| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Chrome Erweiterung nicht löschbarWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
23.09.2015, 20:22
| #1 |
 |  Chrome Erweiterung nicht löschbar Hallo, seit ein paar Tagen lässt sich die Erweiterung "word highlight" nicht löschen, weil es "Durch Unternehmensrichtlinie installiert" ist. Ich habe es zwar schon geschafft, es zu löschen, aber es taucht immer wieder auf. Ich hoffe, Ihr könnt mir helfen. FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015 durchgeführt von Marvin (Administrator) auf MARVIN-PC (23-09-2015 21:08:05) Gestartet von C:\Users\Marvin\Downloads\Programs Geladene Profile: Marvin & (Verfügbare Profile: Marvin) Platform: Windows 8.1 Pro (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Windows\System32\vmms.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Flux Software LLC) C:\Users\Marvin\AppData\Local\FluxSoftware\Flux\flux.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe () C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Google Inc.) C:\Program Files (x86)\Google\Update\Install\{5DCFCFDE-A9C2-4E82-B7A0-E5014148CB06}\47.0.2516.0_chrome64_installer.exe (Google Inc.) C:\Windows\Temp\CR_16644.tmp\setup.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-09-19] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [933888 2013-12-17] (AVM Berlin) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-11] (Razer Inc.) HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [f.lux] => C:\Users\Marvin\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152 2015-08-28] (Tonec Inc.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-06-23] (Sandboxie Holdings, LLC) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3638256 2015-09-20] (Electronic Arts) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe [10566352 2015-09-02] () HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\MountPoints2: {4a1341e0-5a50-11e5-8251-0030678c4569} - "G:\pushinst.exe" HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\MountPoints2: {bf0b5d6c-5a39-11e5-824f-806e6f6e6963} - "E:\Autorun.exe" HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [f.lux] => C:\Users\Marvin\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152 2015-08-28] (Tonec Inc.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-06-23] (Sandboxie Holdings, LLC) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3638256 2015-09-20] (Electronic Arts) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe [10566352 2015-09-02] () HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {4a1341e0-5a50-11e5-8251-0030678c4569} - "G:\pushinst.exe" HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {bf0b5d6c-5a39-11e5-824f-806e6f6e6963} - "E:\Autorun.exe" HKU\S-1-5-18\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () Startup: C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-09-20] ShortcutTarget: MEGAsync.lnk -> C:\Users\Marvin\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited) Startup: C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OMSI Addon Manager.lnk [2015-09-15] ShortcutTarget: OMSI Addon Manager.lnk -> C:\Program Files (x86)\OMSI Addon Manager\OMSI Addon Manager.exe (Jan Kiesewalter) GroupPolicy: Beschränkung - Chrome <======= ACHTUNG CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1 Tcpip\..\Interfaces\{41EB8567-6A5D-4D0D-B932-9F874D329573}: [DhcpNameServer] 192.168.2.1 192.168.2.1 Tcpip\..\Interfaces\{8A7B889B-C767-401D-8DF7-EBFE976520BC}: [DhcpNameServer] 10.77.0.254 Internet Explorer: ================== HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://msn.com/ HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://msn.com/ BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-08-28] (Internet Download Manager, Tonec Inc.) BHO: adTech Class -> {934B156A-3D17-3981-B78A-5C138F423AD6} -> C:\Users\Marvin\AppData\Roaming\nets\Nets_64.dll [2015-08-21] () BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-08-28] (Internet Download Manager, Tonec Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-13] (Oracle Corporation) BHO-x32: adTech Class -> {934B156A-3D17-3981-B78A-5C138F423AD6} -> C:\Users\Marvin\AppData\Roaming\nets\Nets_32.dll [2015-08-21] () BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-13] (Oracle Corporation) FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-13] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-13] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-23] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-23] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Marvin\AppData\Roaming\IDM\idmmzcc5 FF Extension: IDM CC - C:\Users\Marvin\AppData\Roaming\IDM\idmmzcc5 [2015-09-21] FF HKU\S-1-5-21-2840623005-2840827860-1408477528-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Marvin\AppData\Roaming\IDM\idmmzcc5 Chrome: ======= CHR dev: Chrome dev build erkannt! <======= ACHTUNG CHR HomePage: Default -> hxxps://www.google.de/ CHR StartupUrls: Default -> "hxxp://meine-startseite.computerbild.de/eiswasser/Marvin" CHR Profile: C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-23] CHR Extension: (YouTube) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-23] CHR Extension: (Google-Suche) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-23] CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-23] CHR Extension: (IDM Integration Module) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2015-09-23] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-23] CHR Extension: (word highlight) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooabkmkhabkahcjbgpiajffckeibpdoa [2015-09-23] CHR Extension: (Outlook.com) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2015-09-23] CHR Extension: (Google Mail) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-23] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-08-28] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 Browser7Maintenance; C:\Program Files (x86)\Browser 7 Maintenance Service\maintenanceservice.exe [148792 2015-08-10] (Deutsche Telekom AG) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-20] (Electronic Arts) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2015-09-21] () R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] () R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [175752 2015-06-23] (Sandboxie Holdings, LLC) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH) S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [800208 2015-08-27] (Tunngle.net GmbH) R2 vmms; C:\Windows\system32\vmms.exe [13784064 2015-04-01] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 DRHARD64; C:\WINDOWS\system32\drivers\DRHARD64.sys [21984 2011-11-03] (Licensed for Gebhard Software) R2 DRHARD64; C:\WINDOWS\SysWOW64\drivers\DRHARD64.sys [21984 2011-11-03] (Licensed for Gebhard Software) R2 DRHMSR64; C:\WINDOWS\system32\drivers\DRHMSR64.sys [13760 2013-07-21] () R2 DRHMSR64; C:\WINDOWS\SysWOW64\drivers\DRHMSR64.sys [13760 2013-07-21] () S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R3 fwlanusb6; C:\Windows\system32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH) R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [68952 2015-05-12] (Microsoft Corporation) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-19] (REALiX(tm)) S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [19456 2015-09-19] (Microsoft Corporation) R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [109272 2015-06-18] (Malwarebytes Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-23] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) S3 NdisImPlatformMp; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [126464 2014-11-21] (Microsoft Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22016 2015-09-19] (Microsoft Corporation) S3 ptun0901; C:\Windows\system32\DRIVERS\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project) S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [27136 2015-09-19] (Microsoft Corporation) R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.) R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.) R3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [40640 2015-07-29] (Windows (R) Win 7 DDK provider) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [190088 2015-06-23] (Sandboxie Holdings, LLC) R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net) R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation) R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation) S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [18944 2015-09-19] (Microsoft Corporation) R3 VMSMP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S3 VMSP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S3 VMSVSF; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S3 VMSVSP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 DRHARD; \??\C:\WINDOWS\system32\DRIVERS\DRHARD.SYS [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-23 21:11 - 2015-09-23 21:11 - 00079064 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\pjptindw.sys 2015-09-23 20:49 - 2015-09-23 20:49 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-09-23 20:49 - 2015-09-23 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-09-23 20:48 - 2015-09-23 20:53 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-23 20:48 - 2015-09-23 20:53 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-23 20:48 - 2015-09-23 20:48 - 00003890 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-23 20:48 - 2015-09-23 20:48 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-23 20:35 - 2015-09-23 20:35 - 00000000 ____D C:\Users\Marvin\Desktop\revouninstaller-portable 2015-09-23 20:27 - 2015-09-23 20:27 - 00002124 _____ C:\Users\Public\Desktop\BF2 jetzt online spielen!.lnk 2015-09-23 20:27 - 2015-09-23 20:27 - 00002102 _____ C:\Users\Public\Desktop\Battlefield 2.lnk 2015-09-23 20:25 - 2015-09-23 20:25 - 00000000 ____D C:\Users\Marvin\Documents\Battlefield 2 2015-09-23 19:48 - 2015-09-23 21:11 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\nets 2015-09-23 19:48 - 2015-09-23 19:48 - 00003244 _____ C:\WINDOWS\System32\Tasks\Hubsy 2015-09-23 15:53 - 2015-09-23 19:48 - 00000900 __RSH C:\ProgramData\ntuser.pol 2015-09-23 15:53 - 2015-09-23 15:53 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2015-09-22 20:36 - 2015-09-22 20:36 - 19085312 _____ C:\WINDOWS\system32\vmg546C.tmp 2015-09-22 15:12 - 2015-09-23 19:48 - 00003808 _____ C:\WINDOWS\System32\Tasks\bEG 2015-09-21 23:56 - 2015-09-21 23:57 - 00020992 ___SH C:\Users\Marvin\Desktop\Thumbs.db 2015-09-21 20:30 - 2015-09-21 20:30 - 00002168 _____ C:\Users\Marvin\Desktop\DesertCombat.lnk 2015-09-21 20:30 - 2015-09-21 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesertCombat 2015-09-21 20:30 - 2015-09-21 20:15 - 00729088 _____ (Indigo Rose Corporation) C:\WINDOWS\iun6002.exe 2015-09-21 20:27 - 2015-09-21 20:27 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC_Final_Client 2015-09-21 20:27 - 2015-09-21 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DC_Final_Client 2015-09-21 18:30 - 2015-09-22 16:52 - 00000000 ____D C:\AdwCleaner 2015-09-21 18:10 - 2015-09-23 21:08 - 00000000 ____D C:\FRST 2015-09-21 17:30 - 2015-09-21 17:30 - 00000000 ____D C:\Users\Marvin\Documents\benko 2015-09-21 17:26 - 2015-09-21 17:26 - 00000000 ____D C:\Users\Marvin\AppData\Local\GameSpy 2015-09-21 17:23 - 2015-09-21 17:23 - 00000094 _____ C:\Users\Marvin\AppData\Local\fusioncache.dat 2015-09-21 15:26 - 2015-09-21 15:26 - 00001987 _____ C:\Users\Public\Desktop\GameSpy Comrade.lnk 2015-09-21 15:26 - 2015-09-21 15:26 - 00000000 ____D C:\Users\Marvin\Documents\My Games 2015-09-21 15:26 - 2015-09-21 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy 2015-09-21 15:25 - 2015-09-21 15:25 - 00000000 ____D C:\Program Files (x86)\GameSpy 2015-09-21 15:23 - 2015-09-21 15:23 - 01805156 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2015-09-21 15:23 - 2015-09-21 15:23 - 00000000 __RHD C:\Users\Marvin\AppData\Roaming\SecuROM 2015-09-21 15:22 - 2015-09-21 15:22 - 00000000 ____D C:\WINDOWS\SysWOW64\URTTEMP 2015-09-21 15:19 - 2015-09-21 15:19 - 00669184 _____ C:\WINDOWS\SysWOW64\pbsvc.exe 2015-09-21 15:17 - 2015-09-21 15:17 - 00001322 _____ C:\Users\Public\Desktop\Crysis.lnk 2015-09-21 15:16 - 2015-09-21 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts 2015-09-21 14:57 - 2015-09-21 14:57 - 00000000 ____D C:\Program Files (x86)\Electronic Arts 2015-09-21 14:30 - 2015-09-23 19:47 - 00000000 ____D C:\ProgramData\Jason 2015-09-21 14:30 - 2015-09-21 14:30 - 00000000 ____D C:\Users\Marvin\AppData\Local\cu 2015-09-21 11:44 - 2015-06-11 09:36 - 00072154 _____ C:\WINDOWS\procexp.chm 2015-09-21 11:44 - 2015-05-11 13:56 - 02508432 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\procexp.exe 2015-09-21 11:44 - 2015-01-26 09:19 - 00002009 _____ C:\WINDOWS\Eula.txt 2015-09-21 11:43 - 2015-09-21 11:47 - 00002064 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk 2015-09-21 11:43 - 2015-09-21 11:47 - 00002034 _____ C:\Users\Marvin\Desktop\FileHippo App Manager.lnk 2015-09-21 11:43 - 2015-09-21 11:47 - 00000000 ____D C:\Program Files (x86)\FileHippo.com 2015-09-21 11:41 - 2015-09-21 18:10 - 00000000 ____D C:\Program Files (x86)\SecurityXploded 2015-09-21 11:39 - 2015-09-23 19:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\AppUpd 2015-09-21 11:39 - 2015-09-21 11:39 - 00003306 _____ C:\WINDOWS\System32\Tasks\App Update 2015-09-21 11:39 - 2015-09-21 11:39 - 00001133 _____ C:\Users\Public\Desktop\herdProtect.lnk 2015-09-21 11:39 - 2015-09-21 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect 2015-09-21 11:39 - 2015-09-21 11:39 - 00000000 ____D C:\Program Files\Reason 2015-09-21 11:20 - 2015-09-21 11:20 - 00001028 _____ C:\Users\Public\Desktop\TweakMe!.lnk 2015-09-21 11:20 - 2015-09-21 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakMe! 2015-09-21 11:20 - 2015-09-21 11:20 - 00000000 ____D C:\Program Files (x86)\TweakMe! 2015-09-20 20:58 - 2015-09-20 20:58 - 00280904 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr 2015-09-20 20:58 - 2015-09-20 20:58 - 00000000 ____D C:\Users\Marvin\AppData\Local\PunkBuster 2015-09-20 20:23 - 2014-11-07 14:03 - 22538240 _____ (THC) C:\Users\Marvin\Desktop\ZloBF3Launcher.exe 2015-09-20 19:42 - 2015-09-20 19:52 - 00000000 ____D C:\Users\Marvin\Desktop\BF2 MODS 2015-09-20 17:25 - 2015-09-20 17:41 - 00000000 ____D C:\Users\Marvin\Documents\Battlefield 3 2015-09-20 17:25 - 2015-09-20 17:25 - 00000000 ____D C:\ProgramData\EA Core 2015-09-20 17:24 - 2015-09-20 17:24 - 00002967 _____ C:\Users\Marvin\Desktop\Venice Unleashed.lnk 2015-09-20 17:24 - 2015-09-20 17:24 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Venice Unleashed 2015-09-20 17:20 - 2015-09-20 17:20 - 00001190 _____ C:\Users\Public\Desktop\Battlefield 3.lnk 2015-09-20 17:20 - 2015-09-20 17:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3 2015-09-20 16:32 - 2015-09-21 15:19 - 00103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe 2015-09-20 16:32 - 2015-09-21 15:19 - 00066872 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe 2015-09-20 16:32 - 2015-09-20 17:20 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0 2015-09-20 15:23 - 2015-09-20 15:24 - 00000000 ____D C:\Program Files (x86)\Origin Games 2015-09-20 15:19 - 2015-09-20 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Origin 2015-09-20 15:19 - 2015-09-20 15:23 - 00000000 ____D C:\Users\Marvin\AppData\Local\Origin 2015-09-20 15:17 - 2015-09-21 10:02 - 00000000 ____D C:\ProgramData\Origin 2015-09-20 15:17 - 2015-09-20 17:25 - 00000000 ____D C:\ProgramData\Electronic Arts 2015-09-20 15:17 - 2015-09-20 15:19 - 00000000 ____D C:\Program Files (x86)\Origin 2015-09-20 15:17 - 2015-09-20 15:17 - 00000995 _____ C:\Users\Public\Desktop\Origin.lnk 2015-09-20 15:17 - 2015-09-20 15:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-09-20 14:48 - 2015-09-20 14:48 - 00000424 _____ C:\Users\Marvin\Desktop\Dieser PC - Verknüpfung.lnk 2015-09-20 14:10 - 2015-09-20 14:11 - 00000660 _____ C:\WINDOWS\eReg.dat 2015-09-20 14:10 - 2015-09-20 14:10 - 00002136 _____ C:\Users\Public\Desktop\Battlefield 1942 Secret Weapons of WWII.lnk 2015-09-20 14:08 - 2015-09-20 14:08 - 00002136 _____ C:\Users\Public\Desktop\Battlefield 1942 The Road To Rome.lnk 2015-09-20 14:05 - 2015-09-20 14:05 - 00002110 _____ C:\Users\Public\Desktop\Battlefield 1942.lnk 2015-09-20 14:03 - 1998-06-17 17:07 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mfc42loc.dll 2015-09-20 14:00 - 2015-09-23 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES 2015-09-20 13:58 - 2015-09-23 20:19 - 00000000 ____D C:\Program Files (x86)\EA GAMES 2015-09-20 13:38 - 2015-09-20 13:38 - 00000000 ___RD C:\Users\Marvin\Documents\MEGAsync 2015-09-20 12:48 - 2015-09-20 12:48 - 00000220 _____ C:\Users\Marvin\Desktop\Garry's Mod.url 2015-09-20 10:51 - 2015-09-20 10:51 - 00000000 ____D C:\Users\Marvin\AppData\Local\Logitech 2015-09-19 22:32 - 2013-04-23 00:33 - 370087936 _____ C:\Users\Marvin\Desktop\Windows NT Workstation 5.0 Evaluation.iso 2015-09-19 22:18 - 2015-09-21 08:38 - 00000000 ____D C:\Program Files\Common Files\McAfee 2015-09-19 22:18 - 2015-09-19 22:22 - 00000000 ____D C:\ProgramData\McAfee 2015-09-19 22:03 - 2015-09-19 22:03 - 00000000 ___RD C:\Sandbox 2015-09-19 22:00 - 2015-09-21 11:37 - 00001610 _____ C:\WINDOWS\Sandboxie.ini 2015-09-19 22:00 - 2015-09-19 22:00 - 00000926 _____ C:\Users\Marvin\Desktop\Sandboxed Web Browser.lnk 2015-09-19 22:00 - 2015-09-19 22:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie 2015-09-19 22:00 - 2015-09-19 22:00 - 00000000 ____D C:\Program Files\Sandboxie 2015-09-19 21:59 - 2015-09-19 21:59 - 04514008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2015-09-19 21:59 - 2015-09-19 21:59 - 02702552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2015-09-19 21:59 - 2015-09-19 21:59 - 01310936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2015-09-19 21:59 - 2015-09-19 21:59 - 00184688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2015-09-19 21:58 - 2015-09-19 21:59 - 35222128 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2015-09-19 21:58 - 2015-09-19 21:58 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll 2015-09-19 21:58 - 2015-09-19 21:58 - 01749208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2015-09-19 21:54 - 2015-09-21 18:15 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\IObit 2015-09-19 21:54 - 2015-09-21 18:15 - 00000000 ____D C:\ProgramData\IObit 2015-09-19 21:54 - 2015-09-19 21:54 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS 2015-09-19 21:53 - 2015-09-21 18:14 - 00000000 ____D C:\Program Files (x86)\IObit 2015-09-19 21:25 - 2015-06-27 01:27 - 00129472 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpnk.sys 2015-09-19 21:24 - 2015-06-12 17:51 - 00037184 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpmgrk.sys 2015-09-19 21:21 - 2015-09-19 21:21 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.60.0 2015-09-19 21:16 - 2015-09-19 21:25 - 00000000 ____D C:\Program Files (x86)\Razer 2015-09-19 21:16 - 2015-09-19 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2015-09-19 21:14 - 2015-09-19 21:26 - 00000000 ____D C:\ProgramData\Razer 2015-09-19 21:14 - 2015-09-19 21:14 - 00000000 ____D C:\Users\Marvin\AppData\Local\Razer 2015-09-19 19:28 - 2015-09-19 19:28 - 06051033 _____ C:\Users\Marvin\Desktop\huzuni-new.zip 2015-09-19 18:32 - 2015-09-19 19:47 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\.minecraft 2015-09-19 18:32 - 2015-09-19 18:32 - 00000000 ____D C:\Users\Marvin\Downloads\runtime 2015-09-19 18:32 - 2015-09-19 18:32 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\java 2015-09-19 18:31 - 2015-09-19 18:32 - 00000000 ____D C:\Users\Marvin\Downloads\game 2015-09-19 18:15 - 2015-09-19 18:15 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\TeamViewer 2015-09-19 17:43 - 2015-09-19 19:49 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Tunngle 2015-09-19 17:43 - 2015-09-19 17:45 - 00000000 ____D C:\ProgramData\Tunngle 2015-09-19 17:43 - 2015-09-19 17:45 - 00000000 ____D C:\Program Files (x86)\Tunngle 2015-09-19 17:43 - 2015-09-19 17:43 - 00001007 _____ C:\Users\Public\Desktop\Tunngle.lnk 2015-09-19 17:43 - 2015-09-19 17:43 - 00000000 ____D C:\Users\Public\Documents\Tunngle 2015-09-19 17:43 - 2015-09-19 17:43 - 00000000 ____D C:\Users\Marvin\Documents\Tunngle 2015-09-19 17:43 - 2015-09-19 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2015-09-19 16:48 - 2015-09-19 16:48 - 00000000 ____D C:\Users\Marvin\Documents\My Cheat Tables 2015-09-19 16:47 - 2015-09-19 16:47 - 00001101 _____ C:\Users\Marvin\Desktop\Cheat Engine.lnk 2015-09-19 16:47 - 2015-09-19 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4 2015-09-19 16:47 - 2015-09-19 16:47 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.4 2015-09-19 16:02 - 2015-09-19 16:50 - 00000000 ____D C:\Users\Marvin\Documents\Euro Truck Simulator 2 2015-09-19 15:18 - 2015-04-01 05:30 - 13784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmms.exe 2015-09-19 15:18 - 2015-03-09 02:25 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmickvpexchange.dll 2015-09-19 15:18 - 2015-03-09 02:24 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicguestinterface.dll 2015-09-19 15:18 - 2015-03-09 02:23 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicshutdown.dll 2015-09-19 15:18 - 2015-03-09 02:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimesync.dll 2015-09-19 15:18 - 2015-03-09 02:22 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicheartbeat.dll 2015-09-19 15:18 - 2015-03-09 02:21 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicvss.dll 2015-09-19 15:18 - 2015-03-09 02:20 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicrdv.dll 2015-09-19 14:17 - 2015-09-23 19:39 - 27590656 _____ C:\WINDOWS\system32\vmguest.iso 2015-09-19 13:58 - 2015-09-19 14:01 - 00000000 ____D C:\Program Files\Hyper-V 2015-09-19 13:58 - 2015-09-19 14:00 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hyper-V Management Tools 2015-09-19 13:58 - 2015-09-19 14:00 - 00000000 ____D C:\WINDOWS\vmguest 2015-09-19 13:58 - 2015-09-19 13:58 - 00000000 ____D C:\WINDOWS\system32\BestPractices 2015-09-19 13:58 - 2015-09-19 13:58 - 00000000 ____D C:\Users\Public\Documents\Hyper-V 2015-09-19 00:57 - 2015-09-19 00:57 - 00000613 _____ C:\Users\Public\Desktop\Aerosoft Launcher.lnk 2015-09-19 00:57 - 2015-09-19 00:57 - 00000000 ____D C:\Aerosoft 2015-09-19 00:49 - 2015-09-19 00:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aerosoft 2015-09-18 21:59 - 2015-09-18 21:59 - 00001304 _____ C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk 2015-09-18 21:59 - 2015-09-18 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation 2015-09-18 21:59 - 2015-09-18 21:59 - 00000000 ____D C:\Program Files (x86)\Western Digital Corporation 2015-09-18 21:58 - 2015-09-20 15:19 - 00000000 ____D C:\ProgramData\Package Cache 2015-09-18 21:58 - 2015-09-18 21:58 - 00001421 _____ C:\Users\Public\Desktop\SeaTools for Windows.lnk 2015-09-18 21:57 - 2015-09-18 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate 2015-09-18 21:57 - 2015-09-18 21:57 - 00000000 ____D C:\Program Files (x86)\Seagate 2015-09-18 21:51 - 2015-09-18 21:51 - 00000996 _____ C:\Users\Marvin\Desktop\Dr. Hardware 2014.lnk 2015-09-18 21:51 - 2015-09-18 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dr. Hardware 2014 2015-09-18 21:51 - 2015-09-18 21:51 - 00000000 ____D C:\Program Files (x86)\Dr. Hardware 2014 2015-09-18 21:51 - 2013-07-21 18:41 - 00013760 _____ C:\WINDOWS\SysWOW64\Drivers\DRHMSR64.sys 2015-09-18 21:51 - 2013-07-21 18:41 - 00013760 _____ C:\WINDOWS\system32\Drivers\DRHMSR64.sys 2015-09-18 21:51 - 2011-11-03 19:05 - 00021984 _____ (Licensed for Gebhard Software) C:\WINDOWS\SysWOW64\Drivers\DRHARD64.sys 2015-09-18 21:51 - 2011-11-03 19:05 - 00021984 _____ (Licensed for Gebhard Software) C:\WINDOWS\system32\Drivers\DRHARD64.sys 2015-09-18 21:45 - 2015-09-21 11:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\Abelssoft 2015-09-18 21:45 - 2015-09-19 11:48 - 00000000 ____D C:\Users\Marvin\AppData\Local\Abelssoft 2015-09-18 21:45 - 2015-09-18 21:45 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Abelssoft 2015-09-18 21:45 - 2015-09-18 21:45 - 00000000 ____D C:\ProgramData\XDMessagingv4 2015-09-18 15:30 - 2015-09-18 15:30 - 00000000 ____D C:\m-r-software 2015-09-17 22:48 - 2015-09-22 18:33 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager 2015-09-17 22:48 - 2015-09-21 22:42 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\IDM 2015-09-17 22:48 - 2015-09-17 22:48 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2015-09-17 22:48 - 2015-09-17 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2015-09-17 21:33 - 2015-09-17 21:33 - 00000000 ____D C:\Users\Marvin\.android 2015-09-17 21:24 - 2015-09-17 21:56 - 00000000 ____D C:\Users\Marvin\AppData\Local\Genymobile 2015-09-17 21:23 - 2015-09-17 21:32 - 00000000 ____D C:\Users\Marvin\.VirtualBox 2015-09-17 21:22 - 2015-09-17 21:22 - 00001092 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk 2015-09-17 21:22 - 2015-09-17 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2015-09-17 21:22 - 2015-09-08 11:48 - 00964392 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2015-09-17 21:22 - 2015-09-08 11:47 - 00138904 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2015-09-17 21:19 - 2015-09-17 21:19 - 00000000 ____D C:\Program Files\Oracle 2015-09-17 21:14 - 2015-09-17 21:14 - 00000997 _____ C:\Users\Public\Desktop\Genymotion.lnk 2015-09-17 21:14 - 2015-09-17 21:14 - 00000992 _____ C:\Users\Public\Desktop\Genymotion Shell.lnk 2015-09-17 21:14 - 2015-09-17 21:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genymotion 2015-09-17 21:12 - 2015-09-17 21:12 - 00000000 ____D C:\Program Files\Genymobile 2015-09-17 20:47 - 2015-09-17 20:47 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Andy_45_Online 2015-09-17 20:47 - 2015-09-17 20:47 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Andy 2015-09-17 20:40 - 2015-09-17 20:40 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\NVIDIA 2015-09-17 20:34 - 2015-09-17 20:44 - 00000000 ____D C:\SocketeQ 2015-09-16 20:18 - 2015-09-21 23:54 - 00000078 _____ C:\Users\Marvin\Desktop\maptools.ini 2015-09-16 20:14 - 2014-04-18 01:17 - 00692736 _____ (Thiago Sobral) C:\Users\Marvin\Desktop\maptools.exe 2015-09-16 18:50 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-09-16 18:50 - 2015-08-10 20:15 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2015-09-16 18:50 - 2015-08-10 20:15 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2015-09-16 18:50 - 2015-08-10 20:06 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2015-09-16 18:50 - 2015-08-10 19:49 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2015-09-16 18:50 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-09-16 18:50 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2015-09-16 18:50 - 2015-08-07 23:41 - 07460168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-09-16 18:50 - 2015-08-07 23:40 - 01736520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 01134752 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 00686960 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2015-09-16 18:50 - 2015-08-07 16:13 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2015-09-16 18:50 - 2015-08-06 21:16 - 01424712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2015-09-16 18:50 - 2015-08-06 21:16 - 01392968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2015-09-16 18:50 - 2015-08-06 21:16 - 01381704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2015-09-16 18:50 - 2015-08-06 21:16 - 01265992 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2015-09-16 18:50 - 2015-08-06 21:15 - 01658544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-09-16 18:50 - 2015-08-06 21:15 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-09-16 18:50 - 2015-08-06 21:15 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-09-16 18:50 - 2015-08-06 21:15 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-09-16 18:50 - 2015-08-06 18:47 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2015-09-16 18:50 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2015-09-16 18:50 - 2015-07-16 20:58 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll 2015-09-16 18:50 - 2015-05-12 02:24 - 00068952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2015-09-16 18:50 - 2015-05-12 02:24 - 00019800 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2015-09-16 18:49 - 2015-08-06 19:05 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2015-09-16 18:49 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2015-09-16 17:48 - 2015-09-21 17:56 - 00001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-09-16 17:48 - 2015-09-21 17:56 - 00001047 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-09-16 17:48 - 2015-09-21 17:56 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-09-16 16:03 - 2015-09-23 19:36 - 00009395 _____ C:\WINDOWS\setupact.log 2015-09-16 16:03 - 2015-09-16 16:03 - 00000000 _____ C:\WINDOWS\setuperr.log 2015-09-15 19:24 - 2015-09-15 19:24 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux 2015-09-15 19:24 - 2015-09-15 19:24 - 00000000 ____D C:\Users\Marvin\AppData\Local\FluxSoftware 2015-09-15 18:27 - 2015-09-15 18:27 - 00001143 _____ C:\Users\Public\Desktop\OMSI Addon Manager.lnk 2015-09-15 18:27 - 2015-09-15 18:27 - 00000000 ____D C:\Users\Marvin\AppData\Local\OMSI AM 2015-09-15 18:27 - 2015-09-15 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OMSI Addon Manager 2015-09-15 18:27 - 2015-09-15 18:27 - 00000000 ____D C:\Program Files (x86)\OMSI Addon Manager 2015-09-15 18:14 - 2015-09-15 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2015-09-15 18:14 - 2015-09-15 18:14 - 00000000 ____D C:\Program Files\Logitech 2015-09-15 18:14 - 2015-09-15 18:14 - 00000000 ____D C:\Program Files\Common Files\Logitech 2015-09-15 18:02 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll 2015-09-15 18:02 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll 2015-09-15 18:02 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll 2015-09-15 18:02 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll 2015-09-15 18:02 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll 2015-09-15 18:02 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll 2015-09-15 18:02 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll 2015-09-15 18:02 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll 2015-09-15 18:02 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll 2015-09-15 18:02 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll 2015-09-15 18:02 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll 2015-09-15 18:02 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll 2015-09-15 18:02 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll 2015-09-15 18:02 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll 2015-09-15 18:02 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll 2015-09-15 18:02 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll 2015-09-15 18:02 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll 2015-09-15 18:02 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll 2015-09-15 18:02 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll 2015-09-15 18:02 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll 2015-09-15 18:02 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll 2015-09-15 18:02 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll 2015-09-15 18:01 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll 2015-09-15 18:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll 2015-09-15 18:01 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll 2015-09-15 18:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll 2015-09-15 18:01 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll 2015-09-15 18:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll 2015-09-15 18:01 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll 2015-09-15 18:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll 2015-09-15 18:01 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll 2015-09-15 18:01 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll 2015-09-15 18:01 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll 2015-09-15 18:01 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll 2015-09-15 18:01 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll 2015-09-15 18:01 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll 2015-09-15 18:01 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll 2015-09-15 18:01 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll 2015-09-15 18:01 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll 2015-09-15 18:01 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll 2015-09-15 18:01 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll 2015-09-15 18:01 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll 2015-09-15 18:01 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll 2015-09-15 18:01 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll 2015-09-15 18:01 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll 2015-09-15 18:01 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll 2015-09-15 18:01 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll 2015-09-15 18:01 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll 2015-09-15 18:01 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll 2015-09-15 18:01 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll 2015-09-15 18:01 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll 2015-09-15 18:01 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll 2015-09-15 18:01 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll 2015-09-15 18:01 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll 2015-09-15 18:01 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll 2015-09-15 18:01 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll 2015-09-15 18:01 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll 2015-09-15 18:01 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll 2015-09-15 18:01 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll 2015-09-15 18:01 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll 2015-09-15 18:01 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll 2015-09-15 18:01 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll 2015-09-15 18:01 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll 2015-09-15 18:01 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll 2015-09-15 18:01 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll 2015-09-15 18:01 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll 2015-09-15 18:01 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll 2015-09-15 18:01 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll 2015-09-15 18:01 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll 2015-09-15 18:01 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll 2015-09-15 18:00 - 2015-09-23 20:26 - 00145825 _____ C:\WINDOWS\DirectX.log 2015-09-15 18:00 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll 2015-09-15 18:00 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll 2015-09-15 18:00 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll 2015-09-15 18:00 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll 2015-09-15 17:28 - 2015-09-20 12:48 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2015-09-15 17:13 - 2015-09-15 17:13 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\ESET 2015-09-15 17:13 - 2015-09-15 17:13 - 00000000 ____D C:\Users\Marvin\AppData\Local\ESET 2015-09-15 15:18 - 2015-09-15 15:18 - 00003118 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003092 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003090 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003062 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003060 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus- und Tastatur-Center 2015-09-15 15:16 - 2015-09-15 15:17 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center 2015-09-15 00:27 - 2015-09-15 00:27 - 00000000 ____D C:\Program Files\Common Files\AV 2015-09-15 00:23 - 2015-09-23 20:57 - 00000000 ____D C:\Users\Marvin\Downloads\Video 2015-09-15 00:23 - 2015-09-23 20:56 - 00000000 ____D C:\Users\Marvin\Downloads\Compressed 2015-09-15 00:23 - 2015-09-22 20:21 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\DMCache 2015-09-15 00:23 - 2015-09-21 19:20 - 00001025 _____ C:\Users\Marvin\Desktop\Internet Download Manager.lnk 2015-09-15 00:23 - 2015-09-15 00:23 - 00000000 ____D C:\ProgramData\IDM 2015-09-15 00:10 - 2015-09-15 21:51 - 00000000 ____D C:\ProgramData\CheckPoint 2015-09-14 23:35 - 2015-09-23 20:03 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\vlc 2015-09-14 23:18 - 2015-09-14 23:18 - 00001086 _____ C:\Users\Public\Desktop\VLC media player.lnk 2015-09-14 23:18 - 2015-09-14 23:18 - 00000238 _____ C:\Users\Marvin\.swfinfo 2015-09-14 23:18 - 2015-09-14 23:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-09-14 23:17 - 2015-09-14 23:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2015-09-14 22:29 - 2015-09-14 22:29 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Mozilla 2015-09-14 22:28 - 2015-09-14 22:35 - 00000000 ____D C:\Users\Marvin\AppData\Local\Deutsche Telekom AG 2015-09-14 22:28 - 2015-09-14 22:29 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Deutsche Telekom AG 2015-09-14 22:27 - 2015-09-14 22:27 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser 7 der Telekom.lnk 2015-09-14 22:27 - 2015-09-14 22:27 - 00001340 _____ C:\Users\Public\Desktop\Browser 7 der Telekom.lnk 2015-09-14 22:27 - 2015-09-14 22:27 - 00000000 ____D C:\ProgramData\Telekom-Browser 7 2015-09-14 22:27 - 2015-09-14 22:27 - 00000000 ____D C:\Program Files (x86)\Deutsche Telekom AG 2015-09-14 22:27 - 2015-09-14 22:27 - 00000000 ____D C:\Program Files (x86)\Browser 7 Maintenance Service 2015-09-14 22:17 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-09-14 22:17 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-09-14 22:10 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-09-14 22:10 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-09-14 21:59 - 2015-09-14 21:59 - 00000000 ____D C:\Users\Marvin\AppData\Local\Steam 2015-09-14 21:59 - 2015-09-14 21:59 - 00000000 ____D C:\Users\Marvin\AppData\Local\CEF 2015-09-14 21:56 - 2015-09-14 21:56 - 00000000 ____D C:\ProgramData\OMSI AM 2015-09-14 21:40 - 2015-09-15 03:18 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-09-14 21:40 - 2015-09-15 03:18 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files\MSBuild 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-09-14 20:32 - 2015-09-14 20:32 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-09-14 20:02 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-09-14 20:02 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-09-14 19:42 - 2015-09-15 15:47 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\ProgramData\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-09-14 19:21 - 2015-09-14 19:22 - 00004923 _____ C:\WINDOWS\avmacc.log 2015-09-14 19:21 - 2015-09-14 19:22 - 00003573 _____ C:\WINDOWS\avmsetup.log 2015-09-14 19:21 - 2015-09-14 19:22 - 00002749 _____ C:\WINDOWS\avmadd32.log 2015-09-14 19:21 - 2015-09-14 19:21 - 00000000 ____D C:\Program Files (x86)\AVM_update 2015-09-14 17:33 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll 2015-09-14 17:33 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll 2015-09-14 17:20 - 2015-09-14 17:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-09-14 17:17 - 2015-09-14 17:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-09-14 17:17 - 2015-09-14 17:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-09-14 17:14 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2015-09-14 17:14 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2015-09-14 17:14 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll 2015-09-14 17:14 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll 2015-09-14 17:12 - 2015-09-14 17:12 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2015-09-14 17:03 - 2015-09-23 20:17 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-09-14 17:03 - 2015-09-14 17:03 - 00001118 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-09-14 17:03 - 2015-09-14 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-09-14 17:03 - 2015-09-14 17:03 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-09-14 17:03 - 2015-09-14 17:03 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-09-14 17:03 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-09-14 17:03 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-09-14 17:03 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-09-14 17:03 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2015-09-14 17:03 - 2014-11-17 22:17 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2015-09-14 17:03 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll 2015-09-14 17:03 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2015-09-14 17:03 - 2014-11-14 08:46 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll 2015-09-14 17:02 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2015-09-14 17:02 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2015-09-14 17:02 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2015-09-14 17:02 - 2014-11-08 03:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2015-09-14 17:01 - 2014-11-15 21:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2015-09-14 17:01 - 2014-11-15 08:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2015-09-14 17:01 - 2014-11-14 08:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-09-14 17:01 - 2014-11-14 07:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-09-14 17:01 - 2014-11-10 20:06 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2015-09-14 17:01 - 2014-11-10 20:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2015-09-14 17:01 - 2014-11-10 04:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2015-09-14 17:01 - 2014-11-10 03:20 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll Teil 2: Code:
ATTFilter 2015-09-14 17:01 - 2014-11-10 03:08 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-09-14 17:01 - 2014-11-10 02:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-09-14 17:01 - 2014-11-08 06:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-09-14 17:01 - 2014-11-08 05:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-09-14 17:01 - 2014-11-08 05:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-09-14 17:01 - 2014-11-08 05:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-09-14 17:01 - 2014-11-08 05:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-09-14 17:01 - 2014-11-08 05:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-09-14 17:01 - 2014-11-08 05:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-09-14 17:01 - 2014-11-08 05:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-09-14 17:01 - 2014-11-08 05:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-09-14 17:01 - 2014-11-08 04:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-09-14 17:01 - 2014-11-08 04:38 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-14 17:01 - 2014-11-08 04:17 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-09-14 17:01 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-09-14 17:01 - 2014-11-08 03:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-09-14 17:01 - 2014-11-07 05:58 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-14 17:01 - 2014-11-07 05:20 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-09-14 17:01 - 2014-11-05 04:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-09-14 17:01 - 2014-11-05 04:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-09-14 17:01 - 2014-11-05 04:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-09-14 17:01 - 2014-11-05 03:44 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-09-14 17:01 - 2014-11-05 03:43 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-09-14 17:01 - 2014-11-05 03:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-09-14 17:01 - 2014-11-05 03:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-09-14 17:01 - 2014-11-05 03:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-09-14 17:01 - 2014-11-05 03:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-09-14 17:01 - 2014-11-05 03:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-09-14 17:01 - 2014-11-05 03:20 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-09-14 17:01 - 2014-11-05 03:18 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-09-14 17:01 - 2014-11-05 03:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-09-14 17:01 - 2014-11-05 03:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-09-14 17:01 - 2014-11-04 21:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-09-14 17:01 - 2014-11-04 21:25 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-09-14 17:01 - 2014-11-04 21:25 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-09-14 17:01 - 2014-11-04 08:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-09-14 17:01 - 2014-11-04 08:54 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-09-14 17:01 - 2014-11-04 08:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-09-14 17:01 - 2014-11-04 08:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-09-14 17:01 - 2014-11-04 08:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-09-14 17:01 - 2014-11-04 07:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-09-14 17:01 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-09-14 17:01 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-09-14 17:01 - 2014-10-29 05:05 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-09-14 17:01 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-09-14 17:01 - 2014-10-29 03:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-09-14 17:01 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-09-14 17:01 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-09-14 17:01 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-09-14 17:01 - 2014-10-29 03:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-09-14 17:01 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-09-14 17:01 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-09-14 17:01 - 2014-10-21 03:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-09-14 17:01 - 2014-10-21 03:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-09-14 17:01 - 2014-10-21 02:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-09-14 17:01 - 2014-10-21 02:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-09-14 17:01 - 2014-10-21 02:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-09-14 17:01 - 2014-10-21 02:30 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-09-14 17:01 - 2014-10-21 02:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-09-14 17:01 - 2014-10-17 06:56 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-09-14 17:01 - 2014-10-17 05:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-09-14 16:19 - 2015-03-09 04:02 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-09-14 16:17 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-09-14 16:17 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-09-14 16:17 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-09-14 16:17 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-09-14 16:17 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-09-14 16:17 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-09-14 16:16 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-09-14 16:16 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-09-14 16:16 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-09-14 16:16 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-09-14 16:16 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-09-14 16:16 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-14 16:16 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-09-14 16:16 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-14 16:16 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-14 16:16 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-09-14 16:16 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-09-14 16:16 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-09-14 16:16 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2015-09-14 16:16 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-09-14 16:16 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2015-09-14 16:16 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-09-14 16:16 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-09-14 16:16 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-09-14 16:16 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-09-14 16:16 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2015-09-14 16:16 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2015-09-14 16:16 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-09-14 16:16 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-09-14 16:16 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-09-14 16:16 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-09-14 16:16 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-09-14 16:15 - 2015-08-05 16:14 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2015-09-14 16:15 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-09-14 16:15 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-09-14 16:15 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-09-14 16:15 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-09-14 16:15 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-09-14 16:15 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-09-14 16:15 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-09-14 16:15 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-09-14 16:15 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-09-14 16:15 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-09-14 16:15 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-09-14 16:15 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-09-14 16:15 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-09-14 16:15 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-09-14 16:15 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-14 16:15 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-09-14 16:15 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-09-14 16:15 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-09-14 16:15 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-09-14 16:15 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-09-14 16:15 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-09-14 16:15 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-09-14 16:15 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-09-14 16:15 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-09-14 16:15 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-09-14 16:15 - 2015-03-17 19:26 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-09-14 16:15 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-09-14 16:15 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-09-14 16:15 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-09-14 16:15 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-09-14 16:15 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-09-14 16:15 - 2015-01-30 05:01 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-09-14 16:15 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-09-14 16:15 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-09-14 16:15 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-09-14 16:15 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-09-14 16:14 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-09-14 16:14 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-09-14 16:14 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-09-14 16:14 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-09-14 16:14 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-09-14 16:14 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-09-14 16:14 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-09-14 16:14 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-09-14 16:14 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-09-14 16:14 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-09-14 16:14 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-09-14 16:14 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2015-09-14 16:14 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-09-14 16:14 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-09-14 16:14 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-09-14 16:14 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-09-14 16:14 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-09-14 16:14 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-09-14 16:14 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-09-14 16:14 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2015-09-14 16:14 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-14 16:14 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-09-14 16:14 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-09-14 16:14 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-09-14 16:14 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-09-14 16:14 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-14 16:14 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-09-14 16:14 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-09-14 16:14 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-09-14 16:14 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-09-14 16:14 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-09-14 16:14 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-09-14 16:14 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-09-14 16:14 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-09-14 16:14 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-09-14 16:14 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-09-14 16:14 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-09-14 16:14 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-09-14 16:13 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-14 16:13 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-14 16:13 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-14 16:13 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-14 16:13 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-14 16:13 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-14 16:13 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-14 16:13 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-14 16:13 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-09-14 16:13 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-14 16:13 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-09-14 16:13 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-14 16:13 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-09-14 16:13 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-09-14 16:13 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-09-14 16:13 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-09-14 16:13 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-14 16:13 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-14 16:13 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-09-14 16:13 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-14 16:13 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-09-14 16:13 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-09-14 16:13 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-09-14 16:13 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-09-14 16:13 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-14 16:13 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-09-14 16:13 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-14 16:13 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-09-14 16:13 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-09-14 16:13 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-09-14 16:13 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-09-14 16:13 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-09-14 16:13 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-09-14 16:13 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-09-14 16:13 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-09-14 16:13 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-09-14 16:13 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-09-14 16:13 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-09-14 16:13 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-09-14 16:13 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-09-14 16:13 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-09-14 16:13 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-09-14 16:13 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-09-14 16:13 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-09-14 16:13 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-09-14 16:13 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-09-14 16:13 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-09-14 16:13 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-09-14 16:13 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-09-14 16:13 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-09-14 16:13 - 2015-01-12 04:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-09-14 16:13 - 2015-01-12 03:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-09-14 16:12 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2015-09-14 16:12 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2015-09-14 16:12 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2015-09-14 16:12 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2015-09-14 16:12 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-09-14 16:12 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-09-14 16:12 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-09-14 16:12 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-09-14 16:12 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-09-14 16:12 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-09-14 16:09 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-09-14 16:09 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-09-14 16:09 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-09-14 16:09 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-09-14 16:09 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-09-14 16:09 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-09-14 16:09 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-14 16:09 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-14 16:09 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-14 16:09 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-14 16:09 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-14 16:09 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-14 16:09 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-14 16:09 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-14 16:09 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-14 16:09 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-09-14 16:09 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-09-14 16:09 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-09-14 16:09 - 2015-07-03 23:51 - 01380056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-09-14 16:09 - 2015-07-03 16:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-09-14 16:09 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-09-14 16:09 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-09-14 16:09 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-09-14 16:09 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-14 16:09 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-14 16:09 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-09-14 16:09 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-09-14 16:09 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-09-14 16:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-09-14 16:09 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-09-14 16:09 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-09-14 16:09 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-09-14 16:08 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-09-14 16:08 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-14 16:08 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-14 16:08 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-14 16:08 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-14 16:08 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-09-14 16:08 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-09-14 16:08 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-09-14 16:08 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-09-14 16:08 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-09-14 16:08 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-09-14 16:08 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-09-14 16:08 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-09-14 16:08 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-09-14 16:08 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-09-14 16:08 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-09-14 15:59 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2015-09-14 15:59 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2015-09-14 15:59 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2015-09-14 15:59 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2015-09-14 15:59 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-09-14 15:59 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-09-14 15:59 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-09-14 15:59 - 2015-03-09 04:02 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys
2015-09-14 15:59 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-09-14 15:58 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-09-14 15:58 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-09-14 15:58 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-14 15:58 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-09-14 15:58 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2015-09-14 15:58 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-09-14 15:58 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-09-14 15:58 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-09-14 15:58 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-09-14 15:58 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2015-09-14 15:58 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-09-14 15:58 - 2015-07-13 21:10 - 00411455 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-09-14 15:58 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-09-14 15:58 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-09-14 15:58 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-09-14 15:58 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-09-14 15:58 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-09-14 15:58 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-09-14 15:58 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-09-14 15:58 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-09-14 15:58 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-09-14 15:58 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-09-14 15:58 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-09-14 15:58 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-09-14 15:58 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-09-14 15:58 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-09-14 15:58 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2015-09-14 15:58 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-09-14 15:58 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-09-14 15:58 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-09-14 15:58 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-09-14 15:58 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-09-14 15:58 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-09-14 15:58 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-09-14 15:58 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-14 15:58 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-09-14 15:58 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2015-09-14 15:58 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2015-09-14 15:58 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-09-14 15:58 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-09-14 15:58 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-09-14 15:58 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-09-14 15:58 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-09-14 15:58 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-09-14 15:58 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2015-09-14 15:58 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-09-14 15:58 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-09-14 15:58 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-09-14 15:58 - 2015-03-13 06:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-09-14 15:58 - 2015-03-13 06:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-09-14 15:58 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-09-14 15:58 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-09-14 15:58 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-09-14 15:58 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-09-14 15:58 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-09-14 15:58 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-09-14 15:58 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-09-14 15:58 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-09-14 15:58 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-09-14 15:58 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-09-14 15:58 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-09-14 15:57 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-09-14 15:57 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-09-14 15:57 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2015-09-14 15:57 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-09-14 15:57 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
|
|
23.09.2015, 20:26
| #2 |
| | Chrome Erweiterung nicht löschbar FRST Teil 3:
__________________Code:
ATTFilter 2015-09-14 15:57 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-09-14 15:57 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-09-14 15:57 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-09-14 15:57 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-09-14 15:57 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-09-14 15:56 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-09-14 15:56 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-09-14 15:56 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-09-14 15:56 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-09-14 15:56 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-09-14 15:56 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-09-14 15:56 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-09-14 15:56 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-09-14 15:56 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-09-14 15:56 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-09-14 15:56 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-09-14 15:54 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-09-14 15:50 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-14 15:42 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-09-14 15:42 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-09-14 15:28 - 2015-09-19 13:37 - 00001106 _____ C:\Users\Marvin\Desktop\MEGAsync.lnk
2015-09-14 15:28 - 2015-09-14 16:03 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-14 15:28 - 2015-09-14 15:28 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2015-09-14 15:28 - 2015-09-14 15:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\Mega Limited
2015-09-14 15:27 - 2015-09-19 13:37 - 00000000 ____D C:\Users\Marvin\AppData\Local\MEGAsync
2015-09-14 15:20 - 2015-09-23 19:37 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-14 15:20 - 2015-09-14 15:20 - 00000979 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-14 15:20 - 2015-09-14 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-14 15:19 - 2015-09-14 15:19 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-09-14 15:18 - 2015-09-14 15:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-09-14 15:18 - 2015-09-14 15:18 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-09-14 15:13 - 2015-09-14 15:13 - 00001454 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-14 15:13 - 2015-09-14 15:13 - 00000020 ___SH C:\Users\Marvin\ntuser.ini
2015-09-14 15:10 - 2015-09-14 15:16 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-09-14 15:10 - 2015-09-14 15:10 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-09-14 15:07 - 2015-08-11 04:47 - 02757072 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-09-14 15:07 - 2015-08-11 04:47 - 02414096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-09-14 15:06 - 2015-07-09 20:48 - 00131712 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2015-09-14 15:06 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-09-14 15:06 - 2015-07-09 19:59 - 00112624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2015-09-14 15:06 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-09-14 15:06 - 2015-06-27 05:08 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-09-14 15:06 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-09-14 15:06 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-09-14 15:06 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-09-14 15:03 - 2015-09-14 15:03 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-09-14 14:55 - 2015-09-14 14:55 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-09-14 14:53 - 2015-09-14 14:53 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-09-14 14:52 - 2015-09-23 19:36 - 00000000 ____D C:\Users\Marvin
2015-09-14 14:52 - 2015-09-14 15:03 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2015-09-14 14:52 - 2015-09-14 15:03 - 00020958 _____ C:\WINDOWS\diagerr.xml
2015-09-14 14:52 - 2015-09-14 14:53 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-14 14:52 - 2015-09-14 14:53 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Vorlagen
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Startmenü
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Netzwerkumgebung
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Lokale Einstellungen
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Eigene Dateien
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Druckumgebung
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Documents\Eigene Musik
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Documents\Eigene Bilder
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\AppData\Local\Verlauf
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\AppData\Local\Anwendungsdaten
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Anwendungsdaten
2015-09-14 14:52 - 2014-11-21 13:08 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 14:52 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-14 14:52 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-14 14:52 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-14 14:46 - 2015-09-23 20:40 - 01698719 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-14 14:46 - 2015-09-23 19:35 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-14 14:46 - 2015-09-23 17:08 - 00035551 _____ C:\WINDOWS\avmfwlanci.log
2015-09-14 14:46 - 2015-09-19 22:00 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-09-14 14:46 - 2015-09-14 14:54 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-14 14:46 - 2015-09-14 14:54 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-14 14:46 - 2015-09-14 14:54 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-14 14:46 - 2015-09-14 14:46 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-09-14 14:46 - 2015-09-14 14:46 - 00000000 ____D C:\Program Files\Realtek
2015-09-14 14:46 - 2015-08-25 16:24 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-14 14:46 - 2015-08-25 16:24 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-14 14:46 - 2015-08-25 14:35 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-14 14:03 - 2015-09-14 15:03 - 00006517 _____ C:\WINDOWS\comsetup.log
2015-09-14 13:32 - 2015-09-23 20:49 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-14 13:11 - 2015-09-14 13:47 - 00000000 __RHD C:\ESD
2015-09-14 12:23 - 2015-09-14 13:34 - 00000000 ____D C:\Users\Marvin\AppData\Local\Google
2015-09-14 12:18 - 2015-09-15 00:47 - 00000000 ____D C:\Program Files\KMSpico
2015-09-14 12:18 - 2015-09-14 14:55 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-09-14 12:18 - 2015-09-14 12:18 - 00004608 _____ C:\WINDOWS\SECOH-QAD.exe
2015-09-14 12:18 - 2015-09-14 12:18 - 00003584 _____ C:\WINDOWS\SECOH-QAD.dll
2015-09-14 12:18 - 2015-09-14 12:18 - 00000000 ____D C:\Program Files\Unlocker
2015-09-13 22:06 - 2015-07-05 12:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-09-13 22:03 - 2014-08-08 18:31 - 00027136 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\ptun0901.sys
2015-09-13 22:03 - 2014-05-25 02:36 - 00015360 _____ C:\WINDOWS\system32\SppExtComObjHook.dll
2015-09-13 22:03 - 2014-05-25 02:36 - 00004608 _____ C:\WINDOWS\system32\SppExtComObjPatcher.exe
2015-09-13 22:02 - 2015-09-14 12:11 - 00000000 ____D C:\Users\Marvin\AppData\Local\MSfree Inc
2015-09-13 21:52 - 2015-09-19 00:08 - 00011353 _____ C:\WINDOWS\AVMInstall.Log
2015-09-13 21:52 - 2015-09-19 00:08 - 00000000 ____D C:\Program Files (x86)\avmwlanstick
2015-09-13 21:52 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!WLAN
2015-09-13 21:52 - 2015-09-13 21:52 - 00002077 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-09-13 21:52 - 2015-09-13 21:52 - 00000000 ____D C:\WINDOWS\AVM_Driver
2015-09-13 21:52 - 2015-09-13 21:52 - 00000000 ____D C:\Users\Marvin\AVM_Driver
2015-09-13 20:51 - 2015-09-13 20:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-13 20:51 - 2015-08-26 18:37 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-09-13 20:31 - 2015-09-13 20:41 - 00003172 _____ C:\WINDOWS\wsusofflineupdate.log
2015-09-13 20:20 - 2015-09-13 20:20 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-09-13 20:19 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-09-13 20:19 - 2015-09-13 20:19 - 00000000 ____D C:\Program Files\7-Zip
2015-09-13 20:03 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-13 20:03 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-09-13 20:03 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-09-13 20:02 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-09-13 20:02 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-09-13 20:02 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-09-13 20:02 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-13 20:02 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2015-09-13 20:02 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-13 20:02 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2015-09-13 20:02 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2015-09-13 20:02 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2015-09-13 20:02 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-09-13 20:02 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-13 20:02 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2015-09-13 20:01 - 2015-09-23 20:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-13 20:01 - 2015-09-13 20:04 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-13 20:01 - 2015-09-13 20:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-09-13 20:01 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-09-13 20:01 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-09-13 20:01 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 42840368 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 17082392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 15512888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 14635792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 12515016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-13 19:54 - 2015-08-25 20:46 - 03527696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 03112904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00879000 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00033025 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-13 19:46 - 2015-09-14 23:45 - 00000000 ____D C:\Users\Marvin\AppData\Local\NVIDIA Corporation
2015-09-13 19:45 - 2015-09-13 19:46 - 00000000 ____D C:\Users\Marvin\AppData\Local\NVIDIA
2015-09-13 19:45 - 2015-09-13 19:45 - 00001397 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-09-13 19:45 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-09-13 19:45 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2015-09-13 19:44 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-13 19:44 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-09-13 19:44 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-09-13 19:44 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-09-13 19:44 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-09-13 19:43 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-09-13 19:43 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-13 19:43 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-09-13 19:40 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-13 19:40 - 2015-09-13 19:40 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-09-13 19:40 - 2015-09-13 19:40 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Sun
2015-09-13 19:40 - 2015-09-13 19:40 - 00000000 ____D C:\Users\Marvin\.oracle_jre_usage
2015-09-13 19:39 - 2015-09-13 19:39 - 00000000 ____D C:\ProgramData\Oracle
2015-09-13 19:39 - 2015-09-13 19:39 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-13 19:36 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron (64-Bit)
2015-09-13 19:36 - 2015-09-13 19:36 - 00000896 _____ C:\Users\Public\Desktop\SRWare Iron (64-Bit).lnk
2015-09-13 19:36 - 2015-09-13 19:36 - 00000000 ____D C:\Users\Marvin\AppData\Local\Chromium
2015-09-13 19:36 - 2015-09-13 19:36 - 00000000 ____D C:\Program Files\SRWare Iron (64-Bit)
2015-09-13 19:35 - 2015-09-23 20:54 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2840623005-2840827860-1408477528-1001
2015-09-13 19:34 - 2015-08-25 20:46 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-09-13 19:34 - 2015-08-25 20:46 - 00105264 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-09-13 19:32 - 2015-09-14 12:10 - 00000000 __SHD C:\Users\Marvin\AppData\Local\EmieUserList
2015-09-13 19:32 - 2015-09-14 12:10 - 00000000 __SHD C:\Users\Marvin\AppData\Local\EmieSiteList
2015-09-13 19:32 - 2015-09-13 19:32 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Macromedia
2015-09-13 19:30 - 2015-09-23 19:37 - 00000000 ___DO C:\Users\Marvin\OneDrive
2015-09-13 19:23 - 2015-09-13 19:25 - 00000000 ____D C:\Users\Marvin\AppData\Local\PackageStaging
2015-09-13 19:22 - 2015-09-19 19:23 - 00000000 ____D C:\Users\Marvin\AppData\Local\VirtualStore
2015-09-13 19:22 - 2015-09-15 15:19 - 00000000 ____D C:\Users\Marvin\AppData\Local\Packages
2015-09-13 19:22 - 2015-09-13 19:22 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Adobe
2015-09-13 19:14 - 2015-09-13 19:14 - 00000000 ____D C:\WINDOWS\CSC
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-09-13 19:11 - 2015-09-14 14:08 - 01362974 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-09-13 18:51 - 2013-06-18 14:18 - 00000001 ___SH C:\BOOTNXT
2015-09-13 15:34 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2015-09-08 11:47 - 2015-09-08 11:47 - 00146072 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys
2015-09-08 11:47 - 2015-09-08 11:47 - 00117768 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys
2015-09-07 00:17 - 2015-09-07 00:19 - 00000485 _____ C:\runcheck.txt
2015-09-06 20:34 - 2015-09-06 20:34 - 00000050 _____ C:\link.txt
2015-09-03 15:49 - 2015-09-03 15:49 - 00006624 _____ C:\string2.txt
2015-09-03 15:25 - 2015-09-03 15:28 - 00025086 _____ C:\string.txt
2015-09-02 22:26 - 2015-09-02 22:26 - 00469776 _____ (Microsoft Corporation) C:\WINDOWS\system32\coin98ip.dll
2015-08-29 22:03 - 2015-08-29 22:03 - 00000000 ____D C:\temp
2015-08-29 18:00 - 2015-09-13 09:46 - 00001732 _____ C:\DelFix.txt
2015-08-29 14:45 - 2015-08-29 14:45 - 00000000 ____D C:\bac57828cacb877bcfa142
2015-08-29 10:05 - 2015-08-29 10:05 - 00483828 __RSH C:\AQXOR
2015-08-29 01:31 - 2015-08-29 01:31 - 00000000 ____D C:\3b813b75af923fb313a60f6c
2015-08-29 00:28 - 2015-08-29 00:28 - 00000000 ____D C:\d8b1eeb0dada346ebb
2015-08-28 21:39 - 2015-09-14 14:06 - 00008192 __RSH C:\BOOTSECT.BAK
2015-08-28 21:39 - 2014-11-21 06:05 - 00404250 __RSH C:\bootmgr
2015-08-28 20:48 - 2014-03-27 01:00 - 01327744 _____ (AVM GmbH) C:\WINDOWS\system32\Drivers\fwlanusb6.sys
2015-08-28 20:48 - 2014-03-27 01:00 - 00104448 _____ (AVM Berlin) C:\WINDOWS\system32\fwlan6ci.dll
2015-08-28 20:48 - 2014-03-27 01:00 - 00080360 _____ C:\WINDOWS\system32\Drivers\fwlanusb6.bin
2015-08-28 20:45 - 2015-09-14 14:49 - 00000000 ____D C:\Recovery
2015-08-28 20:45 - 2015-08-28 20:45 - 00000000 _SHDL C:\Programme
2015-08-28 20:45 - 2015-08-28 20:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-08-28 14:36 - 2015-06-12 04:00 - 00197616 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-23 21:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-23 19:35 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-22 22:49 - 2014-11-20 20:24 - 00055728 _____ C:\WINDOWS\PFRO.log
2015-09-22 21:39 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-22 18:32 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-22 15:13 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-09-22 15:05 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-21 19:37 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-09-21 17:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-09-21 16:04 - 2013-08-22 16:44 - 00341208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-21 15:23 - 2014-11-21 04:45 - 00774650 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-21 15:23 - 2014-11-21 04:45 - 00163872 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-21 15:23 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2015-09-21 15:17 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-21 09:09 - 2014-11-21 05:35 - 01776922 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-20 13:59 - 2014-11-21 06:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-09-20 13:59 - 2014-11-21 06:06 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-09-20 13:59 - 2014-11-21 06:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-09-20 13:59 - 2014-11-21 06:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-09-20 13:59 - 2013-08-22 13:22 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-09-20 13:59 - 2013-08-22 13:22 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-09-20 13:59 - 2013-08-22 13:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-09-20 13:59 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-09-20 13:59 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-09-20 13:59 - 2013-08-22 05:56 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-09-20 13:59 - 2013-08-22 05:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-09-20 13:59 - 2013-08-22 05:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-09-20 13:59 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-09-20 13:59 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-09-20 10:35 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\TAPI
2015-09-19 13:58 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\schemas
2015-09-19 00:33 - 2014-11-21 06:06 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwp.exe
2015-09-19 00:33 - 2014-11-21 06:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdvGpuInfo.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2015-09-19 00:33 - 2014-11-21 06:04 - 00421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\synthnic.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsconfig.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmulatedNic.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wnvapi.dll
2015-09-19 00:33 - 2014-11-21 05:43 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\synthstor.dll
2015-09-19 00:33 - 2014-11-21 05:42 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\synthfcvdev.dll
2015-09-19 00:33 - 2014-11-21 05:42 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pvhdparser.sys
2015-09-19 00:33 - 2014-11-21 05:42 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdparser.sys
2015-09-19 00:33 - 2013-08-22 13:48 - 00014688 _____ C:\WINDOWS\system32\sbresources.dll
2015-09-19 00:33 - 2013-08-22 13:46 - 01466522 _____ C:\WINDOWS\system32\WindowsVirtualization.V2.mof
2015-09-19 00:33 - 2013-08-22 13:39 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\passthruparser.sys
2015-09-19 00:33 - 2013-08-22 13:39 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lunparser.sys
2015-09-19 00:33 - 2013-08-22 13:38 - 00039739 _____ C:\WINDOWS\system32\hypervisor.mof
2015-09-19 00:33 - 2013-08-22 12:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\HyperVSysprepProvider.dll
2015-09-19 00:33 - 2013-08-22 12:35 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFileBrowse.dll
2015-09-19 00:33 - 2013-08-22 11:53 - 00033280 _____ C:\WINDOWS\system32\ActivationVdev.dll
2015-09-19 00:33 - 2013-08-22 11:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbusvdev.dll
2015-09-19 00:33 - 2013-08-22 11:38 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmprox.dll
2015-09-19 00:33 - 2013-08-22 11:38 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwpctrl.dll
2015-09-19 00:33 - 2013-08-22 11:19 - 02159616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdp4vs.dll
2015-09-19 00:33 - 2013-08-22 10:25 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmconnect.exe
2015-09-19 00:33 - 2013-08-22 09:35 - 00144967 _____ C:\WINDOWS\system32\virtmgmt.msc
2015-09-19 00:09 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-16 00:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-14 20:33 - 2014-11-21 05:13 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-09-14 20:32 - 2014-11-21 13:07 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-09-14 15:28 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2015-09-14 15:28 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-14 15:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\restore
2015-09-14 15:07 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-09-14 15:04 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-09-14 15:04 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-09-14 15:01 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2015-09-14 15:00 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-09-14 14:55 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-09-14 14:55 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-09-14 14:55 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-09-14 14:55 - 2014-03-18 11:37 - 00000000 ____D C:\WINDOWS\system32\wlms
2015-09-14 14:55 - 2013-08-22 17:37 - 00005217 _____ C:\WINDOWS\DtcInstall.log
2015-09-14 14:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2015-09-14 14:55 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-09-14 14:54 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\InputMethod
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\FileManager
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\WindowsPowerShell
2015-09-14 14:53 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-09-14 14:49 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-25 20:46 - 2015-08-11 01:08 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET87CE.tmp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-09-21 17:23 - 2015-09-21 17:23 - 0000094 _____ () C:\Users\Marvin\AppData\Local\fusioncache.dat
Einige Dateien in TEMP:
====================
C:\Users\Marvin\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-09-14 14:45
==================== Ende von FRST.txt ============================
Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:23-09-2015
durchgeführt von Marvin (2015-09-23 21:12:07)
Gestartet von C:\Users\Marvin\Downloads\Programs
Windows 8.1 Pro (X64) (2015-09-14 13:12:24)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2840623005-2840827860-1408477528-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2840623005-2840827860-1408477528-1006 - Limited - Enabled)
Gast (S-1-5-21-2840623005-2840827860-1408477528-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2840623005-2840827860-1408477528-1005 - Limited - Enabled)
Marvin (S-1-5-21-2840623005-2840827860-1408477528-1001 - Administrator - Enabled) => C:\Users\Marvin
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)
aerosoft's - OMSI 2 - Stadtbus O305 (HKLM-x32\...\{AE36259F-2F4F-44FA-87B7-3D1792ADDCA2}) (Version: 1.10 - aerosoft)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 1.2.0.0 - AVM Berlin)
Battlefield 1942 (HKLM-x32\...\{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}) (Version: - )
Battlefield 1942: Secret Weapons of WWII (HKLM-x32\...\{B73B4A99-4173-4747-BBEC-0F05E966F9D2}) (Version: - )
Battlefield 1942: The Road To Rome (HKLM-x32\...\{D057AA08-8CBF-42E3-9EAB-23B8FED1C279}) (Version: - )
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Browser 7 der Telekom 39.0.15 (x86 de) (HKLM-x32\...\Browser 7 der Telekom 39.0.15 (x86 de)) (Version: 39.0.15 - Deutsche Telekom AG)
Browser 7 Maintenance Service (HKLM-x32\...\Browser7MaintenanceService) (Version: 39.0.15 - Deutsche Telekom AG)
BVG Kubus Serie v.2.0 (HKLM-x32\...\BVG Kubus Serie v.2.0) (Version: 2.0 - CJayDesign)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.00.0000 - Electronic Arts)
Data Lifeguard Diagnostic for Windows 1.24 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DesertCombat 0.7 (HKLM-x32\...\DesertCombat) (Version: - )
Dr. Hardware 2014 14.5d (HKLM-x32\...\Dr. Hardware 2014_is1) (Version: - Peter A. Gebhard)
Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit)
f.lux (HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Flux) (Version: - )
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
GameSpy Comrade (HKLM-x32\...\{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}) (Version: 1.5.0.156 - GameSpy)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Genymotion version 2.5.4 (HKLM\...\{6D180286-D4DF-40EF-9227-923B9C07C08A}_is1) (Version: 2.5.4 - Genymobile)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2516.0 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
herdProtect Anti-Malware Scanner (HKLM-x32\...\herdProtectScan) (Version: 1.0 - Reason Company Software Inc.)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OMSI 2 (HKLM-x32\...\Steam App 252530) (Version: - MR-Software GbR)
OMSI Addon Manager Version 1.2.3 (HKLM-x32\...\{32B08666-1587-435D-988C-7958A04B218A}_is1) (Version: 1.2.3 - Jan Kiesewalter)
Oracle VM VirtualBox 5.0.4 (HKLM\...\{FC191F32-1A67-4231-91D0-0059A57C99A8}) (Version: 5.0.4 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.8.3.59237 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.18 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27405 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Sandboxie 4.20 (64-bit) (HKLM\...\Sandboxie) (Version: 4.20 - Sandboxie Holdings, LLC)
SeaTools for Windows 1.4.0.2 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.2 - Seagate Technology)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
SRWare Iron (64-Bit) Version SRWare Iron 44.2350.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: SRWare Iron 44.2350.0 - SRWare)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.5 - Tunngle.net GmbH)
TweakMe! (HKLM-x32\...\{709D0207-B1F8-4ADC-BB2F-CDBE2367A475}_is1) (Version: 1.3.0.0 - pXc-coding.com)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Venice Unleashed (HKLM-x32\...\{71644805-C0D7-486D-B129-415738F0A0A4}) (Version: 1.0.0.0 - Emulator Nexus)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
18-09-2015 21:57:46 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
19-09-2015 21:56:58 Driver Booster : Microsoft Visual C++ 2012 Redistributable (x86)
21-09-2015 14:53:11 Microsoft Visual C++ 2005 Redistributable wird installiert
22-09-2015 17:04:13 JRT Pre-Junkware Removal
23-09-2015 20:19:06 Installiert Battlefield 2(TM)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2015-09-22 22:41 - 00006224 ____A C:\WINDOWS\system32\Drivers\etc\hosts
65.112.87.186 armedass.available.gamespy.com
65.112.87.186 armedass.ms12.gamespy.com
65.112.87.186 armedass.master.gamespy.com
65.112.87.186 battlefield2.available.gamespy.com
65.112.87.186 battlefield2.master.gamespy.com
65.112.87.186 battlefield2.ms14.gamespy.com
63.239.170.53 bf2web.gamespy.com
65.112.87.186 bfvietnam.available.gamespy.com
65.112.87.186 bfvietnam.master.gamespy.com
65.112.87.186 bfvietnam.ms0.gamespy.com
65.112.87.186 bderlandspc.available.gamespy.com
65.112.87.186 bderlandspc.master.gamespy.com
65.112.87.186 bderlandspc.ms18.gamespy.com
65.112.87.186 crysis.available.gamespy.com
65.112.87.186 crysis.master.gamespy.com
65.112.87.186 crysis.ms5.gamespy.com
65.112.87.186 crysiswars.available.gamespy.com
65.112.87.186 crysiswars.master.gamespy.com
65.112.87.186 crysiswars.ms2.gamespy.com
65.112.87.186 gotcha.available.gamespy.com
65.112.87.186 gotcha.ms10.gamespy.com
65.112.87.186 gotcha.master.gamespy.com
65.112.87.188 gamestats.gamespy.com
65.112.87.186 gpcm.gamespy.com
65.112.87.186 gpsp.gamespy.com
65.112.87.186 key.gamespy.com
65.112.87.186 master.gamespy.com
65.112.87.186 master0.gamespy.com
63.239.170.9 natneg1.gamespy.com
63.239.170.10 natneg2.gamespy.com
63.144.111.199 natneg3.gamespy.com
65.112.87.186 halor.available.gamespy.com
65.112.87.186 halor.master.gamespy.com
65.112.87.186 halor.ms6.gamespy.com
65.112.87.186 hd2.available.gamespy.com
65.112.87.186 hd2.master.gamespy.com
65.112.87.186 hd2.ms14.gamespy.com
63.239.170.53 motd.gamespy.com
65.112.87.186 nwn.available.gamespy.com
65.112.87.186 nwn.master.gamespy.com
65.112.87.187 chat.gamespynetwork.com
65.112.87.187 peerchat.gamespy.com
65.112.87.186 painkiller.available.gamespy.com
65.112.87.186 painkiller.ms15.gamespy.com
65.112.87.186 painkiller.master.gamespy.com
65.112.87.186 racedriver3pc.available.gamespy.com
65.112.87.186 racedriver3pc.master.gamespy.com
65.112.87.186 racedriver3pc.ms17.gamespy.com
65.112.87.186 swbfront2pc.available.gamespy.com
65.112.87.186 swbfront2pc.master.gamespy.com
65.112.87.186 swbfront2pc.ms6.gamespy.com
65.112.87.186 titanquest.available.gamespy.com
65.112.87.186 titanquest.master.gamespy.com
65.112.87.186 titanquest.ms18.gamespy.com
65.112.87.186 tribesv.ms15.gamespy.com
65.112.87.186 tribesv.master.gamespy.com
65.112.87.186 tribesv.available.gamespy.com
65.112.87.186 tron20.master.gamespy.com
65.112.87.186 tron20.ms9.gamespy.com
65.112.87.186 vietcong2.available.gamespy.com
65.112.87.186 vietcong2.master.gamespy.com
65.112.87.186 vietcong2.ms1.gamespy.com
65.112.87.186 wolfmaster.idsoftware.com65.112.87.186 armedass.available.gamespy.com
65.112.87.186 armedass.ms12.gamespy.com
65.112.87.186 armedass.master.gamespy.com
65.112.87.186 battlefield2.available.gamespy.com
65.112.87.186 battlefield2.master.gamespy.com
65.112.87.186 battlefield2.ms14.gamespy.com
63.239.170.53 bf2web.gamespy.com
65.112.87.186 bfvietnam.available.gamespy.com
65.112.87.186 bfvietnam.master.gamespy.com
65.112.87.186 bfvietnam.ms0.gamespy.com
65.112.87.186 bderlandspc.available.gamespy.com
65.112.87.186 bderlandspc.master.gamespy.com
65.112.87.186 bderlandspc.ms18.gamespy.com
65.112.87.186 crysis.available.gamespy.com
65.112.87.186 crysis.master.gamespy.com
65.112.87.186 crysis.ms5.gamespy.com
65.112.87.186 crysiswars.available.gamespy.com
65.112.87.186 crysiswars.master.gamespy.com
65.112.87.186 crysiswars.ms2.gamespy.com
65.112.87.186 gotcha.available.gamespy.com
65.112.87.186 gotcha.ms10.gamespy.com
65.112.87.186 gotcha.master.gamespy.com
65.112.87.188 gamestats.gamespy.com
65.112.87.186 gpcm.gamespy.com
65.112.87.186 gpsp.gamespy.com
65.112.87.186 key.gamespy.com
65.112.87.186 master.gamespy.com
65.112.87.186 master0.gamespy.com
63.239.170.9 natneg1.gamespy.com
63.239.170.10 natneg2.gamespy.com
63.144.111.199 natneg3.gamespy.com
65.112.87.186 halor.available.gamespy.com
65.112.87.186 halor.master.gamespy.com
65.112.87.186 halor.ms6.gamespy.com
65.112.87.186 hd2.available.gamespy.com
65.112.87.186 hd2.master.gamespy.com
65.112.87.186 hd2.ms14.gamespy.com
63.239.170.53 motd.gamespy.com
65.112.87.186 nwn.available.gamespy.com
65.112.87.186 nwn.master.gamespy.com
65.112.87.187 chat.gamespynetwork.com
65.112.87.187 peerchat.gamespy.com
65.112.87.186 painkiller.available.gamespy.com
65.112.87.186 painkiller.ms15.gamespy.com
65.112.87.186 painkiller.master.gamespy.com
65.112.87.186 racedriver3pc.available.gamespy.com
65.112.87.186 racedriver3pc.master.gamespy.com
65.112.87.186 racedriver3pc.ms17.gamespy.com
65.112.87.186 swbfront2pc.available.gamespy.com
65.112.87.186 swbfront2pc.master.gamespy.com
65.112.87.186 swbfront2pc.ms6.gamespy.com
65.112.87.186 titanquest.available.gamespy.com
65.112.87.186 titanquest.master.gamespy.com
65.112.87.186 titanquest.ms18.gamespy.com
65.112.87.186 tribesv.ms15.gamespy.com
65.112.87.186 tribesv.master.gamespy.com
65.112.87.186 tribesv.available.gamespy.com
65.112.87.186 tron20.master.gamespy.com
65.112.87.186 tron20.ms9.gamespy.com
65.112.87.186 vietcong2.available.gamespy.com
65.112.87.186 vietcong2.master.gamespy.com
65.112.87.186 vietcong2.ms1.gamespy.com
65.112.87.186 wolfmaster.idsoftware.com
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00A4D91C-7B60-46B3-8BC5-6FC9C1D969F6} - System32\Tasks\Abelssoft\StartBackgroundguardWithWindows => C:\Program Files (x86)\CheckDrive\CheckDrive.exe
Task: {297D3279-A200-4534-ABE4-96D93152174E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-23] (Google Inc.)
Task: {53A4C978-FC6A-4B72-B093-25FBF6708986} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-23] (Google Inc.)
Task: {57DE5850-036F-47F6-A68A-9F35BCFC7026} - System32\Tasks\App Update => C:\Users\Marvin\AppData\Local\AppUpd\GUP.exe [2015-05-25] (Don HO don.h@free.fr)
Task: {608F468E-449F-400C-B89C-AF7A551ADCA7} - \blockerpro -> Keine Datei <==== ACHTUNG
Task: {8F4DB2A7-433D-4F8D-A0A2-0B0447EF635A} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {9461EDBC-4C39-4603-BAC4-0E5A486A1F97} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {B6FBAE1A-4AE9-4C74-8D43-5CF2680DC9A7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {BB43A78E-0BE1-41D1-B1F4-167BF32391C7} - System32\Tasks\Hubsy => C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp\rinti.exe
Task: {BB545A75-DDD0-4834-8C65-A5E053D744DB} - System32\Tasks\bEG => C:\ProgramData\Jason\Jason.exe [2015-09-11] (Don HO don.h@free.fr) <==== ACHTUNG
Task: {D3523BD7-7993-4498-89DC-5174EF91F9A9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-07-08] (Microsoft)
Task: {EA8424E8-74E0-460D-AB9E-FD2ADB66B19F} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {EC238CF5-6700-4705-BF01-621A17B68C90} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {EF05D817-0557-4CAA-B5B9-2338BC97803C} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-09-14 14:46 - 2015-08-25 16:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-09-20 16:32 - 2015-09-21 15:19 - 00066872 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-06-23 21:11 - 2015-06-23 21:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-05-01 16:13 - 2014-05-01 16:13 - 00470016 _____ () C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll
2015-09-02 13:00 - 2015-09-02 13:00 - 10566352 _____ () C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
2015-09-23 20:49 - 2015-09-19 07:54 - 01868104 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\libglesv2.dll
2015-09-23 20:49 - 2015-09-19 07:54 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\libegl.dll
2014-05-01 16:15 - 2014-05-01 16:15 - 00463360 _____ () C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll
2015-09-13 19:43 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-09-14 21:58 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-09-14 21:58 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-09-14 21:58 - 2015-08-19 22:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll
2015-09-14 21:58 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-09-14 21:58 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-09-14 21:57 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-14 21:57 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-14 21:57 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-14 21:57 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-14 21:57 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-09-14 21:58 - 2015-08-19 22:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-09-14 21:57 - 2015-07-27 03:13 - 00171008 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-09-05 03:42 - 2015-09-05 03:42 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-09-14 21:57 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Marvin\OneDrive:ms-properties
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\StartupFolder: => "OMSI Addon Manager.lnk"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "MicroUpdate"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "SandboxieControl"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DC9CD1B2-C92C-4AAC-85F2-14032163DA7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5FBDF85D-13AA-4CE3-85D1-EAC3A3909890}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E8D6BF8D-E2A8-4C90-AE15-C5C6929AAAEA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{9476BB31-DE14-4558-A9B6-E7EC947B9B9F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{374D7C2F-404B-4848-9B60-BA0956431444}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{5EB1EB4E-EBE8-4CB3-AD15-58F26AAA6CCB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D2E168F4-1B56-4FBE-A4F0-7E490B396EFB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{39141C7C-D691-446E-B058-B6D664D0D7E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DEAFD0DC-5B35-4EDE-B6DD-1FFE4C421B05}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1351B65D-2947-4E83-B1E7-C8C82CF89099}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{64216D7B-E850-4EA3-A557-69475865C132}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8342606B-D47E-4C6E-BC8E-443FA8FFFACF}] => (Allow) C:\Program Files (x86)\Deutsche Telekom AG\Browser 7\Browser7.exe
FirewallRules: [{43C11AAF-BC4B-41EA-BF74-B9427C824367}] => (Allow) C:\Program Files (x86)\Deutsche Telekom AG\Browser 7\Browser7.exe
FirewallRules: [{E93E7904-CA1C-4740-A9E7-EE7D19BD25E0}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{66291472-946F-43DD-955D-0C9086B2B7B0}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{FF99C039-1757-4059-8B3A-2F1B824C83D0}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{4109D9A9-049A-47AE-A517-5A931282CA6C}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{B8A8BB6E-8155-4368-B2BA-3D695AB22751}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{35DDF256-FD48-46A0-A316-1BD9F65233CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{627BF49A-0C22-43A6-95B4-8063CEEA5C71}] => (Allow) C:\Users\Marvin\AppData\Roaming\Andy_45_Online\Setup.exe
FirewallRules: [{0C3130C4-7A41-419A-983E-4D0B89DD3E6C}] => (Allow) C:\Users\Marvin\AppData\Roaming\Andy_45_Online\Setup.exe
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [{EBD1EC5B-6428-4A40-8B13-407B83DF9280}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6B2E21F0-C3A4-4080-A3F8-A54207A522A0}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{243D2C73-2361-4CEF-8B99-B821A4978C5B}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{77C3BB95-8226-464A-9C98-4A39171AC8E1}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{EE4917DA-4A6F-4FAC-9B07-B3660ACBF891}C:\program files (x86)\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\java.exe
FirewallRules: [UDP Query User{7B019748-D3E8-4AFF-A3C9-F987E32B8F40}C:\program files (x86)\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\java.exe
FirewallRules: [TCP Query User{B800105B-3792-486D-8EB6-0FEEB57296B8}C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{4A864D16-6458-4C1F-B8FE-AED1CA3FF4AE}C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{00F594E7-16EF-48F5-A873-1CE286135456}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{77EFFCE1-3879-4894-9260-BF6B619DAB77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{A2B5E383-AB92-488E-AC2F-0E5060888A0B}C:\program files (x86)\ea games\battlefield 1942\bf1942.exe] => (Allow) C:\program files (x86)\ea games\battlefield 1942\bf1942.exe
FirewallRules: [UDP Query User{89F933C5-5E36-4F3D-84F0-828312C076BD}C:\program files (x86)\ea games\battlefield 1942\bf1942.exe] => (Allow) C:\program files (x86)\ea games\battlefield 1942\bf1942.exe
FirewallRules: [{F103B3DE-CCFE-49BB-802A-F56B7BB87277}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{32DA6FCD-D1C5-4FC6-AC37-AD76934332CC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{17333AA8-AAC7-4AAE-AEAC-69BA2D30C16C}D:\games\battlefield 3™\zlobf3launcher.exe] => (Allow) D:\games\battlefield 3™\zlobf3launcher.exe
FirewallRules: [UDP Query User{0AE2EDB1-A781-44B8-93FC-12D472C9C8BD}D:\games\battlefield 3™\zlobf3launcher.exe] => (Allow) D:\games\battlefield 3™\zlobf3launcher.exe
FirewallRules: [TCP Query User{C32C286A-B57C-4B89-B28A-776BDE656388}D:\games\battlefield 3™\launcherserver.exe] => (Allow) D:\games\battlefield 3™\launcherserver.exe
FirewallRules: [UDP Query User{01E9A715-7B0D-4851-8C89-C62BDE8AC80F}D:\games\battlefield 3™\launcherserver.exe] => (Allow) D:\games\battlefield 3™\launcherserver.exe
FirewallRules: [TCP Query User{A3588C5E-5021-4A56-BF0F-63089A3ECCDE}D:\games\battlefield 3™\zlofulllauncher.exe] => (Allow) D:\games\battlefield 3™\zlofulllauncher.exe
FirewallRules: [UDP Query User{FAF0751A-5D89-4F5B-BF33-4CD3C8A2142B}D:\games\battlefield 3™\zlofulllauncher.exe] => (Allow) D:\games\battlefield 3™\zlofulllauncher.exe
FirewallRules: [{1675E2EC-AB82-4D6E-8B4B-43CC6E657E26}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{A87736E0-67EA-4EC6-BE2F-EB78301A7AD8}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{386D2FEA-139B-4034-B297-9F034B4B231C}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{7CCA2D13-0B33-4D6D-A4BF-18C66D5BA04D}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{D5E89A33-EA13-4315-9FD3-939FD55ED4B8}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\Crysis.exe
FirewallRules: [{068FC625-EB7C-4A90-8C63-68B785BB3F18}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\Crysis.exe
FirewallRules: [{3A0E9884-2396-448F-9646-87251F5B896F}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\CrysisDedicatedServer.exe
FirewallRules: [{6772ED51-D9A7-4284-BB08-39C6359BC277}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\CrysisDedicatedServer.exe
FirewallRules: [{2F11093F-6399-463A-BEC5-2C93B7C0861D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{EB82FDBB-3C16-404F-B37C-C8BB20182CA5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{41FBF4E7-A107-4AF0-ADE4-61F78F477E42}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8D0B2AE2-199C-4257-ABA5-49FAC4A22783}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{765E1C74-53E5-4F62-961A-CD392D3C2CAD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B01E916B-11AE-4845-A39C-72F450C67356}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F86EE5D7-5E2A-4326-86EB-5D8D6609F852}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0FDD02FF-28F1-49AE-9B6D-CE36E72504C3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{76BC906B-98A9-4AC9-BB23-0C50FA0FBCB3}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{A260F04C-55E3-45E8-9FC2-927D5526E157}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{2E11CB8F-C411-44D1-8C08-992B6C489350}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/23/2015 08:03:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: BF1942.exe, Version: 0.0.0.0, Zeitstempel: 0x417564c4
Name des fehlerhaften Moduls: d3d8.dll, Version: 6.3.9600.17415, Zeitstempel: 0x5450488f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00046e48
ID des fehlerhaften Prozesses: 0x15b0
Startzeit der fehlerhaften Anwendung: 0xBF1942.exe0
Pfad der fehlerhaften Anwendung: BF1942.exe1
Pfad des fehlerhaften Moduls: BF1942.exe2
Berichtskennung: BF1942.exe3
Vollständiger Name des fehlerhaften Pakets: BF1942.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BF1942.exe5
Error: (09/23/2015 07:47:49 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: ASP.NET_1.1.4322
Error: (09/23/2015 07:47:49 PM) (Source: Perflib) (EventID: 1021) (User: )
Description: ASP.NET_1.1.43228
Error: (09/23/2015 06:16:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 98c
Startzeit: 01d0f61a83020d33
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 73c41b2b-620e-11e5-827c-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/23/2015 06:12:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 2.3.55.0, Zeitstempel: 0x557a2a02
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18007, Zeitstempel: 0x55c4bc8e
Ausnahmecode: 0xc0000142
Fehleroffset: 0x0009d4f2
ID des fehlerhaften Prozesses: 0xfe8
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Vollständiger Name des fehlerhaften Pakets: mbam.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: mbam.exe5
Error: (09/23/2015 05:46:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1378
Startzeit: 01d0f61468bf1784
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 63f3beae-6208-11e5-827a-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/23/2015 05:23:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 12b8
Startzeit: 01d0f61310e00c10
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 05edba21-6207-11e5-827a-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/23/2015 03:30:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1098
Startzeit: 01d0f6034b3c4da6
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 425d5980-61f7-11e5-8278-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/22/2015 10:18:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WerFault.exe, Version: 6.3.9600.17415, Zeitstempel: 0x54503815
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18007, Zeitstempel: 0x55c4bc8e
Ausnahmecode: 0xc0000142
Fehleroffset: 0x0009d4f2
ID des fehlerhaften Prozesses: 0x1720
Startzeit der fehlerhaften Anwendung: 0xWerFault.exe0
Pfad der fehlerhaften Anwendung: WerFault.exe1
Pfad des fehlerhaften Moduls: WerFault.exe2
Berichtskennung: WerFault.exe3
Vollständiger Name des fehlerhaften Pakets: WerFault.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WerFault.exe5
Error: (09/22/2015 09:26:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1174
Startzeit: 01d0f56beb47a673
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: dcf08cf3-615f-11e5-8275-0896d7f42740
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Systemfehler:
=============
Error: (09/23/2015 07:35:39 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (09/23/2015 07:35:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 23.09.2015 um 19:21:56 unerwartet heruntergefahren.
Error: (09/23/2015 06:17:30 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Search" wurde nicht richtig gestartet.
Error: (09/23/2015 06:15:58 PM) (Source: DCOM) (EventID: 10010) (User: MARVIN-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (09/23/2015 06:14:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (09/23/2015 06:14:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update-Dienst (gupdate) erreicht.
Error: (09/23/2015 06:13:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Peer Name Resolution-Protokoll" ist vom Dienst "Peernetzwerkidentitäts-Manager" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1053
Error: (09/23/2015 06:13:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Peernetzwerk-Gruppenzuordnung" ist vom Dienst "Peernetzwerkidentitäts-Manager" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1053
Error: (09/23/2015 06:13:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Peernetzwerkidentitäts-Manager" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (09/23/2015 06:13:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Peernetzwerkidentitäts-Manager erreicht.
CodeIntegrity:
===================================
Date: 2015-09-23 20:42:19.986
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:19.714
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:18.982
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:18.579
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:16.365
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:15.883
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:10.412
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:09.584
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:26:07.395
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:26:07.113
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: AMD Athlon(tm) II X2 220 Processor
Prozentuale Nutzung des RAM: 53%
Installierter physikalischer RAM: 4095.36 MB
Verfügbarer physikalischer RAM: 1915.8 MB
Summe virtueller Speicher: 8447.36 MB
Verfügbarer virtueller Speicher: 5349.51 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:228.34 GB) (Free:109.26 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:237.32 GB) (Free:203.22 GB) NTFS
Drive e: (BF2 DVD) (CDROM) (Total:1.93 GB) (Free:0 GB) UDF
Drive f: () (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 74400503)
Partition 1: (Not Active) - (Size=99 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.3 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=228.3 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
23.09.2015, 20:35
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Chrome Erweiterung nicht löschbar Hi
__________________ Ich glaub du kannst deinen kompletten Chrome runterschmeißen und neu machen  Du hast Adware/Junkware im System. Malwarebytes schon laufen lassen?
__________________ |
|
23.09.2015, 20:38
| #4 |
| | Chrome Erweiterung nicht löschbar Hi Arne, Ja, Adwcleaner, Junkware und MBAM habe ich schon laufen lassen. Achja, Chrome habe ich schon einmal runtergeschmissen, mit Revo. Trotzdem, ist es noch da. LG Geändert von DieKakao (23.09.2015 um 20:51 Uhr) |
|
23.09.2015, 20:39
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Chrome Erweiterung nicht löschbar Ja, dann poste mal alle Logs Junge, echt jetzt   In CODE-Tags bitte
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.09.2015, 20:51
| #6 |
| | Chrome Erweiterung nicht löschbar Hi Arne, ich hatte die Logs leider nicht mehr, deswegen habe ich neue Scans gemacht. JRT: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.3 (09.21.2015:1)
OS: Windows 8.1 Pro x64
Ran by Marvin on 23.09.2015 at 21:41:55,59
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
~~~ Registry Values
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_46F1CB28F09B935A713F72D4B90FE680
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Chrome
[C:\Users\Marvin\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
[C:\Users\Marvin\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
[C:\Users\Marvin\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
[C:\Users\Marvin\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
bigefpfhnfcobdlfbedofhhaibnlghod
]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.09.2015 at 21:49:42,14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Adw: Code:
ATTFilter # AdwCleaner v5.008 - Bericht erstellt am 23/09/2015 um 21:44:41
# Aktualisiert am 18/09/2015 von Xplode
# Datenbank : 2015-09-23.1 [Server]
# Betriebssystem : Windows 8.1 Pro (x64)
# Benutzername : Marvin - MARVIN-PC
# Gestartet von : C:\Users\Marvin\Desktop\AdwCleaner.exe
# Option : Suchlauf
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{934B156A-3D17-3981-B78A-5C138F423AD6}]
***** [ Internetbrowser ] *****
[C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Gefunden : sweet-page
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [825 Bytes] ##########
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 23.09.2015 Suchlaufzeit: 20:45 Protokolldatei: MBAM.txt Administrator: Ja Version: 2.1.8.1057 Malware-Datenbank: v2015.09.23.04 Rootkit-Datenbank: v2015.09.22.01 Lizenz: Premium-Version Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Aktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Marvin Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 372586 Abgelaufene Zeit: 25 Min., 29 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 1 PUP.Optional.AdTech, C:\Users\Marvin\AppData\Roaming\nets\Nets_32.dll, Löschen bei Neustart, [2f21f14212793afc4ccb70752bd79769], Registrierungsschlüssel: 23 PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}\INPROCSERVER32, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\TYPELIB\{3FC2D59A-5C76-1E97-30DC-1EC6784419E5}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\INTERFACE\{63D2A451-3351-178C-7BC4-13C4D58A7652}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{63D2A451-3351-178C-7BC4-13C4D58A7652}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{63D2A451-3351-178C-7BC4-13C4D58A7652}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{3FC2D59A-5C76-1E97-30DC-1EC6784419E5}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{3FC2D59A-5C76-1E97-30DC-1EC6784419E5}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\adTech.adTech.1, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\adTech.adTech, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\WOW6432NODE\CLASSES\adTech.adTech, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\WOW6432NODE\adTech.adTech, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\WOW6432NODE\CLASSES\adTech.adTech.1, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\WOW6432NODE\adTech.adTech.1, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{934B156A-3D17-3981-B78A-5C138F423AD6}, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.WebPick, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\blockerpro, Löschen bei Neustart, [a7a9989ba5e68caa7904a4241ce8dc24], Malware.Trace, HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\SOFTWARE\DC3_FEXEC, In Quarantäne, [bc9448eb8dfe112556e8519cc3401ee2], Registrierungswerte: 3 PUP.Optional.Vonteera.ChrPRST, HKCU\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{437B9306-2FDE-4054-A3C9-6B49507C12D0}, 1, In Quarantäne, [460aba79b0db40f699632012d23112ee] PUP.Optional.Vonteera.ChrPRST, HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{437B9306-2FDE-4054-A3C9-6B49507C12D0}, 1, In Quarantäne, [331df83b4d3e85b17882979bc043d42c] PUP.Optional.Vonteera.ChrPRST, HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXT\CLSID|{437B9306-2FDE-4054-A3C9-6B49507C12D0}, 1, In Quarantäne, [b59b84af3952f73fce2ca88a798a6898] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 2 PUP.Optional.AdTech, C:\Users\Marvin\AppData\Roaming\nets\Nets_64.dll, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], PUP.Optional.AdTech, C:\Users\Marvin\AppData\Roaming\nets\Nets_32.dll, In Quarantäne, [2f21f14212793afc4ccb70752bd79769], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) LG |
|
23.09.2015, 20:55
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Chrome Erweiterung nicht löschbar adwCleaner speichert die Logs doch für dich  Sieh mal rein in C:\AdwCleaner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.09.2015, 20:58
| #8 |
| | Chrome Erweiterung nicht löschbar Hi, Log 1: Code:
ATTFilter # AdwCleaner v5.008 - Bericht erstellt am 21/09/2015 um 18:33:40
# Aktualisiert am 18/09/2015 von Xplode
# Datenbank : 2015-09-20.1 [Server]
# Betriebssystem : Windows 8.1 Pro (x64)
# Benutzername : Marvin - MARVIN-PC
# Gestartet von : C:\Users\Marvin\Downloads\Programs\adwcleaner_5.008.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\CLASSES\adTech.adTech.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\CLASSES\adTech.adTech
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{63D2A451-3351-178C-7BC4-13C4D58A7652}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3FC2D59A-5C76-1E97-30DC-1EC6784419E5}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{934B156A-3D17-3981-B78A-5C138F423AD6}]
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{63D2A451-3351-178C-7BC4-13C4D58A7652}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{934B156A-3D17-3981-B78A-5C138F423AD6}
***** [ Internetbrowser ] *****
[-] [C:\Users\Marvin\AppData\Local\Chromium\User Data\Default\Web Data] [Search Provider] Gelöscht : ixquick
*************************
:: Winsock Einstellungen zurückgesetzt
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1627 Bytes] ##########
Code:
ATTFilter # AdwCleaner v5.008 - Bericht erstellt am 22/09/2015 um 16:52:43
# Aktualisiert am 18/09/2015 von Xplode
# Datenbank : 2015-09-20.1 [Server]
# Betriebssystem : Windows 8.1 Pro (x64)
# Benutzername : Marvin - MARVIN-PC
# Gestartet von : C:\Users\Marvin\Downloads\Programs\AdwCleaner.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ Verknüpfungen ] *****
***** [ Geplante Tasks ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\CLASSES\adTech.adTech.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\CLASSES\adTech.adTech
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{63D2A451-3351-178C-7BC4-13C4D58A7652}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3FC2D59A-5C76-1E97-30DC-1EC6784419E5}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{934B156A-3D17-3981-B78A-5C138F423AD6}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{934B156A-3D17-3981-B78A-5C138F423AD6}]
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{934B156A-3D17-3981-B78A-5C138F423AD6}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{63D2A451-3351-178C-7BC4-13C4D58A7652}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{934B156A-3D17-3981-B78A-5C138F423AD6}
***** [ Internetbrowser ] *****
[-] [C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : sweet-page
*************************
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: TCP/IP Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1918 Bytes] ##########
Übrigens, ist "word highlight" selbst nach den Neustart immer noch da. LG |
|
23.09.2015, 21:00
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Chrome Erweiterung nicht löschbar Ok - hau mal den Google Chrome runter. Ich denke du kommst eh nicht drum herum, den sauber neu einzurichten. Also Programm sauber neu und das Browserprofil neu machen. Danach bitte neue FRST-Logs inkl. neue Addition.txt
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.09.2015, 21:38
| #10 |
| | Chrome Erweiterung nicht löschbar Hi Chrome wurde komplett mit Revo deinstalliert. Trotzdem ist "word highlight", wieder da, obwohl ich Chrome nur gestartet habe. FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:23-09-2015 durchgeführt von Marvin (Administrator) auf MARVIN-PC (23-09-2015 22:15:57) Gestartet von C:\Users\Marvin\Desktop Geladene Profile: Marvin (Verfügbare Profile: Marvin) Platform: Windows 7 Ultimate (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Windows\System32\vmms.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Flux Software LLC) C:\Users\Marvin\AppData\Local\FluxSoftware\Flux\flux.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe () C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (AVM Berlin) C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfsvc.exe (Deutsche Telekom AG) C:\Program Files (x86)\Deutsche Telekom AG\Browser 7\Browser7.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-09-19] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe [933888 2013-12-17] (AVM Berlin) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-11] (Razer Inc.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [f.lux] => C:\Users\Marvin\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3907152 2015-08-28] (Tonec Inc.) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-06-23] (Sandboxie Holdings, LLC) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3638256 2015-09-20] (Electronic Arts) HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe [10566352 2015-09-02] () HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\MountPoints2: {4a1341e0-5a50-11e5-8251-0030678c4569} - "G:\pushinst.exe" HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\MountPoints2: {bf0b5d6c-5a39-11e5-824f-806e6f6e6963} - "E:\Autorun.exe" HKU\S-1-5-18\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Marvin\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () Startup: C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-09-20] ShortcutTarget: MEGAsync.lnk -> C:\Users\Marvin\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited) Startup: C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OMSI Addon Manager.lnk [2015-09-15] ShortcutTarget: OMSI Addon Manager.lnk -> C:\Program Files (x86)\OMSI Addon Manager\OMSI Addon Manager.exe (Jan Kiesewalter) GroupPolicy: Beschränkung - Chrome <======= ACHTUNG CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1 Tcpip\..\Interfaces\{41EB8567-6A5D-4D0D-B932-9F874D329573}: [DhcpNameServer] 192.168.2.1 192.168.2.1 Tcpip\..\Interfaces\{8A7B889B-C767-401D-8DF7-EBFE976520BC}: [DhcpNameServer] 10.77.0.254 Internet Explorer: ================== HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://msn.com/ BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-08-28] (Internet Download Manager, Tonec Inc.) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-08-28] (Internet Download Manager, Tonec Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-13] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-13] (Oracle Corporation) FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-13] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-13] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-23] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-23] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Marvin\AppData\Roaming\IDM\idmmzcc5 FF Extension: IDM CC - C:\Users\Marvin\AppData\Roaming\IDM\idmmzcc5 [2015-09-21] Chrome: ======= CHR dev: Chrome dev build erkannt! <======= ACHTUNG CHR Profile: C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-23] CHR Extension: (Google Drive) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-23] CHR Extension: (YouTube) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-23] CHR Extension: (Google Search) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-23] CHR Extension: (Google Docs Offline) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-23] CHR Extension: (Chrome Web Store Payments) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-23] CHR Extension: (word highlight) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooabkmkhabkahcjbgpiajffckeibpdoa [2015-09-23] CHR Extension: (Gmail) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-23] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 Browser7Maintenance; C:\Program Files (x86)\Browser 7 Maintenance Service\maintenanceservice.exe [148792 2015-08-10] (Deutsche Telekom AG) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-20] (Electronic Arts) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2015-09-21] () R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] () R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [175752 2015-06-23] (Sandboxie Holdings, LLC) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH) S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [800208 2015-08-27] (Tunngle.net GmbH) R2 vmms; C:\Windows\system32\vmms.exe [13784064 2015-04-01] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert] R2 DRHARD64; C:\WINDOWS\system32\drivers\DRHARD64.sys [21984 2011-11-03] (Licensed for Gebhard Software) R2 DRHARD64; C:\WINDOWS\SysWOW64\drivers\DRHARD64.sys [21984 2011-11-03] (Licensed for Gebhard Software) R2 DRHMSR64; C:\WINDOWS\system32\drivers\DRHMSR64.sys [13760 2013-07-21] () R2 DRHMSR64; C:\WINDOWS\SysWOW64\drivers\DRHMSR64.sys [13760 2013-07-21] () S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R3 fwlanusb6; C:\Windows\system32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH) R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [76800 2014-11-21] (Microsoft Corporation) [Datei ist nicht signiert] R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [68952 2015-05-12] (Microsoft Corporation) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-19] (REALiX(tm)) S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [19456 2015-09-19] (Microsoft Corporation) R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [109272 2015-06-18] (Malwarebytes Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-23] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) S3 NdisImPlatformMp; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [126464 2014-11-21] (Microsoft Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22016 2015-09-19] (Microsoft Corporation) S3 ptun0901; C:\Windows\system32\DRIVERS\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project) S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [27136 2015-09-19] (Microsoft Corporation) R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.) R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.) R3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [40640 2015-07-29] (Windows (R) Win 7 DDK provider) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [190088 2015-06-23] (Sandboxie Holdings, LLC) R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net) R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation) R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation) S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [18944 2015-09-19] (Microsoft Corporation) R3 VMSMP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S3 VMSP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S3 VMSVSF; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S3 VMSVSP; C:\Windows\system32\DRIVERS\vmswitch.sys [689152 2015-08-05] (Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 DRHARD; \??\C:\WINDOWS\system32\DRIVERS\DRHARD.SYS [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-23 22:19 - 2015-09-23 22:19 - 00302329 _____ C:\Users\Marvin\Downloads\Dateien.7z 2015-09-23 22:15 - 2015-09-23 22:15 - 00019040 _____ C:\Users\Marvin\Desktop\FRST.txt 2015-09-23 22:14 - 2015-09-23 22:21 - 00002195 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-09-23 22:14 - 2015-09-23 22:21 - 00000918 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-23 22:14 - 2015-09-23 22:19 - 00000914 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-23 22:14 - 2015-09-23 22:14 - 00003890 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-23 22:14 - 2015-09-23 22:14 - 00003654 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-23 22:14 - 2015-09-23 22:14 - 00000000 ____D C:\Users\Marvin\AppData\Local\Google 2015-09-23 22:14 - 2015-09-23 22:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-09-23 22:12 - 2015-09-23 22:13 - 00018652 _____ C:\Users\Marvin\Desktop\Addition.txt 2015-09-23 22:07 - 2015-09-23 22:08 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Notepad++ 2015-09-23 22:07 - 2015-09-23 22:08 - 00000000 ____D C:\Program Files (x86)\Notepad++ 2015-09-23 22:07 - 2015-09-23 22:07 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-09-23 22:07 - 2015-09-23 22:07 - 00000000 ____D C:\Users\Marvin\AppData\Local\Deployment 2015-09-23 22:07 - 2015-09-23 22:07 - 00000000 ____D C:\Users\Marvin\AppData\Local\Apps\2.0 2015-09-23 22:07 - 2015-09-23 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-09-23 21:49 - 2015-09-23 21:49 - 00001262 _____ C:\Users\Marvin\Desktop\JRT.txt 2015-09-23 21:39 - 2015-09-23 21:39 - 00005734 _____ C:\Users\Marvin\Desktop\MBAM.txt 2015-09-23 21:04 - 2015-09-23 21:05 - 02192384 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe 2015-09-23 20:35 - 2015-09-23 20:35 - 00000000 ____D C:\Users\Marvin\Desktop\revouninstaller-portable 2015-09-23 20:27 - 2015-09-23 20:27 - 00002124 _____ C:\Users\Public\Desktop\BF2 jetzt online spielen!.lnk 2015-09-23 20:27 - 2015-09-23 20:27 - 00002102 _____ C:\Users\Public\Desktop\Battlefield 2.lnk 2015-09-23 20:25 - 2015-09-23 20:25 - 00000000 ____D C:\Users\Marvin\Documents\Battlefield 2 2015-09-23 19:48 - 2015-09-23 21:11 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\nets 2015-09-23 19:48 - 2015-09-23 19:48 - 00003244 _____ C:\WINDOWS\System32\Tasks\Hubsy 2015-09-23 15:53 - 2015-09-23 15:53 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2015-09-22 20:36 - 2015-09-22 20:36 - 19085312 _____ C:\WINDOWS\system32\vmg546C.tmp 2015-09-22 15:12 - 2015-09-23 19:48 - 00003808 _____ C:\WINDOWS\System32\Tasks\bEG 2015-09-21 23:56 - 2015-09-23 21:12 - 00023040 ___SH C:\Users\Marvin\Desktop\Thumbs.db 2015-09-21 20:30 - 2015-09-21 20:30 - 00002168 _____ C:\Users\Marvin\Desktop\DesertCombat.lnk 2015-09-21 20:30 - 2015-09-21 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DesertCombat 2015-09-21 20:30 - 2015-09-21 20:15 - 00729088 _____ (Indigo Rose Corporation) C:\WINDOWS\iun6002.exe 2015-09-21 20:27 - 2015-09-21 20:27 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC_Final_Client 2015-09-21 20:27 - 2015-09-21 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DC_Final_Client 2015-09-21 18:30 - 2015-09-23 21:53 - 00000000 ____D C:\AdwCleaner 2015-09-21 18:10 - 2015-09-23 22:16 - 00000000 ____D C:\FRST 2015-09-21 17:30 - 2015-09-21 17:30 - 00000000 ____D C:\Users\Marvin\Documents\benko 2015-09-21 17:26 - 2015-09-21 17:26 - 00000000 ____D C:\Users\Marvin\AppData\Local\GameSpy 2015-09-21 17:23 - 2015-09-21 17:23 - 00000094 _____ C:\Users\Marvin\AppData\Local\fusioncache.dat 2015-09-21 15:26 - 2015-09-21 15:26 - 00001987 _____ C:\Users\Public\Desktop\GameSpy Comrade.lnk 2015-09-21 15:26 - 2015-09-21 15:26 - 00000000 ____D C:\Users\Marvin\Documents\My Games 2015-09-21 15:26 - 2015-09-21 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy 2015-09-21 15:25 - 2015-09-21 15:25 - 00000000 ____D C:\Program Files (x86)\GameSpy 2015-09-21 15:23 - 2015-09-21 15:23 - 01805156 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2015-09-21 15:23 - 2015-09-21 15:23 - 00000000 __RHD C:\Users\Marvin\AppData\Roaming\SecuROM 2015-09-21 15:22 - 2015-09-21 15:22 - 00000000 ____D C:\WINDOWS\SysWOW64\URTTEMP 2015-09-21 15:19 - 2015-09-21 15:19 - 00669184 _____ C:\WINDOWS\SysWOW64\pbsvc.exe 2015-09-21 15:17 - 2015-09-21 15:17 - 00001322 _____ C:\Users\Public\Desktop\Crysis.lnk 2015-09-21 15:16 - 2015-09-21 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts 2015-09-21 14:57 - 2015-09-21 14:57 - 00000000 ____D C:\Program Files (x86)\Electronic Arts 2015-09-21 14:30 - 2015-09-23 19:47 - 00000000 ____D C:\ProgramData\Jason 2015-09-21 14:30 - 2015-09-21 14:30 - 00000000 ____D C:\Users\Marvin\AppData\Local\cu 2015-09-21 11:44 - 2015-06-11 09:36 - 00072154 _____ C:\WINDOWS\procexp.chm 2015-09-21 11:44 - 2015-05-11 13:56 - 02508432 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\procexp.exe 2015-09-21 11:44 - 2015-01-26 09:19 - 00002009 _____ C:\WINDOWS\Eula.txt 2015-09-21 11:43 - 2015-09-21 11:47 - 00002064 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk 2015-09-21 11:43 - 2015-09-21 11:47 - 00002034 _____ C:\Users\Marvin\Desktop\FileHippo App Manager.lnk 2015-09-21 11:43 - 2015-09-21 11:47 - 00000000 ____D C:\Program Files (x86)\FileHippo.com 2015-09-21 11:41 - 2015-09-21 18:10 - 00000000 ____D C:\Program Files (x86)\SecurityXploded 2015-09-21 11:39 - 2015-09-23 19:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\AppUpd 2015-09-21 11:39 - 2015-09-21 11:39 - 00003306 _____ C:\WINDOWS\System32\Tasks\App Update 2015-09-21 11:39 - 2015-09-21 11:39 - 00001133 _____ C:\Users\Public\Desktop\herdProtect.lnk 2015-09-21 11:39 - 2015-09-21 11:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect 2015-09-21 11:39 - 2015-09-21 11:39 - 00000000 ____D C:\Program Files\Reason 2015-09-21 11:20 - 2015-09-21 11:20 - 00001028 _____ C:\Users\Public\Desktop\TweakMe!.lnk 2015-09-21 11:20 - 2015-09-21 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakMe! 2015-09-21 11:20 - 2015-09-21 11:20 - 00000000 ____D C:\Program Files (x86)\TweakMe! 2015-09-20 20:58 - 2015-09-20 20:58 - 00280904 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr 2015-09-20 20:58 - 2015-09-20 20:58 - 00000000 ____D C:\Users\Marvin\AppData\Local\PunkBuster 2015-09-20 20:23 - 2014-11-07 14:03 - 22538240 _____ (THC) C:\Users\Marvin\Desktop\ZloBF3Launcher.exe 2015-09-20 19:42 - 2015-09-20 19:52 - 00000000 ____D C:\Users\Marvin\Desktop\BF2 MODS 2015-09-20 17:25 - 2015-09-20 17:41 - 00000000 ____D C:\Users\Marvin\Documents\Battlefield 3 2015-09-20 17:25 - 2015-09-20 17:25 - 00000000 ____D C:\ProgramData\EA Core 2015-09-20 17:24 - 2015-09-20 17:24 - 00002967 _____ C:\Users\Marvin\Desktop\Venice Unleashed.lnk 2015-09-20 17:24 - 2015-09-20 17:24 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Venice Unleashed 2015-09-20 17:20 - 2015-09-20 17:20 - 00001190 _____ C:\Users\Public\Desktop\Battlefield 3.lnk 2015-09-20 17:20 - 2015-09-20 17:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3 2015-09-20 16:32 - 2015-09-21 15:19 - 00103736 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe 2015-09-20 16:32 - 2015-09-21 15:19 - 00066872 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe 2015-09-20 16:32 - 2015-09-20 17:20 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0 2015-09-20 15:23 - 2015-09-20 15:24 - 00000000 ____D C:\Program Files (x86)\Origin Games 2015-09-20 15:19 - 2015-09-20 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Origin 2015-09-20 15:19 - 2015-09-20 15:23 - 00000000 ____D C:\Users\Marvin\AppData\Local\Origin 2015-09-20 15:17 - 2015-09-21 10:02 - 00000000 ____D C:\ProgramData\Origin 2015-09-20 15:17 - 2015-09-20 17:25 - 00000000 ____D C:\ProgramData\Electronic Arts 2015-09-20 15:17 - 2015-09-20 15:19 - 00000000 ____D C:\Program Files (x86)\Origin 2015-09-20 15:17 - 2015-09-20 15:17 - 00000995 _____ C:\Users\Public\Desktop\Origin.lnk 2015-09-20 15:17 - 2015-09-20 15:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-09-20 14:48 - 2015-09-20 14:48 - 00000424 _____ C:\Users\Marvin\Desktop\Dieser PC - Verknüpfung.lnk 2015-09-20 14:10 - 2015-09-20 14:11 - 00000660 _____ C:\WINDOWS\eReg.dat 2015-09-20 14:10 - 2015-09-20 14:10 - 00002136 _____ C:\Users\Public\Desktop\Battlefield 1942 Secret Weapons of WWII.lnk 2015-09-20 14:08 - 2015-09-20 14:08 - 00002136 _____ C:\Users\Public\Desktop\Battlefield 1942 The Road To Rome.lnk 2015-09-20 14:05 - 2015-09-20 14:05 - 00002110 _____ C:\Users\Public\Desktop\Battlefield 1942.lnk 2015-09-20 14:03 - 1998-06-17 17:07 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mfc42loc.dll 2015-09-20 14:00 - 2015-09-23 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES 2015-09-20 13:58 - 2015-09-23 20:19 - 00000000 ____D C:\Program Files (x86)\EA GAMES 2015-09-20 13:38 - 2015-09-20 13:38 - 00000000 ___RD C:\Users\Marvin\Documents\MEGAsync 2015-09-20 12:48 - 2015-09-20 12:48 - 00000220 _____ C:\Users\Marvin\Desktop\Garry's Mod.url 2015-09-20 10:51 - 2015-09-20 10:51 - 00000000 ____D C:\Users\Marvin\AppData\Local\Logitech 2015-09-19 22:32 - 2013-04-23 00:33 - 370087936 _____ C:\Users\Marvin\Desktop\Windows NT Workstation 5.0 Evaluation.iso 2015-09-19 22:18 - 2015-09-21 08:38 - 00000000 ____D C:\Program Files\Common Files\McAfee 2015-09-19 22:18 - 2015-09-19 22:22 - 00000000 ____D C:\ProgramData\McAfee 2015-09-19 22:03 - 2015-09-19 22:03 - 00000000 ___RD C:\Sandbox 2015-09-19 22:00 - 2015-09-21 11:37 - 00001610 _____ C:\WINDOWS\Sandboxie.ini 2015-09-19 22:00 - 2015-09-19 22:00 - 00000926 _____ C:\Users\Marvin\Desktop\Sandboxed Web Browser.lnk 2015-09-19 22:00 - 2015-09-19 22:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie 2015-09-19 22:00 - 2015-09-19 22:00 - 00000000 ____D C:\Program Files\Sandboxie 2015-09-19 21:59 - 2015-09-19 21:59 - 04514008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2015-09-19 21:59 - 2015-09-19 21:59 - 02702552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2015-09-19 21:59 - 2015-09-19 21:59 - 01310936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2015-09-19 21:59 - 2015-09-19 21:59 - 00184688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2015-09-19 21:58 - 2015-09-19 21:59 - 35222128 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2015-09-19 21:58 - 2015-09-19 21:58 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll 2015-09-19 21:58 - 2015-09-19 21:58 - 01749208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2015-09-19 21:54 - 2015-09-21 18:15 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\IObit 2015-09-19 21:54 - 2015-09-21 18:15 - 00000000 ____D C:\ProgramData\IObit 2015-09-19 21:54 - 2015-09-19 21:54 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS 2015-09-19 21:53 - 2015-09-21 18:14 - 00000000 ____D C:\Program Files (x86)\IObit 2015-09-19 21:25 - 2015-06-27 01:27 - 00129472 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpnk.sys 2015-09-19 21:24 - 2015-06-12 17:51 - 00037184 _____ (Razer, Inc.) C:\WINDOWS\system32\Drivers\rzpmgrk.sys 2015-09-19 21:21 - 2015-09-19 21:21 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.60.0 2015-09-19 21:16 - 2015-09-19 21:25 - 00000000 ____D C:\Program Files (x86)\Razer 2015-09-19 21:16 - 2015-09-19 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2015-09-19 21:14 - 2015-09-19 21:26 - 00000000 ____D C:\ProgramData\Razer 2015-09-19 21:14 - 2015-09-19 21:14 - 00000000 ____D C:\Users\Marvin\AppData\Local\Razer 2015-09-19 19:28 - 2015-09-19 19:28 - 06051033 _____ C:\Users\Marvin\Desktop\huzuni-new.zip 2015-09-19 18:32 - 2015-09-19 19:47 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\.minecraft 2015-09-19 18:32 - 2015-09-19 18:32 - 00000000 ____D C:\Users\Marvin\Downloads\runtime 2015-09-19 18:32 - 2015-09-19 18:32 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\java 2015-09-19 18:31 - 2015-09-19 18:32 - 00000000 ____D C:\Users\Marvin\Downloads\game 2015-09-19 18:15 - 2015-09-19 18:15 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\TeamViewer 2015-09-19 17:43 - 2015-09-19 19:49 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Tunngle 2015-09-19 17:43 - 2015-09-19 17:45 - 00000000 ____D C:\ProgramData\Tunngle 2015-09-19 17:43 - 2015-09-19 17:45 - 00000000 ____D C:\Program Files (x86)\Tunngle 2015-09-19 17:43 - 2015-09-19 17:43 - 00001007 _____ C:\Users\Public\Desktop\Tunngle.lnk 2015-09-19 17:43 - 2015-09-19 17:43 - 00000000 ____D C:\Users\Public\Documents\Tunngle 2015-09-19 17:43 - 2015-09-19 17:43 - 00000000 ____D C:\Users\Marvin\Documents\Tunngle 2015-09-19 17:43 - 2015-09-19 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2015-09-19 16:48 - 2015-09-19 16:48 - 00000000 ____D C:\Users\Marvin\Documents\My Cheat Tables 2015-09-19 16:47 - 2015-09-19 16:47 - 00001101 _____ C:\Users\Marvin\Desktop\Cheat Engine.lnk 2015-09-19 16:47 - 2015-09-19 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4 2015-09-19 16:47 - 2015-09-19 16:47 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.4 2015-09-19 16:02 - 2015-09-19 16:50 - 00000000 ____D C:\Users\Marvin\Documents\Euro Truck Simulator 2 2015-09-19 15:18 - 2015-04-01 05:30 - 13784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmms.exe 2015-09-19 15:18 - 2015-03-09 02:25 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmickvpexchange.dll 2015-09-19 15:18 - 2015-03-09 02:24 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicguestinterface.dll 2015-09-19 15:18 - 2015-03-09 02:23 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicshutdown.dll 2015-09-19 15:18 - 2015-03-09 02:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimesync.dll 2015-09-19 15:18 - 2015-03-09 02:22 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicheartbeat.dll 2015-09-19 15:18 - 2015-03-09 02:21 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicvss.dll 2015-09-19 15:18 - 2015-03-09 02:20 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicrdv.dll 2015-09-19 14:17 - 2015-09-23 21:58 - 27590656 _____ C:\WINDOWS\system32\vmguest.iso 2015-09-19 13:58 - 2015-09-19 14:01 - 00000000 ____D C:\Program Files\Hyper-V 2015-09-19 13:58 - 2015-09-19 14:00 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hyper-V Management Tools 2015-09-19 13:58 - 2015-09-19 14:00 - 00000000 ____D C:\WINDOWS\vmguest 2015-09-19 13:58 - 2015-09-19 13:58 - 00000000 ____D C:\WINDOWS\system32\BestPractices 2015-09-19 13:58 - 2015-09-19 13:58 - 00000000 ____D C:\Users\Public\Documents\Hyper-V 2015-09-19 00:57 - 2015-09-19 00:57 - 00000613 _____ C:\Users\Public\Desktop\Aerosoft Launcher.lnk 2015-09-19 00:57 - 2015-09-19 00:57 - 00000000 ____D C:\Aerosoft 2015-09-19 00:49 - 2015-09-19 00:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aerosoft 2015-09-18 21:59 - 2015-09-18 21:59 - 00001304 _____ C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk 2015-09-18 21:59 - 2015-09-18 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation 2015-09-18 21:59 - 2015-09-18 21:59 - 00000000 ____D C:\Program Files (x86)\Western Digital Corporation 2015-09-18 21:58 - 2015-09-20 15:19 - 00000000 ____D C:\ProgramData\Package Cache 2015-09-18 21:58 - 2015-09-18 21:58 - 00001421 _____ C:\Users\Public\Desktop\SeaTools for Windows.lnk 2015-09-18 21:57 - 2015-09-18 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate 2015-09-18 21:57 - 2015-09-18 21:57 - 00000000 ____D C:\Program Files (x86)\Seagate 2015-09-18 21:51 - 2015-09-18 21:51 - 00000996 _____ C:\Users\Marvin\Desktop\Dr. Hardware 2014.lnk 2015-09-18 21:51 - 2015-09-18 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dr. Hardware 2014 2015-09-18 21:51 - 2015-09-18 21:51 - 00000000 ____D C:\Program Files (x86)\Dr. Hardware 2014 2015-09-18 21:51 - 2013-07-21 18:41 - 00013760 _____ C:\WINDOWS\SysWOW64\Drivers\DRHMSR64.sys 2015-09-18 21:51 - 2013-07-21 18:41 - 00013760 _____ C:\WINDOWS\system32\Drivers\DRHMSR64.sys 2015-09-18 21:51 - 2011-11-03 19:05 - 00021984 _____ (Licensed for Gebhard Software) C:\WINDOWS\SysWOW64\Drivers\DRHARD64.sys 2015-09-18 21:51 - 2011-11-03 19:05 - 00021984 _____ (Licensed for Gebhard Software) C:\WINDOWS\system32\Drivers\DRHARD64.sys 2015-09-18 21:45 - 2015-09-21 11:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\Abelssoft 2015-09-18 21:45 - 2015-09-19 11:48 - 00000000 ____D C:\Users\Marvin\AppData\Local\Abelssoft 2015-09-18 21:45 - 2015-09-18 21:45 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Abelssoft 2015-09-18 21:45 - 2015-09-18 21:45 - 00000000 ____D C:\ProgramData\XDMessagingv4 2015-09-18 15:30 - 2015-09-18 15:30 - 00000000 ____D C:\m-r-software 2015-09-17 22:48 - 2015-09-22 18:33 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager 2015-09-17 22:48 - 2015-09-21 22:42 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\IDM 2015-09-17 22:48 - 2015-09-17 22:48 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2015-09-17 22:48 - 2015-09-17 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2015-09-17 21:33 - 2015-09-17 21:33 - 00000000 ____D C:\Users\Marvin\.android 2015-09-17 21:24 - 2015-09-17 21:56 - 00000000 ____D C:\Users\Marvin\AppData\Local\Genymobile 2015-09-17 21:23 - 2015-09-17 21:32 - 00000000 ____D C:\Users\Marvin\.VirtualBox 2015-09-17 21:22 - 2015-09-17 21:22 - 00001092 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk 2015-09-17 21:22 - 2015-09-17 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2015-09-17 21:22 - 2015-09-08 11:48 - 00964392 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2015-09-17 21:22 - 2015-09-08 11:47 - 00138904 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2015-09-17 21:19 - 2015-09-17 21:19 - 00000000 ____D C:\Program Files\Oracle 2015-09-17 21:14 - 2015-09-17 21:14 - 00000997 _____ C:\Users\Public\Desktop\Genymotion.lnk 2015-09-17 21:14 - 2015-09-17 21:14 - 00000992 _____ C:\Users\Public\Desktop\Genymotion Shell.lnk 2015-09-17 21:14 - 2015-09-17 21:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genymotion 2015-09-17 21:12 - 2015-09-17 21:12 - 00000000 ____D C:\Program Files\Genymobile 2015-09-17 20:47 - 2015-09-17 20:47 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Andy_45_Online 2015-09-17 20:47 - 2015-09-17 20:47 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Andy 2015-09-17 20:40 - 2015-09-17 20:40 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\NVIDIA 2015-09-17 20:34 - 2015-09-17 20:44 - 00000000 ____D C:\SocketeQ 2015-09-16 20:18 - 2015-09-21 23:54 - 00000078 _____ C:\Users\Marvin\Desktop\maptools.ini 2015-09-16 20:14 - 2014-04-18 01:17 - 00692736 _____ (Thiago Sobral) C:\Users\Marvin\Desktop\maptools.exe 2015-09-16 18:50 - 2015-08-22 15:42 - 00901264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00984448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-09-16 18:50 - 2015-08-22 15:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-09-16 18:50 - 2015-08-10 20:15 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2015-09-16 18:50 - 2015-08-10 20:15 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2015-09-16 18:50 - 2015-08-10 20:06 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2015-09-16 18:50 - 2015-08-10 19:49 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2015-09-16 18:50 - 2015-08-10 18:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-09-16 18:50 - 2015-08-10 18:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2015-09-16 18:50 - 2015-08-07 23:41 - 07460168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-09-16 18:50 - 2015-08-07 23:40 - 01736520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 01134752 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 00686960 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2015-09-16 18:50 - 2015-08-07 23:40 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2015-09-16 18:50 - 2015-08-07 16:13 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2015-09-16 18:50 - 2015-08-06 21:16 - 01424712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2015-09-16 18:50 - 2015-08-06 21:16 - 01392968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2015-09-16 18:50 - 2015-08-06 21:16 - 01381704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2015-09-16 18:50 - 2015-08-06 21:16 - 01265992 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2015-09-16 18:50 - 2015-08-06 21:15 - 01658544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-09-16 18:50 - 2015-08-06 21:15 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-09-16 18:50 - 2015-08-06 21:15 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-09-16 18:50 - 2015-08-06 21:15 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-09-16 18:50 - 2015-08-06 18:47 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2015-09-16 18:50 - 2015-08-06 18:18 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2015-09-16 18:50 - 2015-07-16 20:58 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll 2015-09-16 18:50 - 2015-05-12 02:24 - 00068952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2015-09-16 18:50 - 2015-05-12 02:24 - 00019800 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2015-09-16 18:49 - 2015-08-06 19:05 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2015-09-16 18:49 - 2015-08-06 18:37 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2015-09-16 17:48 - 2015-09-21 17:56 - 00001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-09-16 17:48 - 2015-09-21 17:56 - 00001047 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-09-16 17:48 - 2015-09-21 17:56 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-09-16 16:03 - 2015-09-23 21:54 - 00009626 _____ C:\WINDOWS\setupact.log 2015-09-16 16:03 - 2015-09-16 16:03 - 00000000 _____ C:\WINDOWS\setuperr.log 2015-09-15 19:24 - 2015-09-15 19:24 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux 2015-09-15 19:24 - 2015-09-15 19:24 - 00000000 ____D C:\Users\Marvin\AppData\Local\FluxSoftware 2015-09-15 18:27 - 2015-09-15 18:27 - 00001143 _____ C:\Users\Public\Desktop\OMSI Addon Manager.lnk 2015-09-15 18:27 - 2015-09-15 18:27 - 00000000 ____D C:\Users\Marvin\AppData\Local\OMSI AM 2015-09-15 18:27 - 2015-09-15 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OMSI Addon Manager 2015-09-15 18:27 - 2015-09-15 18:27 - 00000000 ____D C:\Program Files (x86)\OMSI Addon Manager 2015-09-15 18:14 - 2015-09-15 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2015-09-15 18:14 - 2015-09-15 18:14 - 00000000 ____D C:\Program Files\Logitech 2015-09-15 18:14 - 2015-09-15 18:14 - 00000000 ____D C:\Program Files\Common Files\Logitech 2015-09-15 18:02 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll 2015-09-15 18:02 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll 2015-09-15 18:02 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll 2015-09-15 18:02 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll 2015-09-15 18:02 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll 2015-09-15 18:02 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll 2015-09-15 18:02 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll 2015-09-15 18:02 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll 2015-09-15 18:02 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll 2015-09-15 18:02 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll 2015-09-15 18:02 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll 2015-09-15 18:02 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll 2015-09-15 18:02 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll 2015-09-15 18:02 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll 2015-09-15 18:02 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll 2015-09-15 18:02 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll 2015-09-15 18:02 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll 2015-09-15 18:02 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll 2015-09-15 18:02 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll 2015-09-15 18:02 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll 2015-09-15 18:02 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll 2015-09-15 18:02 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll 2015-09-15 18:02 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll 2015-09-15 18:02 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll 2015-09-15 18:02 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll 2015-09-15 18:02 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll 2015-09-15 18:02 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll 2015-09-15 18:02 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll 2015-09-15 18:02 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll 2015-09-15 18:02 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll 2015-09-15 18:02 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll 2015-09-15 18:02 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll 2015-09-15 18:02 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll 2015-09-15 18:02 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll 2015-09-15 18:02 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll 2015-09-15 18:01 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll 2015-09-15 18:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll 2015-09-15 18:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll 2015-09-15 18:01 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll 2015-09-15 18:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll 2015-09-15 18:01 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll 2015-09-15 18:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll 2015-09-15 18:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll 2015-09-15 18:01 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll 2015-09-15 18:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll 2015-09-15 18:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll 2015-09-15 18:01 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll 2015-09-15 18:01 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll 2015-09-15 18:01 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll 2015-09-15 18:01 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll 2015-09-15 18:01 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll 2015-09-15 18:01 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll 2015-09-15 18:01 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll 2015-09-15 18:01 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll 2015-09-15 18:01 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll 2015-09-15 18:01 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll 2015-09-15 18:01 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll 2015-09-15 18:01 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll 2015-09-15 18:01 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll 2015-09-15 18:01 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll 2015-09-15 18:01 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll 2015-09-15 18:01 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll 2015-09-15 18:01 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll 2015-09-15 18:01 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll 2015-09-15 18:01 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll 2015-09-15 18:01 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll 2015-09-15 18:01 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll 2015-09-15 18:01 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll 2015-09-15 18:01 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll 2015-09-15 18:01 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll 2015-09-15 18:01 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll 2015-09-15 18:01 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll 2015-09-15 18:01 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll 2015-09-15 18:01 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll 2015-09-15 18:01 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll 2015-09-15 18:01 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll 2015-09-15 18:01 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll 2015-09-15 18:01 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll 2015-09-15 18:01 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll 2015-09-15 18:01 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll 2015-09-15 18:01 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll 2015-09-15 18:01 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll 2015-09-15 18:01 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll 2015-09-15 18:01 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll 2015-09-15 18:01 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll 2015-09-15 18:01 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll 2015-09-15 18:01 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll 2015-09-15 18:01 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll 2015-09-15 18:00 - 2015-09-23 20:26 - 00145825 _____ C:\WINDOWS\DirectX.log 2015-09-15 18:00 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll 2015-09-15 18:00 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll 2015-09-15 18:00 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll 2015-09-15 18:00 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll 2015-09-15 17:28 - 2015-09-20 12:48 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2015-09-15 17:13 - 2015-09-15 17:13 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\ESET 2015-09-15 17:13 - 2015-09-15 17:13 - 00000000 ____D C:\Users\Marvin\AppData\Local\ESET 2015-09-15 15:18 - 2015-09-15 15:18 - 00003118 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003092 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003090 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003062 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00003060 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe 2015-09-15 15:18 - 2015-09-15 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus- und Tastatur-Center 2015-09-15 15:16 - 2015-09-15 15:17 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center 2015-09-15 00:27 - 2015-09-15 00:27 - 00000000 ____D C:\Program Files\Common Files\AV 2015-09-15 00:23 - 2015-09-23 22:02 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\DMCache 2015-09-15 00:23 - 2015-09-23 20:57 - 00000000 ____D C:\Users\Marvin\Downloads\Video 2015-09-15 00:23 - 2015-09-23 20:56 - 00000000 ____D C:\Users\Marvin\Downloads\Compressed 2015-09-15 00:23 - 2015-09-21 19:20 - 00001025 _____ C:\Users\Marvin\Desktop\Internet Download Manager.lnk 2015-09-15 00:23 - 2015-09-15 00:23 - 00000000 ____D C:\ProgramData\IDM 2015-09-15 00:10 - 2015-09-15 21:51 - 00000000 ____D C:\ProgramData\CheckPoint 2015-09-14 23:35 - 2015-09-23 20:03 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\vlc 2015-09-14 23:18 - 2015-09-14 23:18 - 00001086 _____ C:\Users\Public\Desktop\VLC media player.lnk 2015-09-14 23:18 - 2015-09-14 23:18 - 00000238 _____ C:\Users\Marvin\.swfinfo 2015-09-14 23:18 - 2015-09-14 23:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-09-14 23:17 - 2015-09-14 23:17 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2015-09-14 22:29 - 2015-09-14 22:29 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Mozilla 2015-09-14 22:28 - 2015-09-14 22:35 - 00000000 ____D C:\Users\Marvin\AppData\Local\Deutsche Telekom AG 2015-09-14 22:28 - 2015-09-14 22:29 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Deutsche Telekom AG 2015-09-14 22:27 - 2015-09-14 22:27 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser 7 der Telekom.lnk 2015-09-14 22:27 - 2015-09-14 22:27 - 00001340 _____ C:\Users\Public\Desktop\Browser 7 der Telekom.lnk 2015-09-14 22:27 - 2015-09-14 22:27 - 00000000 ____D C:\ProgramData\Telekom-Browser 7 2015-09-14 22:27 - 2015-09-14 22:27 - 00000000 ____D C:\Program Files (x86)\Deutsche Telekom AG 2015-09-14 22:27 - 2015-09-14 22:27 - 00000000 ____D C:\Program Files (x86)\Browser 7 Maintenance Service 2015-09-14 22:17 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-09-14 22:17 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-09-14 22:10 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-09-14 22:10 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-09-14 21:59 - 2015-09-14 21:59 - 00000000 ____D C:\Users\Marvin\AppData\Local\Steam 2015-09-14 21:59 - 2015-09-14 21:59 - 00000000 ____D C:\Users\Marvin\AppData\Local\CEF 2015-09-14 21:56 - 2015-09-14 21:56 - 00000000 ____D C:\ProgramData\OMSI AM 2015-09-14 21:40 - 2015-09-15 03:18 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-09-14 21:40 - 2015-09-15 03:18 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files\MSBuild 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-09-14 20:33 - 2015-09-14 20:33 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-09-14 20:32 - 2015-09-14 20:32 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-09-14 20:02 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-09-14 20:02 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-09-14 19:42 - 2015-09-15 15:47 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\ProgramData\Skype 2015-09-14 19:42 - 2015-09-14 19:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-09-14 19:21 - 2015-09-14 19:22 - 00004923 _____ C:\WINDOWS\avmacc.log 2015-09-14 19:21 - 2015-09-14 19:22 - 00003573 _____ C:\WINDOWS\avmsetup.log 2015-09-14 19:21 - 2015-09-14 19:22 - 00002749 _____ C:\WINDOWS\avmadd32.log 2015-09-14 19:21 - 2015-09-14 19:21 - 00000000 ____D C:\Program Files (x86)\AVM_update 2015-09-14 17:33 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll 2015-09-14 17:33 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll 2015-09-14 17:20 - 2015-09-14 17:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-09-14 17:17 - 2015-09-14 17:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-09-14 17:17 - 2015-09-14 17:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-09-14 17:14 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2015-09-14 17:14 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2015-09-14 17:14 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll 2015-09-14 17:14 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll 2015-09-14 17:12 - 2015-09-14 17:12 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2015-09-14 17:03 - 2015-09-23 21:54 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-09-14 17:03 - 2015-09-14 17:03 - 00001118 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-09-14 17:03 - 2015-09-14 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-09-14 17:03 - 2015-09-14 17:03 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-09-14 17:03 - 2015-09-14 17:03 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-09-14 17:03 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-09-14 17:03 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-09-14 17:03 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2015-09-14 17:03 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2015-09-14 17:03 - 2014-11-17 22:17 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2015-09-14 17:03 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll 2015-09-14 17:03 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2015-09-14 17:03 - 2014-11-14 08:46 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll 2015-09-14 17:02 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2015-09-14 17:02 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2015-09-14 17:02 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2015-09-14 17:02 - 2014-11-08 03:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2015-09-14 17:01 - 2014-11-15 21:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2015-09-14 17:01 - 2014-11-15 08:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2015-09-14 17:01 - 2014-11-14 08:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-09-14 17:01 - 2014-11-14 07:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-09-14 17:01 - 2014-11-10 20:06 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2015-09-14 17:01 - 2014-11-10 20:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2015-09-14 17:01 - 2014-11-10 04:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2015-09-14 17:01 - 2014-11-10 03:20 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2015-09-14 17:01 - 2014-11-10 03:08 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2015-09-14 17:01 - 2014-11-10 02:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2015-09-14 17:01 - 2014-11-08 06:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys 2015-09-14 17:01 - 2014-11-08 05:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys 2015-09-14 17:01 - 2014-11-08 05:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp 2015-09-14 17:01 - 2014-11-08 05:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll 2015-09-14 17:01 - 2014-11-08 05:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll 2015-09-14 17:01 - 2014-11-08 05:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll 2015-09-14 17:01 - 2014-11-08 05:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp 2015-09-14 17:01 - 2014-11-08 05:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll 2015-09-14 17:01 - 2014-11-08 05:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll 2015-09-14 17:01 - 2014-11-08 04:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll 2015-09-14 17:01 - 2014-11-08 04:38 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2015-09-14 17:01 - 2014-11-08 04:17 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2015-09-14 17:01 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll 2015-09-14 17:01 - 2014-11-08 03:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe 2015-09-14 17:01 - 2014-11-07 05:58 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2015-09-14 17:01 - 2014-11-07 05:20 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-09-14 17:01 - 2014-11-05 04:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL 2015-09-14 17:01 - 2014-11-05 04:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL 2015-09-14 17:01 - 2014-11-05 04:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll 2015-09-14 17:01 - 2014-11-05 03:44 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2015-09-14 17:01 - 2014-11-05 03:43 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2015-09-14 17:01 - 2014-11-05 03:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2015-09-14 17:01 - 2014-11-05 03:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL 2015-09-14 17:01 - 2014-11-05 03:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL 2015-09-14 17:01 - 2014-11-05 03:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll 2015-09-14 17:01 - 2014-11-05 03:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll 2015-09-14 17:01 - 2014-11-05 03:20 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2015-09-14 17:01 - 2014-11-05 03:18 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2015-09-14 17:01 - 2014-11-05 03:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll 2015-09-14 17:01 - 2014-11-05 03:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll 2015-09-14 17:01 - 2014-11-04 21:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2015-09-14 17:01 - 2014-11-04 21:25 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys 2015-09-14 17:01 - 2014-11-04 21:25 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys 2015-09-14 17:01 - 2014-11-04 08:55 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys 2015-09-14 17:01 - 2014-11-04 08:54 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys 2015-09-14 17:01 - 2014-11-04 08:54 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys 2015-09-14 17:01 - 2014-11-04 08:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys 2015-09-14 17:01 - 2014-11-04 08:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe 2015-09-14 17:01 - 2014-11-04 07:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe 2015-09-14 17:01 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2015-09-14 17:01 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2015-09-14 17:01 - 2014-10-29 05:05 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2015-09-14 17:01 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll 2015-09-14 17:01 - 2014-10-29 03:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2015-09-14 17:01 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2015-09-14 17:01 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll 2015-09-14 17:01 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe 2015-09-14 17:01 - 2014-10-29 03:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll 2015-09-14 17:01 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe 2015-09-14 17:01 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe 2015-09-14 17:01 - 2014-10-21 03:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll 2015-09-14 17:01 - 2014-10-21 03:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll 2015-09-14 17:01 - 2014-10-21 02:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll 2015-09-14 17:01 - 2014-10-21 02:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll 2015-09-14 17:01 - 2014-10-21 02:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll 2015-09-14 17:01 - 2014-10-21 02:30 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2015-09-14 17:01 - 2014-10-21 02:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll 2015-09-14 17:01 - 2014-10-17 06:56 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2015-09-14 17:01 - 2014-10-17 05:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2015-09-14 16:19 - 2015-03-09 04:02 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys 2015-09-14 16:17 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll 2015-09-14 16:17 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2015-09-14 16:17 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe 2015-09-14 16:17 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe 2015-09-14 16:17 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll 2015-09-14 16:17 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll 2015-09-14 16:16 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-09-14 16:16 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-09-14 16:16 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-09-14 16:16 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-09-14 16:16 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-09-14 16:16 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-09-14 16:16 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-09-14 16:16 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-09-14 16:16 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-09-14 16:16 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-09-14 16:16 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-09-14 16:16 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-09-14 16:16 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll 2015-09-14 16:16 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2015-09-14 16:16 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2015-09-14 16:16 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2015-09-14 16:16 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys 2015-09-14 16:16 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2015-09-14 16:16 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2015-09-14 16:16 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2015-09-14 16:16 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2015-09-14 16:16 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2015-09-14 16:16 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll 2015-09-14 16:16 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll 2015-09-14 16:16 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2015-09-14 16:16 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2015-09-14 16:15 - 2015-08-05 16:14 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys 2015-09-14 16:15 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll 2015-09-14 16:15 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll 2015-09-14 16:15 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2015-09-14 16:15 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2015-09-14 16:15 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2015-09-14 16:15 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2015-09-14 16:15 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2015-09-14 16:15 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-09-14 16:15 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe 2015-09-14 16:15 - 2015-06-16 00:41 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe 2015-09-14 16:15 - 2015-06-16 00:24 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2015-09-14 16:15 - 2015-06-15 23:16 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe 2015-09-14 16:15 - 2015-06-15 23:09 - 03607552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2015-09-14 16:15 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-09-14 16:15 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2015-09-14 16:15 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-09-14 16:15 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2015-09-14 16:15 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll 2015-09-14 16:15 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll 2015-09-14 16:15 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-09-14 16:15 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-09-14 16:15 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2015-09-14 16:15 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2015-09-14 16:15 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll 2015-09-14 16:15 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll 2015-09-14 16:15 - 2015-03-17 19:26 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-09-14 16:15 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2015-09-14 16:15 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2015-09-14 16:15 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll 2015-09-14 16:15 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll 2015-09-14 16:15 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2015-09-14 16:15 - 2015-01-30 05:01 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2015-09-14 16:15 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll 2015-09-14 16:15 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll 2015-09-14 16:15 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2015-09-14 16:15 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2015-09-14 16:14 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2015-09-14 16:14 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2015-09-14 16:14 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2015-09-14 16:14 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2015-09-14 16:14 - 2015-06-28 07:07 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2015-09-14 16:14 - 2015-06-28 07:07 - 00178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-09-14 16:14 - 2015-06-28 07:06 - 01311960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2015-09-14 16:14 - 2015-06-28 07:06 - 00332120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2015-09-14 16:14 - 2015-06-27 18:42 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2015-09-14 16:14 - 2015-06-27 05:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2015-09-14 16:14 - 2015-06-27 05:12 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2015-09-14 16:14 - 2015-06-27 05:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2015-09-14 16:14 - 2015-06-27 04:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2015-09-14 16:14 - 2015-06-27 04:05 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-09-14 16:14 - 2015-06-27 04:00 - 00989184 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-09-14 16:14 - 2015-06-27 03:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2015-09-14 16:14 - 2015-06-27 03:26 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-09-14 16:14 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-09-14 16:14 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-09-14 16:14 - 2015-05-30 23:18 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2015-09-14 16:14 - 2015-05-30 21:36 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-09-14 16:14 - 2015-05-30 21:35 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-09-14 16:14 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2015-09-14 16:14 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2015-09-14 16:14 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll 2015-09-14 16:14 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll 2015-09-14 16:14 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll 2015-09-14 16:14 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-09-14 16:14 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2015-09-14 16:14 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe 2015-09-14 16:14 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2015-09-14 16:14 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-09-14 16:14 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2015-09-14 16:14 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2015-09-14 16:14 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2015-09-14 16:14 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll 2015-09-14 16:14 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2015-09-14 16:14 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2015-09-14 16:13 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-09-14 16:13 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-09-14 16:13 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-09-14 16:13 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-09-14 16:13 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-09-14 16:13 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-09-14 16:13 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-09-14 16:13 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-09-14 16:13 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-09-14 16:13 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-09-14 16:13 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2015-09-14 16:13 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-09-14 16:13 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-09-14 16:13 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-09-14 16:13 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-09-14 16:13 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-09-14 16:13 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-09-14 16:13 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-09-14 16:13 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-09-14 16:13 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-09-14 16:13 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll 2015-09-14 16:13 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-09-14 16:13 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-09-14 16:13 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-09-14 16:13 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-09-14 16:13 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2015-09-14 16:13 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-09-14 16:13 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-09-14 16:13 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2015-09-14 16:13 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2015-09-14 16:13 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll 2015-09-14 16:13 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2015-09-14 16:13 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2015-09-14 16:13 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll 2015-09-14 16:13 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-09-14 16:13 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-09-14 16:13 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll 2015-09-14 16:13 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2015-09-14 16:13 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll 2015-09-14 16:13 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2015-09-14 16:13 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2015-09-14 16:13 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll 2015-09-14 16:13 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2015-09-14 16:13 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll 2015-09-14 16:13 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2015-09-14 16:13 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll 2015-09-14 16:13 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2015-09-14 16:13 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2015-09-14 16:13 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2015-09-14 16:13 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll 2015-09-14 16:13 - 2015-01-12 04:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll 2015-09-14 16:13 - 2015-01-12 03:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll 2015-09-14 16:12 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll 2015-09-14 16:12 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll 2015-09-14 16:12 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll 2015-09-14 16:12 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll 2015-09-14 16:12 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll 2015-09-14 16:12 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll 2015-09-14 16:12 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe 2015-09-14 16:12 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe 2015-09-14 16:12 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2015-09-14 16:12 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2015-09-14 16:09 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2015-09-14 16:09 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-09-14 16:09 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-09-14 16:09 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-09-14 16:09 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-09-14 16:09 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-09-14 16:09 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-09-14 16:09 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-09-14 16:09 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-09-14 16:09 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-09-14 16:09 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-09-14 16:09 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2015-09-14 16:09 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2015-09-14 16:09 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2015-09-14 16:09 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2015-09-14 16:09 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys 2015-09-14 16:09 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys 2015-09-14 16:09 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys 2015-09-14 16:09 - 2015-07-03 23:51 - 01380056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-09-14 16:09 - 2015-07-03 16:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-09-14 16:09 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2015-09-14 16:09 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll 2015-09-14 16:09 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-09-14 16:09 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-09-14 16:09 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-09-14 16:09 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2015-09-14 16:09 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2015-09-14 16:09 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys 2015-09-14 16:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2015-09-14 16:09 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2015-09-14 16:09 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll 2015-09-14 16:09 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll 2015-09-14 16:08 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-09-14 16:08 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-09-14 16:08 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-09-14 16:08 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-09-14 16:08 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-09-14 16:08 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2015-09-14 16:08 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll 2015-09-14 16:08 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2015-09-14 16:08 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2015-09-14 16:08 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll 2015-09-14 16:08 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll 2015-09-14 16:08 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll 2015-09-14 16:08 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll 2015-09-14 16:08 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll 2015-09-14 16:08 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll 2015-09-14 16:08 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll 2015-09-14 15:59 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll 2015-09-14 15:59 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll 2015-09-14 15:59 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll 2015-09-14 15:59 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll 2015-09-14 15:59 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2015-09-14 15:59 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2015-09-14 15:59 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll 2015-09-14 15:59 - 2015-03-09 04:02 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys 2015-09-14 15:59 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-09-14 15:58 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe 2015-09-14 15:58 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe 2015-09-14 15:58 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-09-14 15:58 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe 2015-09-14 15:58 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe 2015-09-14 15:58 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-09-14 15:58 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-09-14 15:58 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-09-14 15:58 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-09-14 15:58 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll 2015-09-14 15:58 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll 2015-09-14 15:58 - 2015-07-13 21:10 - 00411455 _____ C:\WINDOWS\system32\ApnDatabase.xml 2015-09-14 15:58 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2015-09-14 15:58 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2015-09-14 15:58 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2015-09-14 15:58 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2015-09-14 15:58 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2015-09-14 15:58 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2015-09-14 15:58 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe 2015-09-14 15:58 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2015-09-14 15:58 - 2015-06-16 07:36 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2015-09-14 15:58 - 2015-06-16 07:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2015-09-14 15:58 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2015-09-14 15:58 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2015-09-14 15:58 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll 2015-09-14 15:58 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls 2015-09-14 15:58 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\system32\locale.nls 2015-09-14 15:58 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2015-09-14 15:58 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2015-09-14 15:58 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-09-14 15:58 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-09-14 15:58 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-09-14 15:58 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-09-14 15:58 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-09-14 15:58 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2015-09-14 15:58 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2015-09-14 15:58 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll 2015-09-14 15:58 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2015-09-14 15:58 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2015-09-14 15:58 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-09-14 15:58 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-09-14 15:58 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2015-09-14 15:58 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2015-09-14 15:58 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2015-09-14 15:58 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2015-09-14 15:58 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-09-14 15:58 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-09-14 15:58 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2015-09-14 15:58 - 2015-03-13 06:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2015-09-14 15:58 - 2015-03-13 06:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2015-09-14 15:58 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll 2015-09-14 15:58 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll 2015-09-14 15:58 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2015-09-14 15:58 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2015-09-14 15:58 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2015-09-14 15:58 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2015-09-14 15:58 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2015-09-14 15:58 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2015-09-14 15:58 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2015-09-14 15:58 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2015-09-14 15:58 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2015-09-14 15:57 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll 2015-09-14 15:57 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll 2015-09-14 15:57 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll 2015-09-14 15:57 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe 2015-09-14 15:57 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2015-09-14 15:57 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2015-09-14 15:57 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2015-09-14 15:57 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2015-09-14 15:57 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-09-14 15:57 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2015-09-14 15:56 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll 2015-09-14 15:56 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll 2015-09-14 15:56 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll 2015-09-14 15:56 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll 2015-09-14 15:56 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll 2015-09-14 15:56 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll 2015-09-14 15:56 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll 2015-09-14 15:56 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll 2015-09-14 15:56 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe 2015-09-14 15:56 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2015-09-14 15:56 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2015-09-14 15:54 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll 2015-09-14 15:50 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2015-09-14 15:42 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2015-09-14 15:42 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2015-09-14 15:28 - 2015-09-19 13:37 - 00001106 _____ C:\Users\Marvin\Desktop\MEGAsync.lnk |
|
23.09.2015, 21:39
| #11 |
| | Chrome Erweiterung nicht löschbar FRST Teil 2: Code:
ATTFilter 2015-09-14 15:28 - 2015-09-14 16:03 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-14 15:28 - 2015-09-14 15:28 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2015-09-14 15:28 - 2015-09-14 15:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\Mega Limited
2015-09-14 15:27 - 2015-09-19 13:37 - 00000000 ____D C:\Users\Marvin\AppData\Local\MEGAsync
2015-09-14 15:20 - 2015-09-23 21:55 - 00000000 ____D C:\Program Files (x86)\Steam
2015-09-14 15:20 - 2015-09-14 15:20 - 00000979 _____ C:\Users\Public\Desktop\Steam.lnk
2015-09-14 15:20 - 2015-09-14 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-14 15:19 - 2015-09-14 15:19 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-09-14 15:18 - 2015-09-14 15:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-09-14 15:18 - 2015-09-14 15:18 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-09-14 15:13 - 2015-09-14 15:13 - 00001454 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-14 15:13 - 2015-09-14 15:13 - 00000020 ___SH C:\Users\Marvin\ntuser.ini
2015-09-14 15:10 - 2015-09-14 15:16 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-09-14 15:10 - 2015-09-14 15:10 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-09-14 15:07 - 2015-08-11 04:47 - 02757072 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-09-14 15:07 - 2015-08-11 04:47 - 02414096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-09-14 15:06 - 2015-07-09 20:48 - 00131712 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2015-09-14 15:06 - 2015-07-09 20:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-09-14 15:06 - 2015-07-09 19:59 - 00112624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2015-09-14 15:06 - 2015-06-27 05:08 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-09-14 15:06 - 2015-06-27 05:08 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-09-14 15:06 - 2015-06-27 04:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-09-14 15:06 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-09-14 15:06 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-09-14 15:04 - 2015-09-14 15:04 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-09-14 15:03 - 2015-09-14 15:03 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-09-14 14:55 - 2015-09-14 14:55 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-09-14 14:53 - 2015-09-14 14:53 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-09-14 14:52 - 2015-09-23 21:53 - 00000000 ____D C:\Users\Marvin
2015-09-14 14:52 - 2015-09-14 15:03 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2015-09-14 14:52 - 2015-09-14 15:03 - 00020958 _____ C:\WINDOWS\diagerr.xml
2015-09-14 14:52 - 2015-09-14 14:53 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-14 14:52 - 2015-09-14 14:53 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Vorlagen
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Startmenü
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Netzwerkumgebung
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Lokale Einstellungen
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Eigene Dateien
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Druckumgebung
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Documents\Eigene Musik
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Documents\Eigene Bilder
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\AppData\Local\Verlauf
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\AppData\Local\Anwendungsdaten
2015-09-14 14:52 - 2015-09-14 14:52 - 00000000 _SHDL C:\Users\Marvin\Anwendungsdaten
2015-09-14 14:52 - 2014-11-21 13:08 - 00000000 ___RD C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 14:52 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-09-14 14:52 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-09-14 14:52 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-14 14:46 - 2015-09-23 22:08 - 01712366 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-14 14:46 - 2015-09-23 21:54 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-14 14:46 - 2015-09-23 17:08 - 00035551 _____ C:\WINDOWS\avmfwlanci.log
2015-09-14 14:46 - 2015-09-19 22:00 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-09-14 14:46 - 2015-09-14 14:54 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-14 14:46 - 2015-09-14 14:54 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-14 14:46 - 2015-09-14 14:54 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-14 14:46 - 2015-09-14 14:46 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-09-14 14:46 - 2015-09-14 14:46 - 00000000 ____D C:\Program Files\Realtek
2015-09-14 14:46 - 2015-08-25 16:24 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-14 14:46 - 2015-08-25 16:24 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-14 14:46 - 2015-08-25 16:24 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-14 14:46 - 2015-08-25 14:35 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-14 14:03 - 2015-09-14 15:03 - 00006517 _____ C:\WINDOWS\comsetup.log
2015-09-14 13:32 - 2015-09-23 22:14 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-14 13:11 - 2015-09-14 13:47 - 00000000 __RHD C:\ESD
2015-09-14 12:18 - 2015-09-15 00:47 - 00000000 ____D C:\Program Files\KMSpico
2015-09-14 12:18 - 2015-09-14 14:55 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-09-14 12:18 - 2015-09-14 12:18 - 00004608 _____ C:\WINDOWS\SECOH-QAD.exe
2015-09-14 12:18 - 2015-09-14 12:18 - 00003584 _____ C:\WINDOWS\SECOH-QAD.dll
2015-09-14 12:18 - 2015-09-14 12:18 - 00000000 ____D C:\Program Files\Unlocker
2015-09-13 22:06 - 2015-07-05 12:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-09-13 22:03 - 2014-08-08 18:31 - 00027136 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\ptun0901.sys
2015-09-13 22:03 - 2014-05-25 02:36 - 00015360 _____ C:\WINDOWS\system32\SppExtComObjHook.dll
2015-09-13 22:03 - 2014-05-25 02:36 - 00004608 _____ C:\WINDOWS\system32\SppExtComObjPatcher.exe
2015-09-13 22:02 - 2015-09-14 12:11 - 00000000 ____D C:\Users\Marvin\AppData\Local\MSfree Inc
2015-09-13 21:52 - 2015-09-19 00:08 - 00011353 _____ C:\WINDOWS\AVMInstall.Log
2015-09-13 21:52 - 2015-09-19 00:08 - 00000000 ____D C:\Program Files (x86)\avmwlanstick
2015-09-13 21:52 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!WLAN
2015-09-13 21:52 - 2015-09-13 21:52 - 00002077 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-09-13 21:52 - 2015-09-13 21:52 - 00000000 ____D C:\WINDOWS\AVM_Driver
2015-09-13 21:52 - 2015-09-13 21:52 - 00000000 ____D C:\Users\Marvin\AVM_Driver
2015-09-13 20:51 - 2015-09-13 20:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-13 20:51 - 2015-08-26 18:37 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-09-13 20:31 - 2015-09-13 20:41 - 00003172 _____ C:\WINDOWS\wsusofflineupdate.log
2015-09-13 20:20 - 2015-09-13 20:20 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-09-13 20:19 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-09-13 20:19 - 2015-09-13 20:19 - 00000000 ____D C:\Program Files\7-Zip
2015-09-13 20:03 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-13 20:03 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-09-13 20:03 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-09-13 20:03 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-09-13 20:02 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-09-13 20:02 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-09-13 20:02 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-09-13 20:02 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-13 20:02 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2015-09-13 20:02 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-13 20:02 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO64.dll
2015-09-13 20:02 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO32.dll
2015-09-13 20:02 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBppld64.dll
2015-09-13 20:02 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-09-13 20:02 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-09-13 20:02 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-13 20:02 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBPPCn64.dll
2015-09-13 20:01 - 2015-09-23 20:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-13 20:01 - 2015-09-13 20:04 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-09-13 20:01 - 2015-09-13 20:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-09-13 20:01 - 2015-05-27 17:38 - 02825944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-09-13 20:01 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-09-13 20:01 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 42840368 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 17082392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 15512888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 14635792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 12515016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-13 19:54 - 2015-08-25 20:46 - 03527696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 03112904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00879000 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-13 19:54 - 2015-08-25 20:46 - 00033025 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-13 19:46 - 2015-09-14 23:45 - 00000000 ____D C:\Users\Marvin\AppData\Local\NVIDIA Corporation
2015-09-13 19:45 - 2015-09-13 19:46 - 00000000 ____D C:\Users\Marvin\AppData\Local\NVIDIA
2015-09-13 19:45 - 2015-09-13 19:45 - 00001397 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-09-13 19:45 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-09-13 19:45 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2015-09-13 19:44 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-13 19:44 - 2015-08-27 02:37 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-09-13 19:44 - 2015-08-27 02:37 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-09-13 19:44 - 2015-08-27 02:36 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-09-13 19:44 - 2015-08-27 02:36 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-09-13 19:44 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2015-09-13 19:43 - 2015-08-11 06:52 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-09-13 19:43 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-13 19:43 - 2015-08-11 06:52 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-09-13 19:40 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-13 19:40 - 2015-09-13 19:40 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-09-13 19:40 - 2015-09-13 19:40 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Sun
2015-09-13 19:40 - 2015-09-13 19:40 - 00000000 ____D C:\Users\Marvin\.oracle_jre_usage
2015-09-13 19:39 - 2015-09-13 19:39 - 00000000 ____D C:\ProgramData\Oracle
2015-09-13 19:39 - 2015-09-13 19:39 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-13 19:36 - 2015-09-14 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron (64-Bit)
2015-09-13 19:36 - 2015-09-13 19:36 - 00000000 ____D C:\Users\Marvin\AppData\Local\Chromium
2015-09-13 19:35 - 2015-09-23 22:20 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2840623005-2840827860-1408477528-1001
2015-09-13 19:34 - 2015-08-25 20:46 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-09-13 19:34 - 2015-08-25 20:46 - 00105264 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-09-13 19:32 - 2015-09-14 12:10 - 00000000 __SHD C:\Users\Marvin\AppData\Local\EmieUserList
2015-09-13 19:32 - 2015-09-14 12:10 - 00000000 __SHD C:\Users\Marvin\AppData\Local\EmieSiteList
2015-09-13 19:32 - 2015-09-13 19:32 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Macromedia
2015-09-13 19:30 - 2015-09-23 21:55 - 00000000 ___DO C:\Users\Marvin\OneDrive
2015-09-13 19:23 - 2015-09-13 19:25 - 00000000 ____D C:\Users\Marvin\AppData\Local\PackageStaging
2015-09-13 19:22 - 2015-09-19 19:23 - 00000000 ____D C:\Users\Marvin\AppData\Local\VirtualStore
2015-09-13 19:22 - 2015-09-15 15:19 - 00000000 ____D C:\Users\Marvin\AppData\Local\Packages
2015-09-13 19:22 - 2015-09-13 19:22 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Adobe
2015-09-13 19:14 - 2015-09-13 19:14 - 00000000 ____D C:\WINDOWS\CSC
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-09-13 19:12 - 2015-09-13 19:12 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-09-13 19:11 - 2015-09-14 14:08 - 01362974 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-09-13 18:51 - 2013-06-18 14:18 - 00000001 ___SH C:\BOOTNXT
2015-09-13 15:34 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\WINDOWS\system32\Drivers\tap0901t.sys
2015-09-08 11:47 - 2015-09-08 11:47 - 00146072 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetLwf.sys
2015-09-08 11:47 - 2015-09-08 11:47 - 00117768 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxNetAdp6.sys
2015-09-07 00:17 - 2015-09-07 00:19 - 00000485 _____ C:\runcheck.txt
2015-09-06 20:34 - 2015-09-06 20:34 - 00000050 _____ C:\link.txt
2015-09-03 15:49 - 2015-09-03 15:49 - 00006624 _____ C:\string2.txt
2015-09-03 15:25 - 2015-09-03 15:28 - 00025086 _____ C:\string.txt
2015-09-02 22:26 - 2015-09-02 22:26 - 00469776 _____ (Microsoft Corporation) C:\WINDOWS\system32\coin98ip.dll
2015-08-29 22:03 - 2015-08-29 22:03 - 00000000 ____D C:\temp
2015-08-29 18:00 - 2015-09-13 09:46 - 00001732 _____ C:\DelFix.txt
2015-08-29 14:45 - 2015-08-29 14:45 - 00000000 ____D C:\bac57828cacb877bcfa142
2015-08-29 10:05 - 2015-08-29 10:05 - 00483828 __RSH C:\AQXOR
2015-08-29 01:31 - 2015-08-29 01:31 - 00000000 ____D C:\3b813b75af923fb313a60f6c
2015-08-29 00:28 - 2015-08-29 00:28 - 00000000 ____D C:\d8b1eeb0dada346ebb
2015-08-28 21:39 - 2015-09-14 14:06 - 00008192 __RSH C:\BOOTSECT.BAK
2015-08-28 21:39 - 2014-11-21 06:05 - 00404250 __RSH C:\bootmgr
2015-08-28 20:48 - 2014-03-27 01:00 - 01327744 _____ (AVM GmbH) C:\WINDOWS\system32\Drivers\fwlanusb6.sys
2015-08-28 20:48 - 2014-03-27 01:00 - 00104448 _____ (AVM Berlin) C:\WINDOWS\system32\fwlan6ci.dll
2015-08-28 20:48 - 2014-03-27 01:00 - 00080360 _____ C:\WINDOWS\system32\Drivers\fwlanusb6.bin
2015-08-28 20:45 - 2015-09-14 14:49 - 00000000 ____D C:\Recovery
2015-08-28 20:45 - 2015-08-28 20:45 - 00000000 _SHDL C:\Programme
2015-08-28 20:45 - 2015-08-28 20:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-08-28 14:36 - 2015-06-12 04:00 - 00197616 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-23 22:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-23 21:54 - 2014-11-20 20:24 - 00056516 _____ C:\WINDOWS\PFRO.log
2015-09-23 21:54 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-22 21:39 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-22 18:32 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-22 15:13 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-09-22 15:05 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-21 19:37 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-09-21 17:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-09-21 16:04 - 2013-08-22 16:44 - 00341208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-21 15:23 - 2014-11-21 04:45 - 00774650 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-21 15:23 - 2014-11-21 04:45 - 00163872 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-21 15:23 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2015-09-21 15:17 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-21 09:09 - 2014-11-21 05:35 - 01776922 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-20 13:59 - 2014-11-21 06:06 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-09-20 13:59 - 2014-11-21 06:06 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-09-20 13:59 - 2014-11-21 06:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-09-20 13:59 - 2014-11-21 06:06 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-09-20 13:59 - 2013-08-22 13:22 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-09-20 13:59 - 2013-08-22 13:22 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-09-20 13:59 - 2013-08-22 13:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-09-20 13:59 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-09-20 13:59 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-09-20 13:59 - 2013-08-22 05:56 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-09-20 13:59 - 2013-08-22 05:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-09-20 13:59 - 2013-08-22 05:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-09-20 13:59 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-09-20 13:59 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-09-20 10:35 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\TAPI
2015-09-19 13:58 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\schemas
2015-09-19 00:33 - 2014-11-21 06:06 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwp.exe
2015-09-19 00:33 - 2014-11-21 06:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdvGpuInfo.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wnv.sys
2015-09-19 00:33 - 2014-11-21 06:04 - 00421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\synthnic.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsconfig.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmulatedNic.dll
2015-09-19 00:33 - 2014-11-21 06:04 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wnvapi.dll
2015-09-19 00:33 - 2014-11-21 05:43 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\synthstor.dll
2015-09-19 00:33 - 2014-11-21 05:42 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\synthfcvdev.dll
2015-09-19 00:33 - 2014-11-21 05:42 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pvhdparser.sys
2015-09-19 00:33 - 2014-11-21 05:42 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdparser.sys
2015-09-19 00:33 - 2013-08-22 13:48 - 00014688 _____ C:\WINDOWS\system32\sbresources.dll
2015-09-19 00:33 - 2013-08-22 13:46 - 01466522 _____ C:\WINDOWS\system32\WindowsVirtualization.V2.mof
2015-09-19 00:33 - 2013-08-22 13:39 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\passthruparser.sys
2015-09-19 00:33 - 2013-08-22 13:39 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lunparser.sys
2015-09-19 00:33 - 2013-08-22 13:38 - 00039739 _____ C:\WINDOWS\system32\hypervisor.mof
2015-09-19 00:33 - 2013-08-22 12:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\HyperVSysprepProvider.dll
2015-09-19 00:33 - 2013-08-22 12:35 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFileBrowse.dll
2015-09-19 00:33 - 2013-08-22 11:53 - 00033280 _____ C:\WINDOWS\system32\ActivationVdev.dll
2015-09-19 00:33 - 2013-08-22 11:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbusvdev.dll
2015-09-19 00:33 - 2013-08-22 11:38 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmprox.dll
2015-09-19 00:33 - 2013-08-22 11:38 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwpctrl.dll
2015-09-19 00:33 - 2013-08-22 11:19 - 02159616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdp4vs.dll
2015-09-19 00:33 - 2013-08-22 10:25 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmconnect.exe
2015-09-19 00:33 - 2013-08-22 09:35 - 00144967 _____ C:\WINDOWS\system32\virtmgmt.msc
2015-09-19 00:09 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-16 00:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-14 20:33 - 2014-11-21 05:13 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-09-14 20:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-09-14 20:32 - 2014-11-21 13:07 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-09-14 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-09-14 15:28 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2015-09-14 15:28 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-09-14 15:07 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\restore
2015-09-14 15:07 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-09-14 15:04 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-09-14 15:04 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-09-14 15:01 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2015-09-14 15:00 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-09-14 14:55 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-09-14 14:55 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-09-14 14:55 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-09-14 14:55 - 2014-03-18 11:37 - 00000000 ____D C:\WINDOWS\system32\wlms
2015-09-14 14:55 - 2013-08-22 17:37 - 00005217 _____ C:\WINDOWS\DtcInstall.log
2015-09-14 14:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2015-09-14 14:55 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-09-14 14:54 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\InputMethod
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\FileManager
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\WindowsPowerShell
2015-09-14 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\WindowsPowerShell
2015-09-14 14:53 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-09-14 14:49 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-25 20:46 - 2015-08-11 01:08 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET87CE.tmp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-09-21 17:23 - 2015-09-21 17:23 - 0000094 _____ () C:\Users\Marvin\AppData\Local\fusioncache.dat
Einige Dateien in TEMP:
====================
C:\Users\Marvin\AppData\Local\Temp\ChangeIcon.exe
C:\Users\Marvin\AppData\Local\Temp\sqlite3.dll
C:\Users\Marvin\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\wininit.exe FEHLT <==== ACHTUNG
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-09-14 14:45
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:23-09-2015
durchgeführt von Marvin (2015-09-23 22:23:21)
Gestartet von C:\Users\Marvin\Desktop
Windows 7 Ultimate (X64) (2015-09-14 13:12:24)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2840623005-2840827860-1408477528-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2840623005-2840827860-1408477528-1006 - Limited - Enabled)
Gast (S-1-5-21-2840623005-2840827860-1408477528-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2840623005-2840827860-1408477528-1005 - Limited - Enabled)
Marvin (S-1-5-21-2840623005-2840827860-1408477528-1001 - Administrator - Enabled) => C:\Users\Marvin
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)
aerosoft's - OMSI 2 - Stadtbus O305 (HKLM-x32\...\{AE36259F-2F4F-44FA-87B7-3D1792ADDCA2}) (Version: 1.10 - aerosoft)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 1.2.0.0 - AVM Berlin)
Battlefield 1942 (HKLM-x32\...\{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}) (Version: - )
Battlefield 1942: Secret Weapons of WWII (HKLM-x32\...\{B73B4A99-4173-4747-BBEC-0F05E966F9D2}) (Version: - )
Battlefield 1942: The Road To Rome (HKLM-x32\...\{D057AA08-8CBF-42E3-9EAB-23B8FED1C279}) (Version: - )
Battlefield 2(TM) (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Browser 7 der Telekom 39.0.15 (x86 de) (HKLM-x32\...\Browser 7 der Telekom 39.0.15 (x86 de)) (Version: 39.0.15 - Deutsche Telekom AG)
Browser 7 Maintenance Service (HKLM-x32\...\Browser7MaintenanceService) (Version: 39.0.15 - Deutsche Telekom AG)
BVG Kubus Serie v.2.0 (HKLM-x32\...\BVG Kubus Serie v.2.0) (Version: 2.0 - CJayDesign)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.00.0000 - Electronic Arts)
Data Lifeguard Diagnostic for Windows 1.24 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DesertCombat 0.7 (HKLM-x32\...\DesertCombat) (Version: - )
Dr. Hardware 2014 14.5d (HKLM-x32\...\Dr. Hardware 2014_is1) (Version: - Peter A. Gebhard)
Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit)
f.lux (HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\Flux) (Version: - )
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
GameSpy Comrade (HKLM-x32\...\{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}) (Version: 1.5.0.156 - GameSpy)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Genymotion version 2.5.4 (HKLM\...\{6D180286-D4DF-40EF-9227-923B9C07C08A}_is1) (Version: 2.5.4 - Genymobile)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2516.0 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
herdProtect Anti-Malware Scanner (HKLM-x32\...\herdProtectScan) (Version: 1.0 - Reason Company Software Inc.)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.5.166.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OMSI 2 (HKLM-x32\...\Steam App 252530) (Version: - MR-Software GbR)
OMSI Addon Manager Version 1.2.3 (HKLM-x32\...\{32B08666-1587-435D-988C-7958A04B218A}_is1) (Version: 1.2.3 - Jan Kiesewalter)
Oracle VM VirtualBox 5.0.4 (HKLM\...\{FC191F32-1A67-4231-91D0-0059A57C99A8}) (Version: 5.0.4 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.8.3.59237 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.18 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27405 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Sandboxie 4.20 (64-bit) (HKLM\...\Sandboxie) (Version: 4.20 - Sandboxie Holdings, LLC)
SeaTools for Windows 1.4.0.2 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.2 - Seagate Technology)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
SRWare Iron (64-Bit) Version SRWare Iron 44.2350.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: SRWare Iron 44.2350.0 - SRWare)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.5 - Tunngle.net GmbH)
TweakMe! (HKLM-x32\...\{709D0207-B1F8-4ADC-BB2F-CDBE2367A475}_is1) (Version: 1.3.0.0 - pXc-coding.com)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Venice Unleashed (HKLM-x32\...\{71644805-C0D7-486D-B129-415738F0A0A4}) (Version: 1.0.0.0 - Emulator Nexus)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Wiederherstellungspunkte =========================
18-09-2015 21:57:46 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
19-09-2015 21:56:58 Driver Booster : Microsoft Visual C++ 2012 Redistributable (x86)
21-09-2015 14:53:11 Microsoft Visual C++ 2005 Redistributable wird installiert
22-09-2015 17:04:13 JRT Pre-Junkware Removal
23-09-2015 20:19:06 Installiert Battlefield 2(TM)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2015-09-22 22:41 - 00006224 ____A C:\WINDOWS\system32\Drivers\etc\hosts
65.112.87.186 armedass.available.gamespy.com
65.112.87.186 armedass.ms12.gamespy.com
65.112.87.186 armedass.master.gamespy.com
65.112.87.186 battlefield2.available.gamespy.com
65.112.87.186 battlefield2.master.gamespy.com
65.112.87.186 battlefield2.ms14.gamespy.com
63.239.170.53 bf2web.gamespy.com
65.112.87.186 bfvietnam.available.gamespy.com
65.112.87.186 bfvietnam.master.gamespy.com
65.112.87.186 bfvietnam.ms0.gamespy.com
65.112.87.186 bderlandspc.available.gamespy.com
65.112.87.186 bderlandspc.master.gamespy.com
65.112.87.186 bderlandspc.ms18.gamespy.com
65.112.87.186 crysis.available.gamespy.com
65.112.87.186 crysis.master.gamespy.com
65.112.87.186 crysis.ms5.gamespy.com
65.112.87.186 crysiswars.available.gamespy.com
65.112.87.186 crysiswars.master.gamespy.com
65.112.87.186 crysiswars.ms2.gamespy.com
65.112.87.186 gotcha.available.gamespy.com
65.112.87.186 gotcha.ms10.gamespy.com
65.112.87.186 gotcha.master.gamespy.com
65.112.87.188 gamestats.gamespy.com
65.112.87.186 gpcm.gamespy.com
65.112.87.186 gpsp.gamespy.com
65.112.87.186 key.gamespy.com
65.112.87.186 master.gamespy.com
65.112.87.186 master0.gamespy.com
63.239.170.9 natneg1.gamespy.com
63.239.170.10 natneg2.gamespy.com
63.144.111.199 natneg3.gamespy.com
65.112.87.186 halor.available.gamespy.com
65.112.87.186 halor.master.gamespy.com
65.112.87.186 halor.ms6.gamespy.com
65.112.87.186 hd2.available.gamespy.com
65.112.87.186 hd2.master.gamespy.com
65.112.87.186 hd2.ms14.gamespy.com
63.239.170.53 motd.gamespy.com
65.112.87.186 nwn.available.gamespy.com
65.112.87.186 nwn.master.gamespy.com
65.112.87.187 chat.gamespynetwork.com
65.112.87.187 peerchat.gamespy.com
65.112.87.186 painkiller.available.gamespy.com
65.112.87.186 painkiller.ms15.gamespy.com
65.112.87.186 painkiller.master.gamespy.com
65.112.87.186 racedriver3pc.available.gamespy.com
65.112.87.186 racedriver3pc.master.gamespy.com
65.112.87.186 racedriver3pc.ms17.gamespy.com
65.112.87.186 swbfront2pc.available.gamespy.com
65.112.87.186 swbfront2pc.master.gamespy.com
65.112.87.186 swbfront2pc.ms6.gamespy.com
65.112.87.186 titanquest.available.gamespy.com
65.112.87.186 titanquest.master.gamespy.com
65.112.87.186 titanquest.ms18.gamespy.com
65.112.87.186 tribesv.ms15.gamespy.com
65.112.87.186 tribesv.master.gamespy.com
65.112.87.186 tribesv.available.gamespy.com
65.112.87.186 tron20.master.gamespy.com
65.112.87.186 tron20.ms9.gamespy.com
65.112.87.186 vietcong2.available.gamespy.com
65.112.87.186 vietcong2.master.gamespy.com
65.112.87.186 vietcong2.ms1.gamespy.com
65.112.87.186 wolfmaster.idsoftware.com65.112.87.186 armedass.available.gamespy.com
65.112.87.186 armedass.ms12.gamespy.com
65.112.87.186 armedass.master.gamespy.com
65.112.87.186 battlefield2.available.gamespy.com
65.112.87.186 battlefield2.master.gamespy.com
65.112.87.186 battlefield2.ms14.gamespy.com
63.239.170.53 bf2web.gamespy.com
65.112.87.186 bfvietnam.available.gamespy.com
65.112.87.186 bfvietnam.master.gamespy.com
65.112.87.186 bfvietnam.ms0.gamespy.com
65.112.87.186 bderlandspc.available.gamespy.com
65.112.87.186 bderlandspc.master.gamespy.com
65.112.87.186 bderlandspc.ms18.gamespy.com
65.112.87.186 crysis.available.gamespy.com
65.112.87.186 crysis.master.gamespy.com
65.112.87.186 crysis.ms5.gamespy.com
65.112.87.186 crysiswars.available.gamespy.com
65.112.87.186 crysiswars.master.gamespy.com
65.112.87.186 crysiswars.ms2.gamespy.com
65.112.87.186 gotcha.available.gamespy.com
65.112.87.186 gotcha.ms10.gamespy.com
65.112.87.186 gotcha.master.gamespy.com
65.112.87.188 gamestats.gamespy.com
65.112.87.186 gpcm.gamespy.com
65.112.87.186 gpsp.gamespy.com
65.112.87.186 key.gamespy.com
65.112.87.186 master.gamespy.com
65.112.87.186 master0.gamespy.com
63.239.170.9 natneg1.gamespy.com
63.239.170.10 natneg2.gamespy.com
63.144.111.199 natneg3.gamespy.com
65.112.87.186 halor.available.gamespy.com
65.112.87.186 halor.master.gamespy.com
65.112.87.186 halor.ms6.gamespy.com
65.112.87.186 hd2.available.gamespy.com
65.112.87.186 hd2.master.gamespy.com
65.112.87.186 hd2.ms14.gamespy.com
63.239.170.53 motd.gamespy.com
65.112.87.186 nwn.available.gamespy.com
65.112.87.186 nwn.master.gamespy.com
65.112.87.187 chat.gamespynetwork.com
65.112.87.187 peerchat.gamespy.com
65.112.87.186 painkiller.available.gamespy.com
65.112.87.186 painkiller.ms15.gamespy.com
65.112.87.186 painkiller.master.gamespy.com
65.112.87.186 racedriver3pc.available.gamespy.com
65.112.87.186 racedriver3pc.master.gamespy.com
65.112.87.186 racedriver3pc.ms17.gamespy.com
65.112.87.186 swbfront2pc.available.gamespy.com
65.112.87.186 swbfront2pc.master.gamespy.com
65.112.87.186 swbfront2pc.ms6.gamespy.com
65.112.87.186 titanquest.available.gamespy.com
65.112.87.186 titanquest.master.gamespy.com
65.112.87.186 titanquest.ms18.gamespy.com
65.112.87.186 tribesv.ms15.gamespy.com
65.112.87.186 tribesv.master.gamespy.com
65.112.87.186 tribesv.available.gamespy.com
65.112.87.186 tron20.master.gamespy.com
65.112.87.186 tron20.ms9.gamespy.com
65.112.87.186 vietcong2.available.gamespy.com
65.112.87.186 vietcong2.master.gamespy.com
65.112.87.186 vietcong2.ms1.gamespy.com
65.112.87.186 wolfmaster.idsoftware.com
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00A4D91C-7B60-46B3-8BC5-6FC9C1D969F6} - System32\Tasks\Abelssoft\StartBackgroundguardWithWindows => C:\Program Files (x86)\CheckDrive\CheckDrive.exe
Task: {2F744E43-95B5-4E96-B8B4-CCC7182183D9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-23] (Google Inc.)
Task: {57DE5850-036F-47F6-A68A-9F35BCFC7026} - System32\Tasks\App Update => C:\Users\Marvin\AppData\Local\AppUpd\GUP.exe [2015-05-25] (Don HO don.h@free.fr)
Task: {608F468E-449F-400C-B89C-AF7A551ADCA7} - \blockerpro -> Keine Datei <==== ACHTUNG
Task: {8F4DB2A7-433D-4F8D-A0A2-0B0447EF635A} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {9461EDBC-4C39-4603-BAC4-0E5A486A1F97} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {B6FBAE1A-4AE9-4C74-8D43-5CF2680DC9A7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {BB43A78E-0BE1-41D1-B1F4-167BF32391C7} - System32\Tasks\Hubsy => C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp\rinti.exe
Task: {BB545A75-DDD0-4834-8C65-A5E053D744DB} - System32\Tasks\bEG => C:\ProgramData\Jason\Jason.exe [2015-09-11] (Don HO don.h@free.fr) <==== ACHTUNG
Task: {CAECB940-3B1F-4562-AF32-9708D32E948A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-23] (Google Inc.)
Task: {D3523BD7-7993-4498-89DC-5174EF91F9A9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-07-08] (Microsoft)
Task: {EA8424E8-74E0-460D-AB9E-FD2ADB66B19F} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
Task: {EC238CF5-6700-4705-BF01-621A17B68C90} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-07-08] (Microsoft Corporation)
Task: {EF05D817-0557-4CAA-B5B9-2338BC97803C} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-07-08] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Marvin\OneDrive:ms-properties
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\StartupFolder: => "OMSI Addon Manager.lnk"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "MicroUpdate"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-2840623005-2840827860-1408477528-1001\...\StartupApproved\Run: => "SandboxieControl"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DC9CD1B2-C92C-4AAC-85F2-14032163DA7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{5FBDF85D-13AA-4CE3-85D1-EAC3A3909890}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E8D6BF8D-E2A8-4C90-AE15-C5C6929AAAEA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{9476BB31-DE14-4558-A9B6-E7EC947B9B9F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{374D7C2F-404B-4848-9B60-BA0956431444}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{5EB1EB4E-EBE8-4CB3-AD15-58F26AAA6CCB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D2E168F4-1B56-4FBE-A4F0-7E490B396EFB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{39141C7C-D691-446E-B058-B6D664D0D7E2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DEAFD0DC-5B35-4EDE-B6DD-1FFE4C421B05}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1351B65D-2947-4E83-B1E7-C8C82CF89099}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{64216D7B-E850-4EA3-A557-69475865C132}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8342606B-D47E-4C6E-BC8E-443FA8FFFACF}] => (Allow) C:\Program Files (x86)\Deutsche Telekom AG\Browser 7\Browser7.exe
FirewallRules: [{43C11AAF-BC4B-41EA-BF74-B9427C824367}] => (Allow) C:\Program Files (x86)\Deutsche Telekom AG\Browser 7\Browser7.exe
FirewallRules: [{E93E7904-CA1C-4740-A9E7-EE7D19BD25E0}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{66291472-946F-43DD-955D-0C9086B2B7B0}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{FF99C039-1757-4059-8B3A-2F1B824C83D0}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{4109D9A9-049A-47AE-A517-5A931282CA6C}] => (Allow) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
FirewallRules: [{B8A8BB6E-8155-4368-B2BA-3D695AB22751}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{35DDF256-FD48-46A0-A316-1BD9F65233CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{627BF49A-0C22-43A6-95B4-8063CEEA5C71}] => (Allow) C:\Users\Marvin\AppData\Roaming\Andy_45_Online\Setup.exe
FirewallRules: [{0C3130C4-7A41-419A-983E-4D0B89DD3E6C}] => (Allow) C:\Users\Marvin\AppData\Roaming\Andy_45_Online\Setup.exe
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe
FirewallRules: [{EBD1EC5B-6428-4A40-8B13-407B83DF9280}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6B2E21F0-C3A4-4080-A3F8-A54207A522A0}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{243D2C73-2361-4CEF-8B99-B821A4978C5B}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{77C3BB95-8226-464A-9C98-4A39171AC8E1}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{EE4917DA-4A6F-4FAC-9B07-B3660ACBF891}C:\program files (x86)\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\java.exe
FirewallRules: [UDP Query User{7B019748-D3E8-4AFF-A3C9-F987E32B8F40}C:\program files (x86)\java\jre1.8.0_60\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\java.exe
FirewallRules: [TCP Query User{B800105B-3792-486D-8EB6-0FEEB57296B8}C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{4A864D16-6458-4C1F-B8FE-AED1CA3FF4AE}C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\marvin\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{00F594E7-16EF-48F5-A873-1CE286135456}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{77EFFCE1-3879-4894-9260-BF6B619DAB77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{A2B5E383-AB92-488E-AC2F-0E5060888A0B}C:\program files (x86)\ea games\battlefield 1942\bf1942.exe] => (Allow) C:\program files (x86)\ea games\battlefield 1942\bf1942.exe
FirewallRules: [UDP Query User{89F933C5-5E36-4F3D-84F0-828312C076BD}C:\program files (x86)\ea games\battlefield 1942\bf1942.exe] => (Allow) C:\program files (x86)\ea games\battlefield 1942\bf1942.exe
FirewallRules: [{F103B3DE-CCFE-49BB-802A-F56B7BB87277}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{32DA6FCD-D1C5-4FC6-AC37-AD76934332CC}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{17333AA8-AAC7-4AAE-AEAC-69BA2D30C16C}D:\games\battlefield 3™\zlobf3launcher.exe] => (Allow) D:\games\battlefield 3™\zlobf3launcher.exe
FirewallRules: [UDP Query User{0AE2EDB1-A781-44B8-93FC-12D472C9C8BD}D:\games\battlefield 3™\zlobf3launcher.exe] => (Allow) D:\games\battlefield 3™\zlobf3launcher.exe
FirewallRules: [TCP Query User{C32C286A-B57C-4B89-B28A-776BDE656388}D:\games\battlefield 3™\launcherserver.exe] => (Allow) D:\games\battlefield 3™\launcherserver.exe
FirewallRules: [UDP Query User{01E9A715-7B0D-4851-8C89-C62BDE8AC80F}D:\games\battlefield 3™\launcherserver.exe] => (Allow) D:\games\battlefield 3™\launcherserver.exe
FirewallRules: [TCP Query User{A3588C5E-5021-4A56-BF0F-63089A3ECCDE}D:\games\battlefield 3™\zlofulllauncher.exe] => (Allow) D:\games\battlefield 3™\zlofulllauncher.exe
FirewallRules: [UDP Query User{FAF0751A-5D89-4F5B-BF33-4CD3C8A2142B}D:\games\battlefield 3™\zlofulllauncher.exe] => (Allow) D:\games\battlefield 3™\zlofulllauncher.exe
FirewallRules: [{1675E2EC-AB82-4D6E-8B4B-43CC6E657E26}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{A87736E0-67EA-4EC6-BE2F-EB78301A7AD8}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{386D2FEA-139B-4034-B297-9F034B4B231C}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{7CCA2D13-0B33-4D6D-A4BF-18C66D5BA04D}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{D5E89A33-EA13-4315-9FD3-939FD55ED4B8}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\Crysis.exe
FirewallRules: [{068FC625-EB7C-4A90-8C63-68B785BB3F18}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\Crysis.exe
FirewallRules: [{3A0E9884-2396-448F-9646-87251F5B896F}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\CrysisDedicatedServer.exe
FirewallRules: [{6772ED51-D9A7-4284-BB08-39C6359BC277}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\CrysisDedicatedServer.exe
FirewallRules: [{2F11093F-6399-463A-BEC5-2C93B7C0861D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{EB82FDBB-3C16-404F-B37C-C8BB20182CA5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{41FBF4E7-A107-4AF0-ADE4-61F78F477E42}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8D0B2AE2-199C-4257-ABA5-49FAC4A22783}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{765E1C74-53E5-4F62-961A-CD392D3C2CAD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B01E916B-11AE-4845-A39C-72F450C67356}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{F86EE5D7-5E2A-4326-86EB-5D8D6609F852}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0FDD02FF-28F1-49AE-9B6D-CE36E72504C3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{76BC906B-98A9-4AC9-BB23-0C50FA0FBCB3}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{A260F04C-55E3-45E8-9FC2-927D5526E157}] => (Allow) C:\Program Files (x86)\EA GAMES\Battlefield 2\BF2.exe
FirewallRules: [{8E41DA3F-4684-4A43-A878-5CD671F895FB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/23/2015 08:03:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: BF1942.exe, Version: 0.0.0.0, Zeitstempel: 0x417564c4
Name des fehlerhaften Moduls: d3d8.dll, Version: 6.3.9600.17415, Zeitstempel: 0x5450488f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00046e48
ID des fehlerhaften Prozesses: 0x15b0
Startzeit der fehlerhaften Anwendung: 0xBF1942.exe0
Pfad der fehlerhaften Anwendung: BF1942.exe1
Pfad des fehlerhaften Moduls: BF1942.exe2
Berichtskennung: BF1942.exe3
Vollständiger Name des fehlerhaften Pakets: BF1942.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BF1942.exe5
Error: (09/23/2015 07:47:49 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: ASP.NET_1.1.4322
Error: (09/23/2015 07:47:49 PM) (Source: Perflib) (EventID: 1021) (User: )
Description: ASP.NET_1.1.43228
Error: (09/23/2015 06:16:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 98c
Startzeit: 01d0f61a83020d33
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 73c41b2b-620e-11e5-827c-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/23/2015 06:12:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbam.exe, Version: 2.3.55.0, Zeitstempel: 0x557a2a02
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18007, Zeitstempel: 0x55c4bc8e
Ausnahmecode: 0xc0000142
Fehleroffset: 0x0009d4f2
ID des fehlerhaften Prozesses: 0xfe8
Startzeit der fehlerhaften Anwendung: 0xmbam.exe0
Pfad der fehlerhaften Anwendung: mbam.exe1
Pfad des fehlerhaften Moduls: mbam.exe2
Berichtskennung: mbam.exe3
Vollständiger Name des fehlerhaften Pakets: mbam.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: mbam.exe5
Error: (09/23/2015 05:46:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1378
Startzeit: 01d0f61468bf1784
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 63f3beae-6208-11e5-827a-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/23/2015 05:23:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 12b8
Startzeit: 01d0f61310e00c10
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 05edba21-6207-11e5-827a-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/23/2015 03:30:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1098
Startzeit: 01d0f6034b3c4da6
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 425d5980-61f7-11e5-8278-0030678c4569
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (09/22/2015 10:18:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WerFault.exe, Version: 6.3.9600.17415, Zeitstempel: 0x54503815
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18007, Zeitstempel: 0x55c4bc8e
Ausnahmecode: 0xc0000142
Fehleroffset: 0x0009d4f2
ID des fehlerhaften Prozesses: 0x1720
Startzeit der fehlerhaften Anwendung: 0xWerFault.exe0
Pfad der fehlerhaften Anwendung: WerFault.exe1
Pfad des fehlerhaften Moduls: WerFault.exe2
Berichtskennung: WerFault.exe3
Vollständiger Name des fehlerhaften Pakets: WerFault.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WerFault.exe5
Error: (09/22/2015 09:26:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1174
Startzeit: 01d0f56beb47a673
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: dcf08cf3-615f-11e5-8275-0896d7f42740
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Systemfehler:
=============
Error: (09/23/2015 09:53:25 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%1062
Error: (09/23/2015 09:53:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Hyper-V-Verwaltung für virtuelle Computer" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 240000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:53:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:53:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Razer Game Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:53:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:53:13 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:43:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:43:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/23/2015 09:43:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Hyper-V-Verwaltung für virtuelle Computer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2015 09:43:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Razer Game Scanner" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2015-09-23 20:42:19.986
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:19.714
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:18.982
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:18.579
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:16.365
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:15.883
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:10.412
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:42:09.584
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:26:07.395
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-23 20:26:07.113
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: AMD Athlon(tm) II X2 220 Processor
Prozentuale Nutzung des RAM: 51%
Installierter physikalischer RAM: 4095.36 MB
Verfügbarer physikalischer RAM: 1991.33 MB
Summe virtueller Speicher: 8447.36 MB
Verfügbarer virtueller Speicher: 5952.43 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:228.34 GB) (Free:109.16 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:237.32 GB) (Free:203.22 GB) NTFS
Drive e: (BF2 DVD) (CDROM) (Total:1.93 GB) (Free:0 GB) UDF
Drive f: () (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 74400503)
Partition 1: (Not Active) - (Size=99 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.3 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=228.3 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
LG Geändert von DieKakao (23.09.2015 um 21:48 Uhr) |
|
24.09.2015, 08:23
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Chrome Erweiterung nicht löschbar Dann hast du das Browserprofil von Chrome behalten. Du musst Chrome restlos deinstallierenm.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
24.09.2015, 13:23
| #13 |
| | Chrome Erweiterung nicht löschbar Hi, Ich habe Chrome zwar löschen können, aber ich kann es nicht mehr installieren ( Weil es angeblich noch drauf ist.) . Aber mein jetziger Browser SRware Iron, hat auch die nervige Erweiterung "word highlight". Ich habe sogar ein neues Profil erstellt. Und ja, ich habe SRware Iron und Chrome mit dem IObit Uninstaller restlos entfernt. LG |
|
24.09.2015, 13:32
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Chrome Erweiterung nicht löschbar FRST-Fix Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft! Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Task: {BB545A75-DDD0-4834-8C65-A5E053D744DB} - System32\Tasks\bEG => C:\ProgramData\Jason\Jason.exe [2015-09-11] (Don HO don.h@free.fr) <==== ACHTUNG
Task: {608F468E-449F-400C-B89C-AF7A551ADCA7} - \blockerpro -> Keine Datei <==== ACHTUNG
Task: {BB43A78E-0BE1-41D1-B1F4-167BF32391C7} - System32\Tasks\Hubsy => C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp\rinti.exe
HKU\S-1-5-18\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay
HKLM-x32\...\Run: [] => [X]
GroupPolicy: Beschränkung - Chrome <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
C:\ProgramData\CheckPoint\ZoneAlarm
C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooabkmkhabkahcjbgpiajffckeibpdoa
C:\WINDOWS\system32\vmg546C.tmp
C:\WINDOWS\System32\Tasks\bEG
C:\WINDOWS\System32\Tasks\Hubsy
C:\ProgramData\Jason
C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp
EmptyTemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
24.09.2015, 13:58
| #15 |
| | Chrome Erweiterung nicht löschbar Hi, Fixlog Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:23-09-2015
durchgeführt von Marvin (2015-09-24 14:35:39) Run:3
Gestartet von C:\Users\Marvin\Desktop
Geladene Profile: Marvin (Verfügbare Profile: Marvin)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
Task: {BB545A75-DDD0-4834-8C65-A5E053D744DB} - System32\Tasks\bEG => C:\ProgramData\Jason\Jason.exe [2015-09-11] (Don HO don.h@free.fr) <==== ACHTUNG
Task: {608F468E-449F-400C-B89C-AF7A551ADCA7} - \blockerpro -> Keine Datei <==== ACHTUNG
Task: {BB43A78E-0BE1-41D1-B1F4-167BF32391C7} - System32\Tasks\Hubsy => C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp\rinti.exe
HKU\S-1-5-18\...\Run: [ZoneAlarm Windows 10 Upgrader] => "C:\ProgramData\CheckPoint\ZoneAlarm\Data\Updates\unpacked==win10=update_win10.zip\upgrade.exe" /delay
HKLM-x32\...\Run: [] => [X]
GroupPolicy: Beschränkung - Chrome <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
C:\ProgramData\CheckPoint\ZoneAlarm
C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooabkmkhabkahcjbgpiajffckeibpdoa
C:\WINDOWS\system32\vmg546C.tmp
C:\WINDOWS\System32\Tasks\bEG
C:\WINDOWS\System32\Tasks\Hubsy
C:\ProgramData\Jason
C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp
EmptyTemp:
*****************
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB545A75-DDD0-4834-8C65-A5E053D744DB} => Schlüssel konnte nicht entfernt werden. Zugriff verweigert.
C:\WINDOWS\System32\Tasks\bEG => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bEG" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{608F468E-449F-400C-B89C-AF7A551ADCA7}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{608F468E-449F-400C-B89C-AF7A551ADCA7}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\blockerpro" => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB43A78E-0BE1-41D1-B1F4-167BF32391C7} => Schlüssel konnte nicht entfernt werden. Zugriff verweigert.
C:\WINDOWS\System32\Tasks\Hubsy => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hubsy" => Schlüssel erfolgreich entfernt
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\ZoneAlarm Windows 10 Upgrader => Wert erfolgreich entfernt
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
C:\WINDOWS\system32\GroupPolicy\Machine => erfolgreich verschoben
C:\WINDOWS\system32\GroupPolicy\GPT.ini => erfolgreich verschoben
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => erfolgreich verschoben
HKLM\SOFTWARE\Policies\Google => Schlüssel konnte nicht entfernt werden. Zugriff verweigert.
"C:\ProgramData\CheckPoint\ZoneAlarm" => Datei/Ordner nicht gefunden.
"C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooabkmkhabkahcjbgpiajffckeibpdoa" => Datei/Ordner nicht gefunden.
C:\WINDOWS\system32\vmg546C.tmp => erfolgreich verschoben
"C:\WINDOWS\System32\Tasks\bEG" => Datei/Ordner nicht gefunden.
"C:\WINDOWS\System32\Tasks\Hubsy" => Datei/Ordner nicht gefunden.
C:\ProgramData\Jason => erfolgreich verschoben
"C:\Users\Marvin\AppData\Roaming\PGHkOi0Uwp" => Datei/Ordner nicht gefunden.
EmptyTemp: => 77.6 MB temporäre Dateien entfernt.
Das System musste neu gestartet werden..
==== Ende von Fixlog 14:35:59 ====
Was ist aber noch erwähnen wollte ist, dass FRST64 denkt, ich würde Windows 7 nutzen. Achja, "word highlight", ist jetzt endlich weg! LG Geändert von DieKakao (24.09.2015 um 14:03 Uhr) |
|
| Themen zu Chrome Erweiterung nicht löschbar |
| administrator, chrome erweiterung, defender, desktop, explorer, geforce, google, homepage, malware.trace, mozilla, nvidia, prozesse, pup.optional.adtech, pup.optional.vonteera.chrprst, pup.optional.webpick, realtek, registry, rundll, software, sweet-page, sweet-page entfernen, system, unternehmensrichtlinie, win10, windows |
