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-08-01 15:42 - 2013-07-29 14:36 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2015-08-01 15:41 - 2014-06-03 19:04 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2015-08-01 14:56 - 2013-11-01 13:01 - 01663679 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-01 12:43 - 2015-06-24 22:59 - 13119736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-01 12:43 - 2015-06-24 22:59 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-01 12:43 - 2015-06-24 22:57 - 03700360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2015-07-23 11:59 - 2014-02-06 13:11 - 00000000 ____D C:\Users\wunibald\Documents\Citavi 4
2015-07-22 20:27 - 2013-05-03 10:43 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-07-22 20:22 - 2013-08-28 15:57 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\.minecraft

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-04-10 19:02 - 2013-04-10 19:02 - 0000074 _____ () C:\Users\wunibald\AppData\Roaming\gnuplot_history
2015-05-02 19:11 - 2015-05-02 19:11 - 0008982 _____ () C:\Users\wunibald\AppData\Local\recently-used.xbel
2015-08-01 15:36 - 2015-08-01 15:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-02-16 20:16 - 2013-02-16 20:16 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-02-16 20:12 - 2013-02-16 20:13 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-02-16 20:13 - 2013-02-16 20:14 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-02-16 20:11 - 2013-02-16 20:12 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-02-16 20:14 - 2013-02-16 20:16 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Public\VR-IBAN-Konverter.dat


Einige Dateien in TEMP:
====================
C:\Users\wunibald\AppData\Local\Temp\sqlite3.dll
C:\Users\wunibald\AppData\Local\Temp\npp.6.7.5.Installer.exe
C:\Users\wunibald\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe
[2015-08-01 16:23] - [2015-08-01 16:23] - 0578048 ____A (Microsoft Corporation) 26EFEFD877A84EE9FBDE6DEE630892C9

C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe
[2015-07-10 13:00] - [2015-07-10 13:00] - 0030720 ____A (Microsoft Corporation) 5F6D4F12EA33BFC0F0F8CEEAC332AB2B

C:\WINDOWS\SysWOW64\userinit.exe
[2015-07-10 13:00] - [2015-07-10 13:00] - 0026112 ____A (Microsoft Corporation) A89C18F5E6D8981D5E937B325290915A

C:\WINDOWS\system32\rpcss.dll
[2015-07-10 12:59] - [2015-07-10 12:59] - 0873984 ____A (Microsoft Corporation) 5E57B9FBB4E9C43EE5B69BEE01A1819F

C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-18 13:21

==================== Ende von Ergebnis ============================
         


Alt 20.08.2015, 17:00   #6
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



4) Additions.txt

Code:
ATTFilter
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:20-08-2015
durchgeführt von wunibald (2015-08-20 16:50:53)
Gestartet von C:\Users\wunibald\Desktop
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1018402826-263647804-3193623928-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1018402826-263647804-3193623928-503 - Limited - Disabled)
Gast (S-1-5-21-1018402826-263647804-3193623928-501 - Limited - Disabled) => C:\Users\Gast
wunibald (S-1-5-21-1018402826-263647804-3193623928-1001 - Administrator - Enabled) => C:\Users\wunibald

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)


==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 13.2.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe Connect 9 Add-in (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Adobe Connect 9 Add-in) (Version: 11,2,392,0 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{08D35D3C-C4F7-09FB-0F89-F680A1CCD3A3}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
Audials (HKLM-x32\...\{0E9EBAF3-67F8-430A-9852-D02E5F20031A}) (Version: 10.2.30900.0 - Audials AG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Biet-O-Matic v2.14.12 (HKLM-x32\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\Steam App 262940) (Version:  - Revolution Software Ltd)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Chromodo (HKLM-x32\...\Chromodo) (Version: 44.5.7.267 - Comodo)
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.2.0.11 - Swiss Academic Software)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 43.3.3.185 - Comodo)
COMODO Internet Security Premium (HKLM\...\{367D1EA4-24FD-402F-AFF0-08A678D2EE28}) (Version: 8.2.0.4674 - COMODO Security Solutions Inc.)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.0.0.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.0.0.2 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D9ED3EFC-AB00-4CE0-ADED-80EE6B1158A7}) (Version: 2.2.2000.0 - Dell Products, LP)
Dell Support Center (HKLM\...\PC-Doctor for Windows) (Version: 3.2.6032.39 - PC-Doctor, Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
Deponia (HKLM-x32\...\Deponia) (Version: 1.1.5 - Daedalic Entertainment)
Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.4.83.1010 - Electronic Arts Inc.)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - )
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Dropbox) (Version: 3.8.6 - Dropbox, Inc.)
DSC/AA Factory Installer (Version: 3.2.6032.39 - PC-Doctor, Inc.) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 16.1.20150309 - Landesfinanzdirektion Thüringen)
EPSON WF-2530 Series Printer Uninstall (HKLM\...\EPSON WF-2530 Series) (Version:  - SEIKO EPSON Corporation)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GeekBuddy (HKLM\...\{6839D104-506A-41EC-86D4-7E1C5F867C26}) (Version: 4.21.143 - Comodo Security Solutions Inc)
Geheimakte 2 - Puritas Cordis (HKLM-x32\...\{39B9D0EC-0387-4600-8526-A0C2ED5DCEDB}) (Version: 1.02 - Deep Silver)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hotspot Shield 3.42 (HKLM-x32\...\HotspotShield) (Version: 3.42 - AnchorFree Inc.)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{fad118b4-798f-4755-9e67-a622eec95b62}) (Version: 15.6.1 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
KeePass Password Safe 1.28 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.28 - Dominik Reichl)
KeePass Password Safe 2.25 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.25 - Dominik Reichl)
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
LibreOffice 4.0.0.3 (HKLM-x32\...\{8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}) (Version: 4.0.0.3 - The Document Foundation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4737.1003 - Microsoft Corporation)
Microsoft OneNote 2013 (HKLM-x32\...\Office15.ONENOTER) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM-x32\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Compatibility Pack (HKLM-x32\...\{95150000-005B-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1509 - Microsoft Corporation)
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft PC Gamer Demo version 1.5 (HKLM-x32\...\{55D65D27-C0CD-4375-9021-F3D3D024ED90}_is1) (Version: 1.5 - Mojang)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 de)) (Version: 39.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 31.7.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.7.0 (x86 de)) (Version: 31.7.0 - Mozilla)
Mp3tag v2.54 (HKLM-x32\...\Mp3tag) (Version: v2.54 - Florian Heidenreich)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.1 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.2.2730 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.7 - )
Presenter version 3.0.3.6 (HKLM-x32\...\{73E8CFA8-F031-40B1-9129-C1247D178DCD}_is1) (Version: 3.0.3.6 - IPEVO Inc.)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.012 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung CLP-410 Series (HKLM-x32\...\Samsung CLP-410 Series) (Version: 1.01 (01.05.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.45.01(30.04.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00.04 - Samsung Electronics Co., Ltd.)
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-00A1-0000-0000-0000000FF1CE}_Office15.ONENOTER_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Spotify) (Version: 1.0.8.59.gee82e7e6 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
The Settlers 7: Paths to a Kingdom - Gold Edition (HKLM-x32\...\Steam App 48210) (Version:  - Blue Byte)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 5.0.1 - VMware, Inc)
VMware Player (Version: 5.0.1 - VMware, Inc.) Hidden
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.6-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
XMind 2013 (v3.4.1) (HKLM-x32\...\XMind_is1) (Version: 3.4.1.201401221918 - XMind Ltd.)
XnView 2.00 (HKLM-x32\...\XnView_is1) (Version: 2.00 - Gougelet Pierre-e)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{092dfa86-5807-5a94-bf3b-5a53ba9e5308}\InprocServer32 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1B}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

Wiederherstellungspunkte konnten nicht aufgelistet werden
Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2015-02-13 20:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {012A5176-38C5-48BF-9A6B-14F140CCEFC4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-13] (Piriform Ltd)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1211F63C-F449-4FAD-BF13-69C36D137452} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-22] (Microsoft Corporation)
Task: {188204CF-6142-418E-BC68-074101C41095} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {274BE484-6C7F-44AF-8E56-8E3E2764C6B6} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {29423978-13AA-4E84-BE00-558D1EEB28E2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {2B0F9DF6-F139-4270-B928-C37CD2CB76C2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {47184EB4-DE15-4BB1-9028-C1351A42C1D9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-15] (Adobe Systems Incorporated)
Task: {4BEDF6BC-9166-437F-9233-A708E2AADD97} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-17] (Microsoft Corporation)
Task: {5B15B328-E84F-4E03-8E67-561864A8AD82} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {6BA91862-14A7-4640-AE77-5710A4E4610F} - System32\Tasks\{E5347CD0-75EF-4F3A-B035-7A9B4DDAC90A} => pcalua.exe -a C:\Users\wunibald\Downloads\setupfunktion.exe -d C:\Users\wunibald\Downloads
Task: {7130BB98-3385-431A-B93F-1CD47C876DE2} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {71FFE864-B452-4107-BB41-CB2C0E71DCA3} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {73344434-33B9-49A0-AD70-A3F9D2D166D1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7F04FB47-9DE3-4807-A5BD-3BC62E6AC3B5} - System32\Tasks\{942A19C8-02BF-43DB-9877-71A63CF0809F} => pcalua.exe -a C:\Users\wunibald\Downloads\Ext2Fsd-0.51.exe -d C:\Users\wunibald\Downloads
Task: {83EFAF0B-63F5-42A3-B1DA-9E8E8F0D6078} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-01] (Microsoft Corporation)
Task: {94C89B03-9E9A-4A8A-8B44-DA9543708F38} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {94D1C92E-A48D-4F06-9A89-5A8E33BFDD01} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {96FE7265-9E71-42D6-B813-006A113BB1EF} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-06-09] (Microsoft Corporation)
Task: {976608D5-623D-4ABA-9AAF-7FED5AF564BF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {9DAA94BB-A65E-41FA-BF22-A160CBE81C0C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {A24EA4D0-2BBA-4E56-905C-036833321BEB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {B41B994E-CAF6-4BE0-93E4-07EDAEFD1DDC} - \PCDEventLauncher -> Keine Datei <==== ACHTUNG
Task: {B7B90ED7-D7AE-4DD7-B08C-87FEB5C81B3B} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2015-08-05] (COMODO)
Task: {C135F80C-62D6-4991-981A-5E80E30431A8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-22] (Microsoft Corporation)
Task: {C19403F8-6FF1-4D8B-90FD-F08A77BA9168} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C6178C98-E6D4-460C-B497-EE64099AECF4} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CD7B99AF-250A-42D6-84B4-E5620B8D6EF8} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {D14C4B61-7A55-4356-BBA6-22E52AC0168B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {D6E3EC5E-D4BE-4E0E-B123-7D23B4878A92} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-08] (Google Inc.)
Task: {E04858BC-6D42-4D22-B408-7A975CE18C00} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E57F8B3A-375F-4EA4-AE87-545D52775149} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {EBB98FF0-A7BA-4F6C-990C-966B76D39880} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-08] (Google Inc.)
Task: {EF82BAF9-E145-4D80-AE6D-553E02F0E8C9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {F1FA1268-FCA5-4C59-B39C-CA8D4FD7323D} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2015-08-05] (COMODO)
Task: {F7CEA030-0CAA-44ED-AA10-242250708760} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => 0x000A0100290EA34630604643851DC4B004A344E74600D400000000003C000A00200000000014730F000000000513040020200401000000000000000000000000000000000000180043003A005C00570049004E0044004F00570053005C006500780070006C006F007200650072002E0065007800650000000C002F004E004F0055004100430043004800450043004B000000000018004500780070006C006F007200650072005300680065006C006C0055006E0065006C00650076006100740065006400000000000000080003130400000000000000
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core.job => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA.job => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-10 13:00 - 2015-07-10 13:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-05-21 14:38 - 2012-02-09 12:42 - 00034304 _____ () C:\WINDOWS\System32\ssd4clm.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:34 - 2015-02-13 20:18 - 00430344 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2014-03-31 11:21 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-02-16 20:14 - 2012-04-25 04:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2014-05-29 18:35 - 2013-06-06 04:09 - 01185048 ____N () C:\Program Files\Tablet\Wacom\libxml2.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-02-20 22:23 - 2012-02-20 22:23 - 00456704 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-02-20 22:23 - 2012-02-20 22:23 - 00051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2015-07-16 02:28 - 2015-08-01 12:43 - 05719752 _____ () C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-01-08 23:02 - 2015-01-08 23:02 - 00067808 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2015-08-19 18:08 - 2015-08-19 18:14 - 07824896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.12.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2015-08-19 18:08 - 2015-08-19 18:14 - 02062336 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.12.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2014-05-17 02:11 - 2014-05-17 02:11 - 00908584 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2015-08-18 13:47 - 2015-08-18 13:47 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\7059fb1ab1c10eeec73c9c76bba579d5\PSIClient.ni.dll
2013-02-16 20:05 - 2012-06-25 20:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\WINDOWS\explorer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\amdocl_as64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\amdocl_ld64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentExtensions.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentServer.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppxSysprep.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atiapfxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atieah64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atieclxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atiesrxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ATIODCLI.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ATIODE.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioEndpointBuilder.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\clinfo.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\cloudAP.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\configmanager2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\coredpus.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CustomModeApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CustomModeAppv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dfp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DfpCommon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack_win.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack_wininternal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\difx64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DPTopologyApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DPTopologyAppv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\enterprisecsps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\facecredentialprovider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FntCache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GEARAspi64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GfxUIEx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Gfxv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Gfxv4_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxcmjit64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxCUIService.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxEM.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxext.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxHK.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxTray.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\InputService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\InstallAgent.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelWiDiUMS64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelWiDiVAD64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LicenseManagerShellext.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationFrameworkInternalPS.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationGeofences.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationPermissions.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO4064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioMeters64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO3064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MbaeParserTask.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\modernexecserver.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssprxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MusNotificationUx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NetworkMobileSettings.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NetworkStatus.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationControllerPS.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provengine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provhandlers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provisioningcsp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PsmServiceExtHost.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rdbui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RDXService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\schedsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SensorService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_Notifications.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_nt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SharedStartModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SharedStartModelShim.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SkyDriveTelemetry.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\StoreAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SubscriptionMgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\syncutil.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sysmain.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tetheringservice.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tileobjserver.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tquery.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\twinui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UserDataService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VPNv2CSP.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wcmcsp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wcmsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wifinetworkmanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\win32kbase.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\win32kfull.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinBioDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Cortana.Desktop.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Shell.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\winmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wlidsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wmpmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpncore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wu.upgrade.ps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wuautoappupdate.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wwansvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\amdocl_as32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\amdocl_ld32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atieah32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\explorer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\GEARAspi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\InputService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ReInfo.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tquery.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\twinui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\winmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\atikmpag.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\bthhfenum.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgkrnl.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgmms1.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgmms2.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\hssdrv6.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\msgpiowin32.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ntfs.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\rdyboost.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\stornvme.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\storport.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\tunnel.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\USBHUB3.SYS:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\WdiWiFi.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wof.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wpcfltr.sys:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\wunibald\Desktop\1vneerpp.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\1vneerpp.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\cispremium_installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\cispremium_installer.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\Defogger.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\Defogger.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\JRT(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\JRT(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-Basics.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-Basics.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-security-guide.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-security-guide.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB_Security_Architecture_WP.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB_Security_Architecture_WP.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\TheDefinitiveGuideToMongoDB.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\TheDefinitiveGuideToMongoDB.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\38fad22242bc68b3487b6ab3db3e70d8.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\adwcleaner_4.111.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\adwcleaner_4.111.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\Barrierefrei.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\Barrierefrei.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\ccsetup502_slim.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\ccsetup502_slim.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\dbs2-ss14-kap8-NoSQL.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\dbs2-ss14-kap8-NoSQL.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\eGovernmentMONITOR_2013_web.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\ElsterFormular-16.1.20150309p.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\ElsterFormular-16.1.20150309p.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\FTB_Launcher.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\FTB_Launcher.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\gesamt.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\gesamt.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\Hearthstone-Setup-deDE.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\Hearthstone-Setup-deDE.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\hotspotshield-setup_540.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\hotspotshield-setup_540.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\HSS-3.42-install-plain-701-plain.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\HSS-3.42-install-plain-701-plain.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\JRT.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\JRT.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\jxpiinstall(2).exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\jxpiinstall(2).exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\KeePass-1.28-Setup.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\KeePass-1.28-Setup.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\mbam-setup-2.1.8.1057.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\mbam-setup-2.1.8.1057.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\MediaCreationToolx64.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\MediaCreationToolx64.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\OneDriveSetup.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\OneDriveSetup.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\Provision_Data.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\Schwarze_IT-Outsourcing-Erfahrungen_Status_und_zukuenftige_Herausforderungen.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\Schwarze_IT-Outsourcing-Erfahrungen_Status_und_zukuenftige_Herausforderungen.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\SDM_DE(1).msi:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\SEPA_Lastschriftmandat.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\SEPA_Lastschriftmandat.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\SITM.zip:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\SITM.zip:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\StudienplanMasterWINWS14.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\StudienplanMasterWINWS14.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\uninstall_flash_player.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\uninstall_flash_player.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\V06_CIO-Artikel_fuer_U06.zip:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\V06_CIO-Artikel_fuer_U06.zip:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Downloads\Vergleich CIO Studie vs Don Marchand.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Downloads\Vergleich CIO Studie vs Don Marchand.pdf:$CmdZnID

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\wunibald\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\floar wooden.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
mpsdrv Firewall Dienst läuft nicht.
MpsSvc Firewall Dienst läuft nicht.
bfe Firewall Dienst läuft nicht.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "Ext2 Volume Manager"
HKLM\...\StartupApproved\Run32: => "tvncontrol"
HKLM\...\StartupApproved\Run32: => "PrivDogService"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "AmazonMP3DownloaderHelper"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "SDP"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "FLV Player"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Wunderlist"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{205D30E2-173F-4C56-8711-27F5556D440A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{B8BA7336-9AAC-4A66-8172-061D92F44339}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{AB555750-15E0-426D-9135-59EE73DE1FE6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A4AEA136-1E72-4751-939C-ADB060C0BEF0}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{8BC1AD74-CC27-4897-ACD1-7EC0949464BB}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{EB4035AB-1160-4D5B-948F-AB743984B645}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{6359C65D-4CC7-4E4D-BD8F-9E9C071C7B61}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{3F0AE8C5-317F-4100-B098-F7623E1B0FC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{4BD97D4C-55DA-4C5A-852C-5683D4B1051F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{E13C0288-B508-4AC3-8459-0278B631F27D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1CEFD603-E141-44C0-93AD-CD73F20CC6A3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{72527005-A039-47EB-9EEE-4593BD8F3790}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{41392DAE-FEC1-4943-8904-D4C6345A1889}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{1A95054C-5CE4-4B2A-B319-56879BD4101C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{1AC5C4BE-69B2-400C-B276-33F097FA5022}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{439FDD92-0618-437B-AE3F-A86F09F815E4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3105BD15-DA5C-4147-ABF6-97E1DCB22BF6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B884C4B0-17D7-4846-98F5-D8ED9DAC7198}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{D94F7E59-4349-4650-9B13-EE11BA436D74}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{2DBB9413-E3C1-4CF2-AC69-E7B64F6DF4F9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6CDF6CCC-C0A6-46BA-9140-6EBF08455498}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4DC100E1-5940-4AF3-977B-5197A7133948}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{C6255E83-8F51-4566-A4BB-0BE61E176311}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [UDP Query User{725CF103-46F0-471F-B10D-11713652ABB1}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{A02EB36A-F6FC-4EE4-B7B0-33E4CA0A2646}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{A597D30D-F4B2-419F-94D7-D53918F6C65D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broken Sword 5\BS5.exe
FirewallRules: [{39BE8E81-F546-4985-B8EE-4DFBE86DB0E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broken Sword 5\BS5.exe
FirewallRules: [UDP Query User{9E87A281-E0CF-454F-AE81-4B9A2BC9FF59}C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{BEA4796C-8A2A-45CC-A1E7-D0FE7A76DEBC}C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{7B1FECD6-F55C-4E8A-AAB3-79E9F2812C95}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{922C40F1-D0EC-49CB-AB88-665B29452009}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{8B2C5228-4E45-4F80-BA92-587839683B93}C:\users\wunibald\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\wunibald\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E176A975-2C16-4565-B1F6-D869F6D14775}C:\users\wunibald\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\wunibald\appdata\roaming\spotify\spotify.exe
FirewallRules: [{40630B57-ECAD-475C-AE95-CB761929E0B7}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{32C5F2E6-E834-47A8-BB27-D593E8E556B5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{8A68171E-783A-4270-B729-0CCA7995906D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{9E270A3C-D943-489A-9BD2-F0D42AFFB5C9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{40CF49CE-C843-49C8-BD99-03D6254BC1CC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{AABD66AB-B839-4F71-AD90-14C6F16BFB70}] => (Allow) LPort=2869
FirewallRules: [{34BBB97E-92C5-4D0B-8AA9-1CC10D50C637}] => (Allow) LPort=1900
FirewallRules: [{0DDB0BA4-AD14-4CF0-B42B-358233910FE3}] => (Allow) C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{F83F4375-B857-4789-B9E2-AD108DC0FE94}] => (Allow) C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FD3F1618-B551-4F84-976E-98AE7D9B9EED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{827908D4-F234-483D-801D-3EE1600765B9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6CFB202D-69E8-45AD-8ACB-4FC9DB7D9A6F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E96C4B86-DA43-4CA6-AF0A-F88B36254CB2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B1CB5CE6-49ED-43F6-9E07-CD8AACC93633}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{E5394E09-927C-48E7-8DF0-C6D9E6549710}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{AFB00296-4A8A-4ED0-8995-1053EC9D3882}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6AADDD7A-A518-4524-A514-BC633BF48808}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2179BEDA-1732-413A-AE26-DA16DBB65D6F}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{5ACEB1EF-BD4C-4B6A-845F-18CF718B6833}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{BB503B34-A616-48CB-8697-6F665D7B6A03}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{448B7BDF-5837-4983-945B-2BB3979C27CD}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{858EA72B-B5BA-4C49-B6ED-CC5989126D05}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{8DB09FA9-2DFE-46E3-A91B-E0209A183C88}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{EFECA1CE-EC0A-417F-8707-A7506190C7DB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{1827F6C7-E4FF-4613-8FA8-8B3DA47231A7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{710D1448-8659-4E39-980C-ADE23B7A8710}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{8874CF80-56EE-4375-8EE7-4C775B368A69}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{4D433ED8-33B0-42E1-9BDE-C8695EB3FE58}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8B7BB47A-37CC-4291-BCE6-B2BAFCFFB307}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BF45B3AD-3D82-4700-B185-7F4361E2AE9E}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{5E444E0E-F7CC-4657-9B03-EAE247D934AF}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{9B348B07-F73F-44CC-AD7C-17285C52ED53}] => (Allow) C:\Program Files (x86)\Audials\Audials 10\Audials.exe
FirewallRules: [{C8160CE8-38C7-432A-BA6D-90F0D9A9B0B3}] => (Allow) LPort=12972
FirewallRules: [{7864C4ED-5988-42F3-A7D6-6884108862CE}] => (Allow) LPort=14714
FirewallRules: [{E33F477A-5935-461C-B270-61450F25A524}] => (Allow) LPort=31931
FirewallRules: [{AF868C55-BEC0-40A5-9289-46C7405F5B76}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{3C78BA07-9793-4278-A599-35ACA988218A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{0831FAD0-AF0A-48DF-92F4-0DAF5ECF6896}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{F88F15B9-89A5-4C1B-9BC6-F80E2189C551}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{178F5163-9492-4D1C-BF13-07F6DA01E84D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{3FEA5683-EFDA-408B-906A-CF3BAF96E81A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{2E6DDD22-F410-4FCD-8F2A-D8A3759B990C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{8FF2CF76-A3B0-4FD4-980D-2EC3688EB0E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{F8696CE0-C278-4E00-AAB8-7D72BFD152E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Konnte Geräte nicht auflisten. Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Der Dienst der Ereignisanzeige konnte nicht gestartet werden, Einträge konnten nicht gelesen werden.

Systemfehler 123 aufgetreten.

Die Syntax f�r den Dateinamen, Verzeichnisnamen oder die Datentr�gerbezeichnung ist falsch.


==================== Speicherinformationen =========================== 

Processor: Intel(R) Core(TM) i7-3517U CPU @ 1.90GHz
Prozentuale Nutzung des RAM: 36%
Installierter physikalischer RAM: 8061.27 MB
Verfügbarer physikalischer RAM: 5103.71 MB
Summe virtueller Speicher: 9341.27 MB
Verfügbarer virtueller Speicher: 6167.93 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:915.87 GB) (Free:744.3 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 7AD83C4F)

Partition: GPT.

==================== Ende von Ergebnis ============================
         

Alt 21.08.2015, 08:17   #7
schrauber
/// the machine
/// TB-Ausbilder
 

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Kein Problem



ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 21.08.2015, 19:01   #8
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Chrome scheint werbefrei und der PC ist wieder viel schneller
Ob der Virenscanner durchläuft, weiß ich ehrlich gesagt nicht. Habe es nicht getestet und bin auch davon abgekommen Comodo weiter nutzen wollen. Würde ihn dann deinstallieren. Ihr gebt ja am Ende immer ne Empfehlung ab. Denke, die werde ich mir zumindest mal ansehen und testen Firewall reicht die von Windows meine ich gelesen zu haben, richtig?

Hier wieder die Logs:

1) Eset
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=bb65cf44c0e1a346b5807c4aab6f4943
# end=init
# utc_time=2015-08-21 08:17:21
# local_time=2015-08-21 10:17:21 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 25379
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=bb65cf44c0e1a346b5807c4aab6f4943
# end=updated
# utc_time=2015-08-21 08:21:04
# local_time=2015-08-21 10:21:04 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=bb65cf44c0e1a346b5807c4aab6f4943
# engine=25379
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-08-21 02:15:02
# local_time=2015-08-21 04:15:02 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='COMODO Antivirus'
# compatibility_mode=3085 16777213 100 92 365221 19419136 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 3620427 3640514 0 0
# scanned=454365
# found=10
# cleaned=0
# scan_time=21237
sh=972DB9071C719922142BE77CF935C208B66F8DE2 ft=1 fh=c50a95d882970223 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\wunibald\AppData\Local\Temp\OCS\ocs_v71b.exe.vir"
sh=FB5064BA698293D937411707C29F1A38DEFDF2EF ft=1 fh=87edca7535116eae vn="Win32/Somoto.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\wunibald\AppData\Local\webplayer\Uninstall.exe.vir"
sh=4C1A2BEACA0702A3EA3EF5005CD064605850813E ft=1 fh=c71c0011871ed107 vn="Win32/Somoto.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\wunibald\AppData\Local\webplayer\FLV Player\WebPlayer.exe.vir"
sh=A1BE20D1E845018DF25B2352D986D66AFDB296F7 ft=1 fh=f016ad09f0a33414 vn="Win32/DownloadAdmin.H evtl. unerwünschte Anwendung" ac=I fn="C:\Users\wunibald\Downloads\hotspotshield-setup.exe"
sh=66F59F946B116D84B2787EE2010CE6D1CC2635D9 ft=1 fh=fc91a06500238816 vn="Win32/DownloadAdmin.H evtl. unerwünschte Anwendung" ac=I fn="C:\Users\wunibald\Downloads\hotspotshield-setup_540.exe"
sh=DAFFBC9B547E6E83299AB5CA9C3DBA37250CA30B ft=1 fh=596ec5a94fdf6763 vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung" ac=I fn="C:\Users\wunibald\Downloads\HSS-2.78-install-a-393-conduit.exe"
sh=FBE0BB1F805185F176754C987C0D4F56BEFD26B5 ft=1 fh=3f8092379af39d58 vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung" ac=I fn="C:\Users\wunibald\Downloads\HSS-2.87-install.exe"
sh=B8235555376F1934439AC3480E1D2ACC2A6F207A ft=1 fh=f5a084aacc1ecb07 vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung" ac=I fn="C:\Users\wunibald\Downloads\HSS-3.09-install-e-308-conduit.exe"
sh=D00EFDFFFBF7E739AC9749F38BF0452FA03C43E3 ft=1 fh=a716a9aa42938f56 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\wunibald\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe"
sh=47B19AB97028D8925579BED54EFEE88C8107D6B6 ft=1 fh=34f71966959b3eb8 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\wunibald\AppData\Local\Temp\DMR\dmr_72.exe"
         
2) Security Check
Code:
ATTFilter
 Results of screen317's Security Check version 1.006  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Windows Defender   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Java 8 Update 60  
 Java version 32-bit out of Date! 
 Adobe Flash Player 	18.0.0.232  
 Adobe Reader XI  
 Mozilla Firefox (40.0.2) 
 Mozilla Thunderbird (38.2.0) 
 Google Chrome (44.0.2403.130) 
 Google Chrome (44.0.2403.155) 
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         
3) Frisches Frst Teil 1
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:21-08-2015
durchgeführt von wunibald (Administrator) auf wunibald-DELL (21-08-2015 18:45:12)
Gestartet von C:\Users\wunibald\Desktop
Geladene Profile: wunibald (Verfügbare Profile: wunibald & Gast)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
() C:\Users\wunibald\Desktop\SecurityCheck.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
() C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\MSOSYNC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-08-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-08-01] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe"
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5757328 2012-10-19] (Dell Inc.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [IntelPROSet] => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM\...\Run: [DellWPF] => C:\Program Files\Synaptics\SynTP\DellTouchpad.exe [5719752 2015-08-01] ()
HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-07-07] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-08-01] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-04] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [143888 2012-06-01] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-07-07] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-03-28] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUS Ai Charger] => C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe [547984 2012-08-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2092032 2015-02-23] (Dominik Reichl)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Spotify Web Helper] => C:\Users\wunibald\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2030648 2015-07-07] (Spotify Ltd)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2899136 2015-08-17] (Valve Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\wunibald\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-2530 Series"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-07-07] (Apple Inc.)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Dropbox Update] => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [OneDrive] => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-21] (Microsoft Corporation)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Run: [Spotify] => C:\Users\wunibald\AppData\Roaming\Spotify\spotify.exe [7504952 2015-07-07] (Spotify Ltd)
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\RunOnce: [Uninstall C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_1\amd64"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\RunOnce: [Uninstall C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5907.0716_1\amd64"
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIVE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-2530 Series"
Startup: C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2013-04-09]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-07-27]
ShortcutTarget: Dropbox.lnk -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll [2015-08-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\FileSyncShell.dll [2015-08-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\FileSyncShell.dll [2015-08-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\FileSyncShell.dll [2015-08-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
GroupPolicy: Gruppenrichtline auf Chrome erkannt <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://start.search.us.com/v/2/?guid={B4C163F4-5300-494A-834D-64B345CF92C4}&serpv=5
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1018402826-263647804-3193623928-1001 -> {FCCB729B-A01B-450D-B5D8-7697FE2DAB89} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-08-21] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-21] (Oracle Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\WINDOWS\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-08-21] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-08-21] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1c2d1d95-1979-413f-b121-390e1a01eef3}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354
FF NetworkProxy: "http", "proxy.cs.fh-nuernberg.de"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-15] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-08-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-08-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-30] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: @citrixonline.com/appdetectorplugin -> C:\Users\wunibald\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-01-11] (Citrix Online)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\wunibald\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-07-28] ()
FF Plugin HKU\S-1-5-21-1018402826-263647804-3193623928-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll Keine Datei
FF Extension: FoxyProxy Standard - C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354\Extensions\foxyproxy@eric.h.jung [2015-06-27]
FF Extension: Adblock Plus - C:\Users\wunibald\AppData\Roaming\Mozilla\Firefox\Profiles\hsaxojkk.default-1430237266354\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-04]
FF Extension: Hotspot Shield Extension - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2015-08-21]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2014-02-06]

Chrome: 
=======
CHR Profile: C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-08]
CHR Extension: (Google Drive) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-08]
CHR Extension: (YouTube) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-08]
CHR Extension: (Adblock Plus) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-08]
CHR Extension: (Adblock for Youtube™) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2013-10-08]
CHR Extension: (Google Search) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2013-10-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-04]
CHR Extension: (Chrome Web Store Payments) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-08]
CHR Extension: (Citavi Picker) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\piehhloihgjjiomhieeddiidpekaajio [2014-02-06]
CHR Extension: (Gmail) - C:\Users\wunibald\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-08]
CHR HKLM-x32\...\Chrome\Extension: [piehhloihgjjiomhieeddiidpekaajio] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Chrome\ChromePicker.crx [2014-02-06]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-07-07] (Apple Inc.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2753720 2015-07-22] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-08-01] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-08-01] (Microsoft Corporation)
S2 DellDigitalDelivery; c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe [173056 2012-06-19] (Dell Products, LP.) [Datei ist nicht signiert]
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation)
S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation)
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [430344 2015-02-13] ()
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [Datei ist nicht signiert]
S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-08-19] (Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-08-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation)
R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-08-19] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [Datei ist nicht signiert]
S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R2 OneSyncSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-02-27] (Electronic Arts)
S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 PimIndexMaintenanceSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [Datei ist nicht signiert]
S3 RetailDemo; C:\Windows\system32\RDXService.dll [996352 2015-08-19] (Microsoft Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-08-01] (Realtek Semiconductor)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-08-01] (Microsoft Corporation)
R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation)
R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-08-01] (Synaptics Incorporated)
S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-08-01] (Microsoft Corporation)
S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-08-01] (Microsoft Corporation)
R3 UnistoreSvc_Session1; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UnistoreSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-08-15] (Microsoft Corporation)
R3 UserDataSvc_Session1; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation)
R3 UserDataSvc_Session1; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation)
R2 VMAuthdService; C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [79872 2012-11-01] (VMware, Inc.) [Datei ist nicht signiert]
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation)
S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S5 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] (LSI)
R5 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-08-01] (Microsoft Corporation)
R5 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] (Microsoft Corporation)
S5 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] (PMC-Sierra)
S5 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] (Microsoft Corporation)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R5 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-21] (Advanced Micro Devices, Inc.)
S5 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] (Advanced Micro Devices)
S5 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] (AMD Technologies Inc.)
S5 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] (Advanced Micro Devices)
S5 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] (PMC-Sierra, Inc.)
S5 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] (Microsoft Corporation)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-03-03] ()
S5 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2014-06-26] (Windows (R) Win 7 DDK provider)
R5 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R5 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-08-01] (Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation)
S3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2012-08-05] (OSR Open Systems Resources, Inc.)
R5 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] (Microsoft Corporation)
S5 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation)
R5 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] (Microsoft Corporation)
S5 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] (Microsoft Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation)
R5 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] (Microsoft Corporation)
R5 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] (Microsoft Corporation)
U5 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] (Microsoft Corporation)
R5 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] (Microsoft Corporation)
S5 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation)
R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation)
R1 HMD; C:\Windows\system32\DRIVERS\hmd.sys [14888 2014-06-26] ()
S5 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] (Hewlett-Packard Company)
R1 HssDRV6; C:\Windows\system32\DRIVERS\hssdrv6.sys [44744 2015-02-13] (AnchorFree Inc.)
S5 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] (Microsoft Corporation)
R5 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [645952 2012-07-10] (Intel Corporation)
S5 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] (Intel Corporation)
S5 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] (Intel Corporation)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox)
S5 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] (Microsoft Corporation)
S5 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] (Microsoft Corporation)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation)
S5 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] (Microsoft Corporation)
R5 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] (Microsoft Corporation)
R5 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] (Microsoft Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-02-27] ()
S5 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] (LSI Corporation)
S5 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] (LSI Corporation)
S5 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
S5 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-08-19] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-08-19] (Malwarebytes Corporation)
S5 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] (Avago Technologies)
S5 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] (LSI Corporation, Inc.)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox)
R5 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-15] (Microsoft Corporation)
R5 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] (Microsoft Corporation)
R5 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] (Microsoft Corporation)
S5 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] (Marvell Semiconductor, Inc.)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox)
R5 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-08-01] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S5 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] (NVIDIA Corporation)
S5 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] (NVIDIA Corporation)
S5 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] (Microsoft Corporation)
R5 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] (Microsoft Corporation)
R5 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-08-01] (Microsoft Corporation)
S5 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] (Microsoft Corporation)
S5 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] (Microsoft Corporation)
R5 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] (Microsoft Corporation)
R5 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] (Microsoft Corporation)
S5 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] (LSI Corporation)
S5 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] (Avago Technologies)
R5 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-15] (Microsoft Corporation)
S3 RRNetCap; C:\Windows\system32\DRIVERS\rrnetcap.sys [37480 2013-03-20] (RapidSolution Software AG)
S3 RRNetCapMP; C:\Windows\system32\DRIVERS\rrnetcap.sys [37480 2013-03-20] (RapidSolution Software AG)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Realsil Semiconductor Corporation)
S5 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] (Microsoft Corporation)
S5 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] (Silicon Integrated Systems Corp.)
S5 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] (Silicon Integrated Systems)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-21] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-16] (Synaptics Incorporated)
R5 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] (Microsoft Corporation)
S5 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] (Promise Technology, Inc.)
S5 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] (Microsoft Corporation)
S5 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] (Microsoft Corporation)
S5 stornvme; C:\Windows\System32\drivers\stornvme.sys [80720 2015-08-19] (Microsoft Corporation)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation)
S5 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] (Microsoft Corporation)
S5 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
R5 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] (Microsoft Corporation)
S5 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation)
S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-08-01] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S5 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] (Microsoft Corporation)
R5 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] (Microsoft Corporation)
S5 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] (Microsoft Corporation)
R5 vmci; C:\Windows\System32\drivers\vmci.sys [85104 2012-10-24] (VMware, Inc.)
R5 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] (Microsoft Corporation)
R5 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] (Microsoft Corporation)
R5 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] (Microsoft Corporation)
S5 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] (VIA Technologies Inc.,Ltd)
R5 vsock; C:\Windows\System32\drivers\vsock.sys [70296 2012-10-24] (VMware, Inc.)
S5 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] (VIA Corporation)
S5 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R5 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] (Microsoft Corporation)
R5 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R5 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] (Microsoft Corporation)
R5 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation)
R5 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox)
R5 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-15] (Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation)
S3 silabenm; \SystemRoot\system32\DRIVERS\silabenm.sys [X]
S3 silabser; \SystemRoot\system32\DRIVERS\silabser.sys [X]
S3 WacHidRouter; \SystemRoot\System32\drivers\wachidrouter.sys [X]
S3 wacomrouterfilter; \SystemRoot\System32\drivers\wacomrouterfilter.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Keine Datei
         

Alt 21.08.2015, 19:03   #9
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Frst Teil 2
Code:
ATTFilter
==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-21 18:47 - 2015-08-21 18:47 - 00016148 _____ C:\WINDOWS\system32\wunibald-DELL_wunibald_HistoryPrediction.bin
2015-08-21 18:45 - 2015-08-21 18:47 - 00041144 _____ C:\Users\wunibald\Desktop\FRST.txt
2015-08-21 18:45 - 2015-08-21 18:45 - 00000000 ____D C:\Users\wunibald\Desktop\FRST-OlderVersion
2015-08-21 18:44 - 2015-08-21 18:44 - 00000867 _____ C:\Users\wunibald\Desktop\checkup.txt
2015-08-21 18:38 - 2015-08-21 18:38 - 00000000 ___HD C:\OneDriveTemp
2015-08-21 18:16 - 2015-08-21 18:16 - 00000000 _____ C:\WINDOWS\SysWOW64\REN27AD.tmp
2015-08-21 18:14 - 2015-08-21 18:16 - 00000000 ____D C:\Users\wunibald\.oracle_jre_usage
2015-08-21 18:14 - 2015-08-21 18:14 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Sun
2015-08-21 18:08 - 2015-08-21 18:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-08-21 17:53 - 2015-08-21 17:53 - 00003485 _____ C:\Users\wunibald\Desktop\Eset.txt
2015-08-21 11:02 - 2015-08-21 18:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-21 10:18 - 2015-08-21 17:55 - 00852684 _____ C:\Users\wunibald\Desktop\SecurityCheck.exe
2015-08-20 10:04 - 2015-08-20 16:50 - 00001456 _____ C:\Users\wunibald\Desktop\AdwCleaner[C2].txt
2015-08-20 09:42 - 2015-08-20 16:49 - 00005313 _____ C:\Users\wunibald\Desktop\MBAM.txt
2015-08-19 18:16 - 2015-08-19 18:16 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 18:16 - 2015-08-19 18:16 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 18:16 - 2015-08-19 18:16 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 18:15 - 2015-08-19 18:16 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-19 18:15 - 2015-08-19 18:15 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 18:15 - 2015-08-19 18:15 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 18:15 - 2015-08-19 18:15 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 18:15 - 2015-08-19 18:15 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 18:10 - 2015-08-20 10:04 - 01791580 _____ (Malwarebytes Corporation) C:\Users\wunibald\Desktop\JRT(1).exe
2015-08-19 18:10 - 2015-08-20 09:43 - 01585664 _____ C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe
2015-08-19 18:08 - 2015-08-19 18:09 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-08-19 18:07 - 2015-08-19 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-08-18 22:13 - 2015-08-18 22:14 - 00287344 _____ C:\WINDOWS\Minidump\081815-36531-01.dmp
2015-08-18 22:06 - 2015-08-18 22:13 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-18 22:06 - 2015-08-18 22:06 - 00288136 _____ C:\WINDOWS\Minidump\081815-35734-01.dmp
2015-08-18 22:03 - 2015-08-18 22:03 - 00000000 ____D C:\Users\wunibald\AppData\Local\TempTaskUpdateDetectionAAA60B6D-D985-43B7-87C0-F446692A2CD9
2015-08-18 21:26 - 2015-08-18 21:44 - 00380416 _____ C:\Users\wunibald\Desktop\1vneerpp.exe
2015-08-18 21:25 - 2015-08-21 18:46 - 00000000 ____D C:\FRST
2015-08-18 21:25 - 2015-08-21 18:45 - 02173952 _____ (Farbar) C:\Users\wunibald\Desktop\FRST64.exe
2015-08-18 21:24 - 2015-08-18 21:24 - 00000168 _____ C:\Users\wunibald\defogger_reenable
2015-08-18 21:07 - 2015-08-18 21:24 - 00000546 _____ C:\Users\wunibald\Desktop\defogger_disable.log
2015-08-18 21:06 - 2015-08-18 21:07 - 00050477 _____ C:\Users\wunibald\Desktop\Defogger.exe
2015-08-17 18:59 - 2015-08-15 11:59 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-17 18:59 - 2015-08-15 11:59 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-17 15:48 - 2015-08-17 15:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-17 11:56 - 2015-08-17 11:56 - 00466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2015-08-17 11:56 - 2015-08-17 11:56 - 00000000 ____D C:\Program Files (x86)\OpenAL
2015-08-17 10:25 - 2015-08-17 10:39 - 226558984 _____ (COMODO) C:\Users\wunibald\Desktop\cispremium_installer.exe
2015-08-17 10:06 - 2015-08-17 10:06 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-17 10:04 - 2015-08-17 10:04 - 00000000 ____D C:\Users\wunibald\AppData\Local\CEF
2015-08-17 09:06 - 2015-08-17 09:06 - 00000000 ____D C:\5db91e8eeff514c049a1a012c333
2015-08-17 09:05 - 2015-08-17 09:05 - 00000000 ____D C:\Users\wunibald\AppData\Local\NetworkTiles
2015-08-15 12:08 - 2015-08-15 12:08 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-08-15 12:07 - 2015-08-15 12:07 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-15 12:07 - 2015-08-15 12:07 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-15 12:06 - 2015-08-15 12:06 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-15 12:05 - 2015-08-15 12:05 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-15 12:05 - 2015-08-15 12:05 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-15 12:05 - 2015-08-15 12:05 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-15 12:05 - 2015-08-15 12:05 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-11 11:29 - 2015-08-11 11:29 - 00000000 ____D C:\$SysReset
2015-08-11 11:27 - 2015-08-11 11:27 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-08-03 16:05 - 2015-08-03 16:10 - 00251392 _____ C:\Users\wunibald\Desktop\Draft_ITProjektplan.mpp
2015-08-01 18:36 - 2015-08-21 10:15 - 00002362 _____ C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-01 18:31 - 2015-08-01 18:31 - 00000000 ____D C:\Users\wunibald\AppData\Local\MicrosoftEdge
2015-08-01 18:27 - 2015-08-01 18:27 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-01 18:16 - 2015-08-01 18:16 - 00000306 __RSH C:\ProgramData\ntuser.pol
2015-08-01 18:11 - 2015-08-01 18:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-08-01 18:09 - 2015-08-01 18:09 - 00000000 ____D C:\Users\wunibald\AppData\Local\Publishers
2015-08-01 18:03 - 2015-08-01 18:05 - 00000000 ____D C:\Users\wunibald\AppData\Local\Comms
2015-08-01 18:02 - 2015-08-01 18:37 - 00000000 ___RD C:\Users\wunibald\OneDrive
2015-08-01 18:02 - 2015-08-01 18:02 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-08-01 18:02 - 2015-08-01 18:02 - 00000020 ___SH C:\Users\wunibald\ntuser.ini
2015-08-01 18:02 - 2015-08-01 18:02 - 00000000 ____D C:\Users\wunibald\AppData\Local\TileDataLayer
2015-08-01 16:29 - 2015-08-01 18:01 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-01 16:29 - 2015-08-01 15:39 - 00000000 __SHD C:\Recovery
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-01 16:25 - 2015-08-01 16:25 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-01 16:24 - 2015-08-01 16:24 - 00000000 ____D C:\Windows.old
2015-08-01 16:23 - 2015-08-01 16:23 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-01 16:23 - 2015-08-01 16:23 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-01 16:23 - 2015-08-01 16:23 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-01 16:23 - 2015-08-01 16:23 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-01 16:19 - 2015-08-01 16:19 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-01 16:18 - 2015-01-06 08:25 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YLMIVE.DLL
2015-08-01 16:18 - 2015-01-06 08:25 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YD4BIVE.DLL
2015-08-01 16:18 - 2015-01-06 08:25 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files\MSBuild
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-01 16:14 - 2015-08-01 16:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-01 16:14 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-01 16:14 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-01 16:14 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-01 16:14 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-01 16:14 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-01 16:14 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-01 16:03 - 2015-08-17 10:43 - 02156688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-01 16:01 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-01 15:52 - 2015-08-01 15:52 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-01 15:52 - 2015-08-01 15:52 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-01 15:43 - 2015-08-01 15:43 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-08-01 15:40 - 2015-08-21 18:14 - 00000000 ____D C:\Users\wunibald
2015-08-01 15:40 - 2015-08-11 12:11 - 00000000 ____D C:\Users\Gast
2015-08-01 15:40 - 2015-08-01 18:02 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-01 15:40 - 2015-08-01 15:42 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Vorlagen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Startmenü
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Netzwerkumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Lokale Einstellungen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Eigene Dateien
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Druckumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Documents\Eigene Musik
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Documents\Eigene Bilder
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Local\Verlauf
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\AppData\Local\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\wunibald\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Vorlagen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Startmenü
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Lokale Einstellungen
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Eigene Dateien
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Anwendungsdaten
2015-08-01 15:40 - 2015-08-01 15:40 - 00000000 _SHDL C:\Users\Gast\Anwendungsdaten
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-01 15:40 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-01 15:37 - 2015-08-01 15:43 - 00000000 ____D C:\Program Files\AMD
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2015-08-01 15:37 - 2015-08-01 15:37 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2015-08-01 15:36 - 2015-08-01 15:36 - 00188490 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-08-01 15:36 - 2015-08-01 15:36 - 00000000 ____D C:\Program Files\Realtek
2015-08-01 15:35 - 2015-08-01 15:44 - 00000000 ____D C:\Program Files\Intel
2015-08-01 15:35 - 2015-08-01 15:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-08-01 15:35 - 2015-08-01 15:35 - 00000000 ____D C:\Program Files\Synaptics
2015-08-01 15:32 - 2015-08-01 15:32 - 00041049 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-01 15:31 - 2015-08-21 18:35 - 00049330 _____ C:\WINDOWS\PFRO.log
2015-08-01 12:17 - 2015-08-01 14:41 - 00000000 ___HD C:\$Windows.~BT
2015-08-01 10:56 - 2015-08-01 10:56 - 00000000 ___HD C:\$Windows.~WS
2015-07-31 22:38 - 2015-07-31 22:38 - 12167616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 10281624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 09279840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 09063704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 08957368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 08083992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 07648032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 07554656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 01483504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 01229840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00484176 _____ C:\WINDOWS\system32\amdmiracast.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00172432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00162096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00153104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00148400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00140016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00127440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00122128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00120080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00097584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00097584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00090640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2015-07-31 22:38 - 2015-07-31 22:38 - 00090640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2015-07-31 22:37 - 2015-08-01 12:44 - 01204784 _____ C:\WINDOWS\system32\amdocl_as64.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00688160 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00680992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2015-07-31 22:37 - 2015-08-01 12:44 - 00384544 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00350240 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00263200 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00252448 _____ C:\WINDOWS\system32\clinfo.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00177696 _____ C:\WINDOWS\system32\atieah64.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00161312 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2015-07-31 22:37 - 2015-08-01 12:44 - 00068640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2015-07-31 22:37 - 2015-07-31 22:37 - 47800352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 39729696 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 30766624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 27553312 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 25314336 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 22336032 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 21629472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2015-07-31 22:37 - 2015-07-31 22:37 - 15734304 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 14319648 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 01263648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00944160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00944160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00883232 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00459808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00208416 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00174112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00159264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00120352 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00119840 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00106528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00098336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00092704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00087072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00087072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00082464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00079904 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00073248 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00069664 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00066592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00060960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00047136 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00021536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2015-07-31 22:37 - 2015-07-31 22:37 - 00021536 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2015-07-31 22:36 - 2015-08-01 12:44 - 01079344 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2015-07-31 22:36 - 2015-08-01 12:44 - 01012784 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2015-07-31 22:36 - 2015-08-01 12:44 - 00816176 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2015-07-31 22:36 - 2015-07-31 22:36 - 00222240 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00207392 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00152096 _____ C:\WINDOWS\system32\amdhdl64.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00140832 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00076832 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00068128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2015-07-31 22:36 - 2015-07-31 22:36 - 00056864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 12334064 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 11905424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 11053040 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 10574976 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 04636608 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 03668768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 01155984 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 01151832 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00467688 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00378816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdmd32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00229648 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00199080 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00194352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00169352 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-07-30 22:46 - 2015-07-30 22:46 - 00040704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-07-30 22:45 - 2015-08-01 12:44 - 04371872 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 04368288 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 02508272 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 02035696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-07-30 22:45 - 2015-08-01 12:44 - 00969120 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00555424 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00554912 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00540064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxEM.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00443296 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00409504 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00408992 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeAppv2_0.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00393632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTray.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00328608 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCUIService.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00290208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00256928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxHK.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00204192 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-07-30 22:45 - 2015-08-01 12:44 - 00164256 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-07-30 22:45 - 2015-07-30 22:45 - 22914032 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 17846768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 08528880 _____ (Intel Corporation) C:\WINDOWS\system32\ig7icd64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 06512112 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig7icd32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 04024368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 03797960 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-07-30 22:45 - 2015-07-30 22:45 - 01994224 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01793008 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01766896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 01468976 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00865328 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00678896 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDH.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00659504 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00632816 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00616496 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00392688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00385520 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00374256 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00357936 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00329200 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00295408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00285168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDI.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00264176 _____ C:\WINDOWS\system32\igfxCPL.cpl
2015-07-30 22:45 - 2015-07-30 22:45 - 00261104 _____ (Intel Corporation) C:\WINDOWS\system32\igfxLHM.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00232944 _____ C:\WINDOWS\system32\igdde64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00228848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00223792 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00194544 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00193520 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00191984 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4252.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00191024 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00170992 _____ C:\WINDOWS\system32\igdail64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00163824 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00152560 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00141872 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00107568 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00102896 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00095216 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00078320 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00072688 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00069104 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00068080 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00039408 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00019440 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00018928 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2015-07-30 22:45 - 2015-07-30 22:45 - 00013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll
2015-07-28 22:29 - 2015-07-28 22:29 - 00065024 _____ C:\Users\wunibald\Desktop\Projektorganisation.vsd
2015-07-28 22:17 - 2015-07-28 22:17 - 00059392 _____ C:\Users\wunibald\Desktop\Zeichnung1.vsd
2015-07-22 19:55 - 2015-07-22 19:55 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\java

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-21 18:41 - 2014-02-06 23:37 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EA867E25-1991-4F38-9821-E0033C61BE2A}
2015-08-21 18:39 - 2015-07-01 09:22 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-21 18:38 - 2013-11-03 19:20 - 00000000 ___DO C:\Users\wunibald\SkyDrive
2015-08-21 18:38 - 2013-10-08 15:28 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-21 18:38 - 2013-10-08 15:28 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-21 18:37 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-21 18:36 - 2014-05-20 10:59 - 00000000 ____D C:\ProgramData\Comodo
2015-08-21 18:35 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-21 18:35 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-08-21 18:35 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-08-21 18:35 - 2013-02-21 12:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-21 18:19 - 2015-07-10 18:34 - 01563834 _____ C:\WINDOWS\system32\perfh007.dat
2015-08-21 18:19 - 2015-07-10 18:34 - 00420012 _____ C:\WINDOWS\system32\perfc007.dat
2015-08-21 18:17 - 2013-09-26 12:22 - 00000000 ____D C:\ProgramData\Oracle
2015-08-21 18:16 - 2015-04-28 18:13 - 00000000 ____D C:\Program Files (x86)\Java
2015-08-21 18:16 - 2013-09-26 12:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-08-21 18:16 - 2013-05-04 18:57 - 00000000 ____D C:\Program Files (x86)\Daedalic Entertainment
2015-08-21 18:16 - 2013-02-21 12:20 - 00000000 ____D C:\ProgramData\EPSON
2015-08-21 18:15 - 2015-04-28 18:22 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-08-21 18:14 - 2015-04-28 18:21 - 00000000 ____D C:\Program Files\Java
2015-08-21 18:12 - 2013-02-21 17:22 - 00000000 ____D C:\Program Files (x86)\LibreOffice 4.0
2015-08-21 18:09 - 2014-05-24 20:52 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\IPEVO
2015-08-21 18:08 - 2015-02-13 20:12 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-08-21 18:08 - 2014-05-24 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IPEVO
2015-08-21 18:02 - 2015-06-16 18:51 - 00001258 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA.job
2015-08-21 14:02 - 2015-06-16 18:51 - 00001206 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core.job
2015-08-20 17:03 - 2014-04-07 20:48 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\KeePass
2015-08-20 09:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-20 09:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-20 09:51 - 2015-02-13 13:40 - 00000000 ____D C:\AdwCleaner
2015-08-20 09:45 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-19 18:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-08-19 18:07 - 2015-02-18 22:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-08-19 18:06 - 2013-02-21 17:14 - 00000000 ___RD C:\Users\wunibald\Dropbox
2015-08-18 22:13 - 2014-01-23 00:05 - 630955586 _____ C:\WINDOWS\MEMORY.DMP
2015-08-18 17:05 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-18 12:45 - 2013-02-21 12:15 - 00000000 ____D C:\Users\wunibald\AppData\Local\Packages
2015-08-17 19:58 - 2013-05-22 15:21 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-17 18:57 - 2015-07-10 14:20 - 00401424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-17 18:54 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-17 18:54 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-17 18:53 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-17 18:46 - 2015-07-09 09:23 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-08-17 18:45 - 2015-07-09 09:23 - 00000000 ____D C:\Users\wunibald\AppData\Local\Battle.net
2015-08-17 14:21 - 2013-04-09 20:50 - 00000039 _____ C:\WINDOWS\vbaddin.ini
2015-08-17 14:21 - 2013-04-09 18:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-17 10:47 - 2013-02-21 17:11 - 00002026 _____ C:\Users\wunibald\Desktop\Spotify.lnk
2015-08-17 10:07 - 2014-07-23 13:05 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-17 10:06 - 2013-02-21 17:10 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Dropbox
2015-08-17 09:09 - 2014-02-26 12:41 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-17 09:09 - 2014-02-26 12:41 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-17 09:07 - 2013-08-12 14:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-17 09:06 - 2014-02-26 12:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-17 09:06 - 2013-02-24 20:02 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-15 12:22 - 2013-02-21 17:11 - 00000000 ____D C:\Users\wunibald\AppData\Local\Spotify
2015-08-15 12:22 - 2013-02-21 17:08 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Spotify
2015-08-15 12:11 - 2013-04-09 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-15 11:39 - 2015-07-01 09:22 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 12:10 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-11 12:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\registration
2015-08-03 15:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-03 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-03 15:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-01 18:36 - 2015-07-09 09:31 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-01 18:06 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-01 18:04 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-01 16:29 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-01 16:25 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-01 16:25 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default
2015-08-01 16:24 - 2015-07-10 14:20 - 00047524 _____ C:\WINDOWS\setupact.log
2015-08-01 16:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-01 16:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-01 16:24 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-01 16:24 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-01 16:24 - 2013-11-01 12:22 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-08-01 16:24 - 2013-11-01 12:22 - 00013338 _____ C:\WINDOWS\diagerr.xml
2015-08-01 16:21 - 2013-11-01 10:38 - 00013888 _____ C:\WINDOWS\comsetup.log
2015-08-01 16:20 - 2015-06-16 18:51 - 00004318 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA
2015-08-01 16:20 - 2015-06-16 18:51 - 00003938 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core
2015-08-01 16:20 - 2014-05-20 11:05 - 00003138 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2015-08-01 16:20 - 2014-05-04 20:00 - 00003304 _____ C:\WINDOWS\System32\Tasks\{942A19C8-02BF-43DB-9877-71A63CF0809F}
2015-08-01 16:20 - 2013-11-01 12:59 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-01 16:20 - 2013-10-08 15:28 - 00004226 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-01 16:20 - 2013-10-08 15:28 - 00003990 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-01 16:20 - 2013-04-10 18:49 - 00003306 _____ C:\WINDOWS\System32\Tasks\{E5347CD0-75EF-4F3A-B035-7A9B4DDAC90A}
2015-08-01 16:20 - 2013-03-05 02:09 - 00002886 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-08-01 16:20 - 2013-02-21 12:24 - 00003706 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1018402826-263647804-3193623928-1001
2015-08-01 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-01 16:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-01 16:14 - 2015-07-10 12:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-08-01 16:14 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-08-01 16:14 - 2015-07-10 12:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-08-01 16:10 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-01 15:55 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-08-01 15:55 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-01 15:55 - 2015-07-09 09:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-08-01 15:55 - 2015-07-09 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-08-01 15:55 - 2015-07-07 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-01 15:55 - 2015-07-07 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-01 15:55 - 2015-04-16 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-01 15:55 - 2015-03-23 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular
2015-08-01 15:55 - 2015-02-13 20:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-01 15:55 - 2015-02-13 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2015-08-01 15:55 - 2014-09-04 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Sims 4
2015-08-01 15:55 - 2014-02-06 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citavi 4
2015-08-01 15:55 - 2013-11-27 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-08-01 15:55 - 2013-11-04 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
2015-08-01 15:55 - 2013-10-08 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-01 15:55 - 2013-09-24 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-08-01 15:55 - 2013-09-07 22:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-01 15:55 - 2013-09-01 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™
2015-08-01 15:55 - 2013-09-01 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2015-08-01 15:55 - 2013-05-22 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-01 15:55 - 2013-05-21 14:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-08-01 15:55 - 2013-05-19 19:26 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2015-08-01 15:55 - 2013-05-07 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2015-08-01 15:55 - 2013-04-09 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-08-01 15:55 - 2013-04-09 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-08-01 15:55 - 2013-03-22 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2015-08-01 15:55 - 2013-03-22 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 10
2015-08-01 15:55 - 2013-02-26 21:40 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-01 15:55 - 2013-02-26 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-01 15:55 - 2013-02-21 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2015-08-01 15:55 - 2013-02-16 20:23 - 00000000 ____D C:\WINDOWS\de
2015-08-01 15:55 - 2013-02-16 20:20 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-08-01 15:55 - 2013-02-16 20:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2015-08-01 15:55 - 2013-02-16 20:11 - 00000000 ____D C:\Program Files\Dell Support Center
2015-08-01 15:55 - 2013-02-16 20:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-01 15:52 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-01 15:52 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-08-01 15:47 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-08-01 15:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\IME
2015-08-01 15:47 - 2013-09-24 14:21 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2015-08-01 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-08-01 15:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-08-01 15:47 - 2013-05-05 22:37 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2015-08-01 15:47 - 2013-03-22 18:03 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2015-08-01 15:47 - 2013-02-27 21:25 - 00000000 ____D C:\WINDOWS\SysWOW64\Hotspot Shield
2015-08-01 15:45 - 2015-07-10 18:46 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-01 15:45 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Resources
2015-08-01 15:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-08-01 15:44 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-08-01 15:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod
2015-08-01 15:44 - 2014-06-27 17:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMind
2015-08-01 15:44 - 2013-11-17 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Biet-O-Matic
2015-08-01 15:44 - 2013-11-06 22:07 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-08-01 15:44 - 2013-11-01 12:13 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-01 15:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-08-01 15:44 - 2013-06-23 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\more software
2015-08-01 15:44 - 2013-02-24 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deep Silver
2015-08-01 15:44 - 2013-02-21 12:15 - 00000000 ____D C:\ProgramData\PRICache
2015-08-01 15:44 - 2013-02-16 20:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
2015-08-01 15:44 - 2013-02-16 20:09 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2015-08-01 15:43 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-01 15:43 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-01 15:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-08-01 15:42 - 2013-07-29 14:36 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2015-08-01 15:41 - 2014-06-03 19:04 - 00000000 ____D C:\Users\Gast\AppData\Local\Packages
2015-08-01 14:56 - 2013-11-01 13:01 - 01663679 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-01 12:43 - 2015-06-24 22:59 - 13119736 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll
2015-08-01 12:43 - 2015-06-24 22:59 - 01164336 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2015-08-01 12:43 - 2015-06-24 22:57 - 03700360 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioMeters64.exe
2015-07-23 11:59 - 2014-02-06 13:11 - 00000000 ____D C:\Users\wunibald\Documents\Citavi 4
2015-07-22 20:27 - 2013-05-03 10:43 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-07-22 20:22 - 2013-08-28 15:57 - 00000000 ____D C:\Users\wunibald\AppData\Roaming\.minecraft

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-04-10 19:02 - 2013-04-10 19:02 - 0000074 _____ () C:\Users\wunibald\AppData\Roaming\gnuplot_history
2015-05-02 19:11 - 2015-05-02 19:11 - 0008982 _____ () C:\Users\wunibald\AppData\Local\recently-used.xbel
2015-08-01 15:36 - 2015-08-01 15:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-02-16 20:16 - 2013-02-16 20:16 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2013-02-16 20:12 - 2013-02-16 20:13 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2013-02-16 20:13 - 2013-02-16 20:14 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2013-02-16 20:11 - 2013-02-16 20:12 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2013-02-16 20:14 - 2013-02-16 20:16 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Public\VR-IBAN-Konverter.dat


Einige Dateien in TEMP:
====================
C:\Users\wunibald\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\wunibald\AppData\Local\Temp\npp.6.8.1.Installer.exe
C:\Users\wunibald\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-18 13:21

==================== Ende von Ergebnis ============================
         

Alt 21.08.2015, 19:04   #10
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



4) Addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-08-2015
durchgeführt von wunibald (2015-08-21 18:50:39)
Gestartet von C:\Users\wunibald\Desktop
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1018402826-263647804-3193623928-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1018402826-263647804-3193623928-503 - Limited - Disabled)
Gast (S-1-5-21-1018402826-263647804-3193623928-501 - Limited - Disabled) => C:\Users\Gast
wunibald (S-1-5-21-1018402826-263647804-3193623928-1001 - Administrator - Enabled) => C:\Users\wunibald

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 13.2.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe Connect 9 Add-in (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Adobe Connect 9 Add-in) (Version: 11,2,392,0 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{08D35D3C-C4F7-09FB-0F89-F680A1CCD3A3}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Ai Charger (HKLM-x32\...\{7FB64E72-9B0E-4460-A821-040C341E414A}) (Version: 1.03.00 - ASUSTeK Computer Inc.)
Audials (HKLM-x32\...\{0E9EBAF3-67F8-430A-9852-D02E5F20031A}) (Version: 10.2.30900.0 - Audials AG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Biet-O-Matic v2.14.12 (HKLM-x32\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\Steam App 262940) (Version:  - Revolution Software Ltd)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.2.0.11 - Swiss Academic Software)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version:  - Colossal Order)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.0.0.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.0.0.2 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D9ED3EFC-AB00-4CE0-ADED-80EE6B1158A7}) (Version: 2.2.2000.0 - Dell Products, LP)
Dell Support Center (HKLM\...\PC-Doctor for Windows) (Version: 3.2.6032.39 - PC-Doctor, Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.2 - Synaptics Incorporated)
Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.4.83.1010 - Electronic Arts Inc.)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - )
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dropbox (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Dropbox) (Version: 3.8.6 - Dropbox, Inc.)
DSC/AA Factory Installer (Version: 3.2.6032.39 - PC-Doctor, Inc.) Hidden
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 16.1.20150309 - Landesfinanzdirektion Thüringen)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.155 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{fad118b4-798f-4755-9e67-a622eec95b62}) (Version: 15.6.1 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
KeePass Password Safe 2.25 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.25 - Dominik Reichl)
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4737.1003 - Microsoft Corporation)
Microsoft OneNote 2013 (HKLM-x32\...\Office15.ONENOTER) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM-x32\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visio Compatibility Pack (HKLM-x32\...\{95150000-005B-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1509 - Microsoft Corporation)
Microsoft Visio Professional 2010 (HKLM-x32\...\Office14.VISIOR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 40.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 de)) (Version: 40.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2.5702 - Mozilla)
Mozilla Thunderbird 38.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.2.0 (x86 de)) (Version: 38.2.0 - Mozilla)
Mp3tag v2.54 (HKLM-x32\...\Mp3tag) (Version: v2.54 - Florian Heidenreich)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.1 - Notepad++ Team)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.2.2730 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.7 - )
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.012 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Samsung CLP-410 Series (HKLM-x32\...\Samsung CLP-410 Series) (Version: 1.01 (01.05.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.45.01(30.04.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00.04 - Samsung Electronics Co., Ltd.)
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{91150000-00A1-0000-0000-0000000FF1CE}_Office15.ONENOTER_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0057-0000-0000-0000000FF1CE}_Office14.VISIOR_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\Spotify) (Version: 1.0.8.59.gee82e7e6 - Spotify AB)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
The Settlers 7: Paths to a Kingdom - Gold Edition (HKLM-x32\...\Steam App 48210) (Version:  - Blue Byte)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 5.0.1 - VMware, Inc)
VMware Player (Version: 5.0.1 - VMware, Inc.) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
XMind 2013 (v3.4.1) (HKLM-x32\...\XMind_is1) (Version: 3.4.1.201401221918 - XMind Ltd.)
XnView 2.00 (HKLM-x32\...\XnView_is1) (Version: 2.00 - Gougelet Pierre-e)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{092dfa86-5807-5a94-bf3b-5a53ba9e5308}\InprocServer32 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll Keine Datei
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1B}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\wunibald\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1018402826-263647804-3193623928-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\wunibald\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

21-08-2015 18:02:35 Removed GeekBuddy.

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2015-02-13 20:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {012A5176-38C5-48BF-9A6B-14F140CCEFC4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-13] (Piriform Ltd)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {1211F63C-F449-4FAD-BF13-69C36D137452} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-22] (Microsoft Corporation)
Task: {188204CF-6142-418E-BC68-074101C41095} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {29423978-13AA-4E84-BE00-558D1EEB28E2} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {2B0F9DF6-F139-4270-B928-C37CD2CB76C2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {47184EB4-DE15-4BB1-9028-C1351A42C1D9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-15] (Adobe Systems Incorporated)
Task: {5B15B328-E84F-4E03-8E67-561864A8AD82} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {6BA91862-14A7-4640-AE77-5710A4E4610F} - System32\Tasks\{E5347CD0-75EF-4F3A-B035-7A9B4DDAC90A} => pcalua.exe -a C:\Users\wunibald\Downloads\setupfunktion.exe -d C:\Users\wunibald\Downloads
Task: {71FFE864-B452-4107-BB41-CB2C0E71DCA3} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {73344434-33B9-49A0-AD70-A3F9D2D166D1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {7F04FB47-9DE3-4807-A5BD-3BC62E6AC3B5} - System32\Tasks\{942A19C8-02BF-43DB-9877-71A63CF0809F} => pcalua.exe -a C:\Users\wunibald\Downloads\Ext2Fsd-0.51.exe -d C:\Users\wunibald\Downloads
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-01] (Microsoft Corporation)
Task: {94D1C92E-A48D-4F06-9A89-5A8E33BFDD01} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {96FE7265-9E71-42D6-B813-006A113BB1EF} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-06-09] (Microsoft Corporation)
Task: {976608D5-623D-4ABA-9AAF-7FED5AF564BF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {9DAA94BB-A65E-41FA-BF22-A160CBE81C0C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {A24EA4D0-2BBA-4E56-905C-036833321BEB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AAE980C0-1D31-4513-9489-EF1CBFFDF14C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-17] (Microsoft Corporation)
Task: {B41B994E-CAF6-4BE0-93E4-07EDAEFD1DDC} - \PCDEventLauncher -> Keine Datei <==== ACHTUNG
Task: {B7B90ED7-D7AE-4DD7-B08C-87FEB5C81B3B} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
Task: {C135F80C-62D6-4991-981A-5E80E30431A8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-22] (Microsoft Corporation)
Task: {C19403F8-6FF1-4D8B-90FD-F08A77BA9168} - \SystemToolsDailyTest -> Keine Datei <==== ACHTUNG
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C6178C98-E6D4-460C-B497-EE64099AECF4} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CD7B99AF-250A-42D6-84B4-E5620B8D6EF8} - \PCDoctorBackgroundMonitorTask -> Keine Datei <==== ACHTUNG
Task: {D14C4B61-7A55-4356-BBA6-22E52AC0168B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {D6E3EC5E-D4BE-4E0E-B123-7D23B4878A92} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-08] (Google Inc.)
Task: {E04858BC-6D42-4D22-B408-7A975CE18C00} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {E57F8B3A-375F-4EA4-AE87-545D52775149} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {EBB98FF0-A7BA-4F6C-990C-966B76D39880} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-08] (Google Inc.)
Task: {EF82BAF9-E145-4D80-AE6D-553E02F0E8C9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {F7CEA030-0CAA-44ED-AA10-242250708760} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => 0x000A0100290EA34630604643851DC4B004A344E74600D400000000003C000A00200000000014730F000000000513040020200401000000000000000000000000000000000000180043003A005C00570049004E0044004F00570053005C006500780070006C006F007200650072002E0065007800650000000C002F004E004F0055004100430043004800450043004B000000000018004500780070006C006F007200650072005300680065006C006C0055006E0065006C00650076006100740065006400000000000000080003130400000000000000
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001Core.job => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1018402826-263647804-3193623928-1001UA.job => C:\Users\wunibald\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-10 13:00 - 2015-07-10 13:00 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-08-01 16:23 - 2015-08-01 16:23 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2013-05-21 14:38 - 2012-02-09 12:42 - 00034304 _____ () C:\WINDOWS\System32\ssd4clm.dll
2015-08-19 18:15 - 2015-08-19 18:15 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2014-05-17 00:34 - 2015-02-13 20:18 - 00430344 _____ () C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-31 11:21 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-02-16 20:14 - 2012-04-25 04:43 - 00254512 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 18:16 - 2015-08-19 18:16 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-15 12:06 - 2015-08-15 12:06 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-21 10:18 - 2015-08-21 17:55 - 00852684 _____ () C:\Users\wunibald\Desktop\SecurityCheck.exe
2012-02-20 22:23 - 2012-02-20 22:23 - 00456704 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-02-20 22:23 - 2012-02-20 22:23 - 00051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2015-07-16 02:28 - 2015-08-01 12:43 - 05719752 _____ () C:\Program Files\Synaptics\SynTP\DellTouchpad.exe
2014-05-17 02:11 - 2014-05-17 02:11 - 00908584 _____ () C:\Program Files (x86)\Hotspot Shield\bin\af_proxy.dll
2012-11-01 03:34 - 2012-11-01 03:34 - 01260184 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2015-08-18 13:47 - 2015-08-18 13:47 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\7059fb1ab1c10eeec73c9c76bba579d5\PSIClient.ni.dll
2013-02-16 20:05 - 2012-06-25 20:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\WINDOWS\explorer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\amdocl_as64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\amdocl_ld64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentExtensions.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppXDeploymentServer.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AppxSysprep.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atiapfxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atieah64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atieclxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atiesrxx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ATIODCLI.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ATIODE.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioEndpointBuilder.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\clinfo.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\cloudAP.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\configmanager2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\coredpus.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CustomModeApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\CustomModeAppv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx10_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\D3DX9_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dfp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DfpCommon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack_win.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\diagtrack_wininternal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\difx64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DPTopologyApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DPTopologyAppv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\enterprisecsps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\facecredentialprovider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\FntCache.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GEARAspi64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\GfxUIEx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Gfxv2_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Gfxv4_0.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxcmjit64.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxCUIService.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxEM.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxext.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxHK.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\igfxTray.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\InputService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\InstallAgent.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelWiDiUMS64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\IntelWiDiVAD64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LicenseManagerShellext.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationFrameworkInternalPS.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationGeofences.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LocationPermissions.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO4064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioMeters64.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO3064.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MbaeParserTask.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mf.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\modernexecserver.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MRT.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssprxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\MusNotificationUx.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NetworkMobileSettings.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NetworkStatus.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationControllerPS.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ntoskrnl.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provengine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provhandlers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\provisioningcsp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\PsmServiceExtHost.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rdbui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RDXService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\schedsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SensorService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_Notifications.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_nt.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SharedStartModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SharedStartModelShim.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SkyDriveTelemetry.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\StoreAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\SubscriptionMgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\syncutil.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\sysmain.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tetheringservice.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tileobjserver.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\tquery.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\twinui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UserDataService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\VPNv2CSP.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wcmcsp.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wcmsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wifinetworkmanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\win32kbase.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\win32kfull.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WinBioDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Cortana.Desktop.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Shell.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\winmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wlidsvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wmpmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wpncore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wu.upgrade.ps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wuautoappupdate.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\wwansvc.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ActionCenter.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\amdocl_as32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\amdocl_ld32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atieah32.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\atmfd.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AudioEng.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\AudioSes.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Chakra.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\CoreUIComponents.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\CredProvDataModel.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3d9.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_42.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_43.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\directmanipulation.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dwmcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\DWrite.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\dxgi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\edgehtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\explorer.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerApp.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\fontdrvhost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\GamePanel.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\GEARAspi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ieframe.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\iertutil.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\InputService.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LicenseManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LockAppBroker.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LockAppHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\LogonController.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MbaeApi.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MbaeApiPublic.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MFMediaEngine.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfplat.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\MFPlay.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfsrcsnk.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mfsvr.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\msctfuimanager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mshtml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\mssrch.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\notepad.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\NotificationObjFactory.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ntdll.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\OpenAL32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\PlayToManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ReAgent.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\ReInfo.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\rpcrt4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SearchProtocolHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\shell32.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tetheringclient.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\TextInputFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\tquery.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\twinui.appcore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\twinui.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\UIAutomationCore.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\UserMgrProxy.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VEEventDispatcher.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\VoiceActivationManager.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\winmde.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wpnapps.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\wrap_oal.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\WWAHost.exe:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_7.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_1.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_4.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_2.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_3.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_5.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_6.dll:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\atikmpag.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\bthhfenum.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgkrnl.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgmms1.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\dxgmms2.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\hssdrv6.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mbam.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mbamchameleon.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mountmgr.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\msgpiowin32.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\mwac.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ntfs.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\rdyboost.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\stornvme.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\storport.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\tunnel.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\USBHUB3.SYS:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\WdiWiFi.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wof.sys:$CmdTcID
AlternateDataStreams: C:\WINDOWS\system32\Drivers\wpcfltr.sys:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\wunibald\Desktop\1vneerpp.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\1vneerpp.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\AdwCleaner_5.002.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\cispremium_installer.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\cispremium_installer.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\Defogger.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\Defogger.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\JRT(1).exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\JRT(1).exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-Basics.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-Basics.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-security-guide.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB-security-guide.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB_Security_Architecture_WP.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\MongoDB_Security_Architecture_WP.pdf:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\SecurityCheck.exe:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\SecurityCheck.exe:$CmdZnID
AlternateDataStreams: C:\Users\wunibald\Desktop\TheDefinitiveGuideToMongoDB.pdf:$CmdTcID
AlternateDataStreams: C:\Users\wunibald\Desktop\TheDefinitiveGuideToMongoDB.pdf:$CmdZnID

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1018402826-263647804-3193623928-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\wunibald\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\floar wooden.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "Ext2 Volume Manager"
HKLM\...\StartupApproved\Run32: => "tvncontrol"
HKLM\...\StartupApproved\Run32: => "PrivDogService"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\StartupFolder: => "Dropbox.lnk"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "AmazonMP3DownloaderHelper"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "SDP"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "FLV Player"
HKU\S-1-5-21-1018402826-263647804-3193623928-1001\...\StartupApproved\Run: => "Wunderlist"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{205D30E2-173F-4C56-8711-27F5556D440A}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{B8BA7336-9AAC-4A66-8172-061D92F44339}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{AB555750-15E0-426D-9135-59EE73DE1FE6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A4AEA136-1E72-4751-939C-ADB060C0BEF0}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{8BC1AD74-CC27-4897-ACD1-7EC0949464BB}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{EB4035AB-1160-4D5B-948F-AB743984B645}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{6359C65D-4CC7-4E4D-BD8F-9E9C071C7B61}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe
FirewallRules: [{3F0AE8C5-317F-4100-B098-F7623E1B0FC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{4BD97D4C-55DA-4C5A-852C-5683D4B1051F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{E13C0288-B508-4AC3-8459-0278B631F27D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1CEFD603-E141-44C0-93AD-CD73F20CC6A3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{72527005-A039-47EB-9EEE-4593BD8F3790}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{41392DAE-FEC1-4943-8904-D4C6345A1889}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{1A95054C-5CE4-4B2A-B319-56879BD4101C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{1AC5C4BE-69B2-400C-B276-33F097FA5022}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{439FDD92-0618-437B-AE3F-A86F09F815E4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3105BD15-DA5C-4147-ABF6-97E1DCB22BF6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B884C4B0-17D7-4846-98F5-D8ED9DAC7198}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{D94F7E59-4349-4650-9B13-EE11BA436D74}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{2DBB9413-E3C1-4CF2-AC69-E7B64F6DF4F9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{6CDF6CCC-C0A6-46BA-9140-6EBF08455498}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4DC100E1-5940-4AF3-977B-5197A7133948}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{C6255E83-8F51-4566-A4BB-0BE61E176311}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [UDP Query User{725CF103-46F0-471F-B10D-11713652ABB1}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [TCP Query User{A02EB36A-F6FC-4EE4-B7B0-33E4CA0A2646}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe
FirewallRules: [{A597D30D-F4B2-419F-94D7-D53918F6C65D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broken Sword 5\BS5.exe
FirewallRules: [{39BE8E81-F546-4985-B8EE-4DFBE86DB0E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Broken Sword 5\BS5.exe
FirewallRules: [UDP Query User{9E87A281-E0CF-454F-AE81-4B9A2BC9FF59}C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{BEA4796C-8A2A-45CC-A1E7-D0FE7A76DEBC}C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\wunibald\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{7B1FECD6-F55C-4E8A-AAB3-79E9F2812C95}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{922C40F1-D0EC-49CB-AB88-665B29452009}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{8B2C5228-4E45-4F80-BA92-587839683B93}C:\users\wunibald\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\wunibald\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E176A975-2C16-4565-B1F6-D869F6D14775}C:\users\wunibald\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\wunibald\appdata\roaming\spotify\spotify.exe
FirewallRules: [{40630B57-ECAD-475C-AE95-CB761929E0B7}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{32C5F2E6-E834-47A8-BB27-D593E8E556B5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{8A68171E-783A-4270-B729-0CCA7995906D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{9E270A3C-D943-489A-9BD2-F0D42AFFB5C9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{40CF49CE-C843-49C8-BD99-03D6254BC1CC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{AABD66AB-B839-4F71-AD90-14C6F16BFB70}] => (Allow) LPort=2869
FirewallRules: [{34BBB97E-92C5-4D0B-8AA9-1CC10D50C637}] => (Allow) LPort=1900
FirewallRules: [{0DDB0BA4-AD14-4CF0-B42B-358233910FE3}] => (Allow) C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{F83F4375-B857-4789-B9E2-AD108DC0FE94}] => (Allow) C:\Users\wunibald\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FD3F1618-B551-4F84-976E-98AE7D9B9EED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{827908D4-F234-483D-801D-3EE1600765B9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6CFB202D-69E8-45AD-8ACB-4FC9DB7D9A6F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E96C4B86-DA43-4CA6-AF0A-F88B36254CB2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B1CB5CE6-49ED-43F6-9E07-CD8AACC93633}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{E5394E09-927C-48E7-8DF0-C6D9E6549710}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{AFB00296-4A8A-4ED0-8995-1053EC9D3882}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6AADDD7A-A518-4524-A514-BC633BF48808}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2179BEDA-1732-413A-AE26-DA16DBB65D6F}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{5ACEB1EF-BD4C-4B6A-845F-18CF718B6833}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{BB503B34-A616-48CB-8697-6F665D7B6A03}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{448B7BDF-5837-4983-945B-2BB3979C27CD}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{858EA72B-B5BA-4C49-B6ED-CC5989126D05}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{8DB09FA9-2DFE-46E3-A91B-E0209A183C88}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{EFECA1CE-EC0A-417F-8707-A7506190C7DB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{1827F6C7-E4FF-4613-8FA8-8B3DA47231A7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{710D1448-8659-4E39-980C-ADE23B7A8710}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{8874CF80-56EE-4375-8EE7-4C775B368A69}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{4D433ED8-33B0-42E1-9BDE-C8695EB3FE58}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8B7BB47A-37CC-4291-BCE6-B2BAFCFFB307}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BF45B3AD-3D82-4700-B185-7F4361E2AE9E}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{5E444E0E-F7CC-4657-9B03-EAE247D934AF}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{9B348B07-F73F-44CC-AD7C-17285C52ED53}] => (Allow) C:\Program Files (x86)\Audials\Audials 10\Audials.exe
FirewallRules: [{C8160CE8-38C7-432A-BA6D-90F0D9A9B0B3}] => (Allow) LPort=12972
FirewallRules: [{7864C4ED-5988-42F3-A7D6-6884108862CE}] => (Allow) LPort=14714
FirewallRules: [{E33F477A-5935-461C-B270-61450F25A524}] => (Allow) LPort=31931
FirewallRules: [{AF868C55-BEC0-40A5-9289-46C7405F5B76}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{3C78BA07-9793-4278-A599-35ACA988218A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [TCP Query User{0831FAD0-AF0A-48DF-92F4-0DAF5ECF6896}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{F88F15B9-89A5-4C1B-9BC6-F80E2189C551}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{178F5163-9492-4D1C-BF13-07F6DA01E84D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{3FEA5683-EFDA-408B-906A-CF3BAF96E81A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{2E6DDD22-F410-4FCD-8F2A-D8A3759B990C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{8FF2CF76-A3B0-4FD4-980D-2EC3688EB0E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{F8696CE0-C278-4E00-AAB8-7D72BFD152E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: HID-Compliant Mouse
Description: HID-Compliant Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Wacom Technology
Service: mouhid
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/21/2015 06:42:55 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4584) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (08/21/2015 06:42:55 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4584) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (08/21/2015 06:42:44 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4584) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (08/21/2015 06:42:44 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4584) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (08/21/2015 06:42:34 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4584) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (08/21/2015 06:42:34 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4584) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (08/21/2015 06:42:24 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4584) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (08/21/2015 06:42:24 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4584) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.

Error: (08/21/2015 06:42:13 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4584) Es konnte keine neue Protokolldatei erstellt werden, weil die Datenbank nicht auf das Protokolllaufwerk schreiben kann. Das Laufwerk ist möglicherweise schreibgeschützt, falsch konfiguriert, beschädigt oder hat zu wenig freien Speicherplatz. Fehler -1032.

Error: (08/21/2015 06:42:13 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4584) Der Versuch, die Datei "C:\WINDOWS\system32\edbtmp.log" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.


Systemfehler:
=============
Error: (08/21/2015 06:41:37 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:36 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:35 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:34 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:32 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:30 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:29 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (08/21/2015 06:41:28 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


Microsoft Office:
=========================
Error: (08/21/2015 06:42:55 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost4584-1032

Error: (08/21/2015 06:42:55 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost4584C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert

Error: (08/21/2015 06:42:44 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost4584-1032

Error: (08/21/2015 06:42:44 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost4584C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert

Error: (08/21/2015 06:42:34 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost4584-1032

Error: (08/21/2015 06:42:34 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost4584C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert

Error: (08/21/2015 06:42:24 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost4584-1032

Error: (08/21/2015 06:42:24 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost4584C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert

Error: (08/21/2015 06:42:13 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost4584-1032

Error: (08/21/2015 06:42:13 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost4584C:\WINDOWS\system32\edbtmp.log-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert


CodeIntegrity:
===================================
  Date: 2015-08-21 18:50:05.639
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-21 18:50:05.488
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-21 18:50:05.352
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-21 18:50:05.039
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-08-21 18:22:22.307
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Config.Msi\6e46b91.rbf because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-08-21 18:02:30.786
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-21 17:52:47.958
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-21 10:17:07.187
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-20 17:03:15.836
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-20 16:44:31.936
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Processor: Intel(R) Core(TM) i7-3517U CPU @ 1.90GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 8061.27 MB
Verfügbarer physikalischer RAM: 6245.04 MB
Summe virtueller Speicher: 9341.27 MB
Verfügbarer virtueller Speicher: 7567.35 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:915.87 GB) (Free:748.74 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 7AD83C4F)

Partition: GPT.

==================== Ende von Ergebnis ============================
         

Alt 22.08.2015, 11:38   #11
schrauber
/// the machine
/// TB-Ausbilder
 

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
C:\Users\wunibald\Downloads\hotspotshield-setup.exe

C:\Users\wunibald\Downloads\hotspotshield-setup_540.exe

C:\Users\wunibald\Downloads\HSS-2.78-install-a-393-conduit.exe

C:\Users\wunibald\Downloads\HSS-2.87-install.exe

C:\Users\wunibald\Downloads\HSS-3.09-install-e-308-conduit.exe

C:\Users\wunibald\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe

C:\Windows.old\Users\wunibald\AppData\Local\Temp\DMR\dmr_72.exe
Emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.





Cleanup:
(Die Reihenfolge ist hier entscheidend)

Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken.

Falls Combofix verwendet wurde:
Combofix deinstallieren .
  • Wichtig: Bitte Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren.
  • Drücke bitte die + R Taste und schreibe Combofix /Uninstall in das Ausführen-Fenster.
  • Klicke auf OK.
    Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert.
  • Nun die eben deaktivierten Programme wieder aktivieren.

Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.

Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen.

Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:

Browser
Java
Flash-Player
PDF-Reader

Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.

Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank.
Meine Empfehlung:

Emsisoft

Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen.

Optional:
NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.
Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.


Lade Software von einem sauberen Portal wie .
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwarecleaner .


Abschließend noch ein paar grundsätzliche Bemerkungen:
Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.08.2015, 12:22   #12
wunibald
 
Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



Moin schrauber,

sorry, hat ein wenig gedauert. Frst ist mit "Entfernen" zunächst nicht durgelaufen und ist immer eingefroren. Ich habe dann händisch meinen Downloadordner geleert und die Windows Datenträgerbereinigung mal durchlaufen lassen. Anschließen ist Frst durchgelaufen. Der Log ist jetzt (natürlich) entsprechend mager. Ich hänge ihn dir trotzdem an.

Den Rest mache ich jetzt gleich im Anschluss.

Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:21-08-2015
durchgeführt von Kerstin (2015-08-24 12:10:47) Run:3
Gestartet von C:\Users\wunibald\Desktop
Geladene Profile: wunibald (Verfügbare Profile: wunibald & Gast)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
C:\Users\wunibald\Downloads\hotspotshield-setup.exe

C:\Users\wunibald\Downloads\hotspotshield-setup_540.exe

C:\Users\wunibald\Downloads\HSS-2.78-install-a-393-conduit.exe

C:\Users\wunibald\Downloads\HSS-2.87-install.exe

C:\Users\wunibald\Downloads\HSS-3.09-install-e-308-conduit.exe

C:\Users\wunibald\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe

C:\Windows.old\Users\wunibald\AppData\Local\Temp\DMR\dmr_72.exe
Emptytemp:
         
*****************

"C:\Users\wunibald\Downloads\hotspotshield-setup.exe" => Datei/Ordner nicht gefunden.
"C:\Users\wunibald\Downloads\hotspotshield-setup_540.exe" => Datei/Ordner nicht gefunden.
"C:\Users\wunibald\Downloads\HSS-2.78-install-a-393-conduit.exe" => Datei/Ordner nicht gefunden.
"C:\Users\wunibald\Downloads\HSS-2.87-install.exe" => Datei/Ordner nicht gefunden.
"C:\Users\wunibald\Downloads\HSS-3.09-install-e-308-conduit.exe" => Datei/Ordner nicht gefunden.
"C:\Users\wunibald\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe" => Datei/Ordner nicht gefunden.
"C:\Windows.old\Users\wunibald\AppData\Local\Temp\DMR\dmr_72.exe" => Datei/Ordner nicht gefunden.
EmptyTemp: => 34.6 MB temporäre Dateien entfernt.


Das System musste neu gestartet werden.. 

==== Ende von Fixlog 12:13:25 ====
         

Alt 25.08.2015, 06:37   #13
schrauber
/// the machine
/// TB-Ausbilder
 

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Standard

Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch



ok
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch
administrator, computer, defender, explorer, hotspot, installation, onedrive, prozesse, pup.optional.crossrider.a, pup.optional.gatesnapper.a, pup.optional.pricepeep.a, pup.optional.tnt.a, registry, security, software, svchost.exe, win 10, win32/downloadadmin.h, win32/downloadsponsor.c, win32/somoto.i, win32/toolbar.conduit



Ähnliche Themen: Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch


  1. chrome öffnet unerwünschte tabs
    Log-Analyse und Auswertung - 24.09.2015 (14)
  2. Chrome öffnet automatisch tabs
    Log-Analyse und Auswertung - 19.09.2015 (10)
  3. chrome öffnet unerwünschte tabs
    Log-Analyse und Auswertung - 23.08.2015 (9)
  4. Chrome öffnet automatisch Tabs
    Log-Analyse und Auswertung - 26.03.2015 (10)
  5. neues Fenster und Werbung öffnet sich in Chrome ungefragt
    Plagegeister aller Art und deren Bekämpfung - 04.03.2015 (41)
  6. Chrome öffnet automatisch leere Tabs
    Plagegeister aller Art und deren Bekämpfung - 02.03.2015 (66)
  7. Chrome öffnet Tabs mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 11.01.2015 (11)
  8. Win7: Chrome läuft nicht mehr - Avira meldet Fehler: TR/Patched.Ren.Gen
    Log-Analyse und Auswertung - 19.11.2014 (29)
  9. Windows 7: Chrome Tabs mit Werbeseiten beim Starten und pc läuft langsamer
    Log-Analyse und Auswertung - 30.10.2014 (8)
  10. Windows 7 - Internetausfall, obwohl Verbindung besteht; Chrome öffnet ungefragt Fenster
    Plagegeister aller Art und deren Bekämpfung - 26.09.2014 (9)
  11. Chrome öffnet Tabs mit Werbung!
    Plagegeister aller Art und deren Bekämpfung - 04.09.2014 (16)
  12. Google Chrome öffnet ungefragt Seiten/Werbung
    Plagegeister aller Art und deren Bekämpfung - 04.08.2014 (11)
  13. Windows 8: Chrome öffnet ständig ungefragt Fenster und Tabs
    Log-Analyse und Auswertung - 21.05.2014 (6)
  14. Google Chrome läuft nicht mehr +Fehlermeldungen IE+WE
    Log-Analyse und Auswertung - 10.07.2010 (33)
  15. AntiVir und Ad-Aware läuft nicht mehr durch
    Log-Analyse und Auswertung - 02.07.2009 (2)
  16. gmer läuft nicht mehr durch - rootkit eingefangen?
    Log-Analyse und Auswertung - 06.05.2009 (1)
  17. Nach Virenscan läuft PC nicht mehr
    Alles rund um Windows - 04.01.2007 (1)

Zum Thema Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch - Moin, ich habe hier nen Rechner stehen, der wohl auf jeden Fall mit Malware/Adware befallen ist. Im Google Chrome öffnen sich ungefragt komische Werbungstabs beispielsweise. Dazu kommt, dass der Virenscan - Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch...
Archiv
Du betrachtest: Win 10: Chrome öffnet ungefragt Tabs; Virenscan läuft nicht mehr durch auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.