Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Firefox werbung in neuen tabs + werbung auf jeglichen seiten.

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 22.01.2016, 22:42   #1
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Servus, wie schon der titel sagt habe ich meist werbung von reimageplus, naja nun habe ich schon ein wenig selbst in angriff genommen was ich wohl hätte nicht machen sollen^^
Habe mir FRST64 Heruntergeladen und auf dem desktop gespeichert, AdwCleaner_5.030 runtergeladen aber nicht über den desktop gestartet, durchlaufen lassen und alles weggehauen was er finden konnt . tdsskiller habe ich auch durchlaufen lassen der hat aber nichts erkannt, liegt aber vll auch daran das ich es vom download ordner aus gestartet habe ich weiß es nicht .

Hier nochmal berichtigt auf dem desktop gestartet,hoffe das es richtig ist :

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (22-01-2016 23:19:56)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
() C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8316528 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG

Chrome: 
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S3 cpuz138; C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [43304 2015-11-30] (CPUID)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-22] ()
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-01] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-22 23:19 - 2016-01-22 23:20 - 00018765 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-22 23:19 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-21 11:07 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-21 10:15 - 00051200 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00003162 _____ C:\Windows\System32\Tasks\Browser Max
2016-01-21 01:58 - 2016-01-21 01:58 - 00003150 _____ C:\Windows\System32\Tasks\Browser Max2
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-22 23:18 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 23:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-22 22:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-22 22:45 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-22 22:42 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-22 22:42 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-22 22:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-22 22:14 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-22 22:13 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-22 22:13 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-22 22:13 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-22 22:13 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-22 22:12 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-22 22:12 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:12 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-22 09:44 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-01-21 01:58 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat


Einige Dateien in TEMP:
====================
C:\Users\Godlike\AppData\Local\Temp\410cd83c4cb3ea4f078cf76a6fb32361.dll
C:\Users\Godlike\AppData\Local\Temp\532018948649ce2b41018b827bc595f3.dll
C:\Users\Godlike\AppData\Local\Temp\73bb9f9c.exe
C:\Users\Godlike\AppData\Local\Temp\98fec1cbe.dll
C:\Users\Godlike\AppData\Local\Temp\b802a.dll
C:\Users\Godlike\AppData\Local\Temp\b875a87b4.dll
C:\Users\Godlike\AppData\Local\Temp\cf8e2b5e3.dll
C:\Users\Godlike\AppData\Local\Temp\dba40eb.exe
C:\Users\Godlike\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp60jpac.dll
C:\Users\Godlike\AppData\Local\Temp\e63fa933.dll
C:\Users\Godlike\AppData\Local\Temp\e856a7fb7.dll
C:\Users\Godlike\AppData\Local\Temp\eea7d0.dll
C:\Users\Godlike\AppData\Local\Temp\fe50d.dll
C:\Users\Godlike\AppData\Local\Temp\Gw2.exe
C:\Users\Godlike\AppData\Local\Temp\sqlite3.dll
C:\Users\Godlike\AppData\Local\Temp\UNINSTALL.EXE


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-01-21 10:59

==================== Ende von FRST.txt ============================
         
Hier womit ich es runtergeladen habe.
HTML-Code:
hxxp://filepony.de/download-tdsskiller/
HTML-Code:
hxxp://filepony.de/download-frst64/
Sollte etwas nicht stimmen wärde ich die datein löschen die notwendig sind.

mfg Ainshval

Alt 22.01.2016, 22:47   #2
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Hier das nächste:

Code:
ATTFilter
Adittion:Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-22 23:20:12)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version:  - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version:  - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version:  - Blue Mammoth Games)
Browser Max (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\{95BBB557-50F8-82B9-EE41-A834434DB4DE}) (Version: 1.4.9 - Experience Plugin corp) <==== ACHTUNG
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version:  - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version:  - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version:  - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version:  - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version:  - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version:  - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
RIFT (HKLM-x32\...\Glyph RIFT) (Version:  - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version:  - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version:  - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version:  - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version:  - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version:  - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version:  - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe 
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {38C4761B-5F01-4D1E-8E74-FCC8BF5499CF} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {3AA2DACA-A27C-4573-892D-1AE57601B8AA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9603F53B-9C79-41BD-A8D0-0770FCD3A564} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00028160 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00012800 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00011264 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat
2015-08-22 07:54 - 2015-08-23 22:51 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-12-14 12:58 - 2016-01-21 09:41 - 50679920 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libcef.dll
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-14 12:58 - 2016-01-21 09:41 - 01882224 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libglesv2.dll
2015-12-14 12:58 - 2016-01-21 09:41 - 00082544 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libegl.dll
2015-08-14 17:58 - 2015-08-23 22:51 - 00005120 _____ () C:\Windows\syswow64\ktmw3232.dll
2016-01-21 03:02 - 2016-01-21 03:02 - 17882304 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E39E1162-1AAA-411B-A02A-846CA9BFFF10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

21-01-2016 17:00:59 Entfernt Realtek High Definition Audio Driver
21-01-2016 17:16:44 Installiert Realtek High Definition Audio Driver

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1730

Startzeit: 01d135cd59c12231

Endzeit: 156

Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe

Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233

Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 233c

Startzeit: 01d12cf4aca80f57

Endzeit: 2698

Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe

Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233

Error: (11/24/2015 10:01:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x17ac
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/23/2015 05:28:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x4958
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/20/2015 06:47:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x76bc
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/17/2015 06:00:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x844c
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/15/2015 04:56:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0xad88
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/13/2015 12:41:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Steam.exe, Version 3.1.81.43 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 280

Startzeit: 01d11e07d08b12ab

Endzeit: 16

Anwendungspfad: D:\Steam\Steam.exe

Berichts-ID: 70cf4151-89fb-11e5-938b-4494fcf2eb50

Error: (11/06/2015 07:57:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1d64

Startzeit: 01d118c4c6edbc16

Endzeit: 112

Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe

Berichts-ID: 3a0bf124-84b8-11e5-a20c-1c6f65d41233

Error: (10/27/2015 11:53:08 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm OneClick.exe, Version 15.0.1001.638 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1350

Startzeit: 01d1109eecb9f609

Endzeit: 15

Anwendungspfad: C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe

Berichts-ID:


Systemfehler:
=============
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%50

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:10:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:10:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WSWNDA3100v2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AVG PC TuneUp Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


CodeIntegrity:
===================================
  Date: 2016-01-21 01:46:32.761
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.626
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.232
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.943
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.756
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.492
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.279
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.781
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.693
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.600
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 70%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 1221.86 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 4646.48 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:1.5 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:11.15 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
MfG Ainshval
__________________


Alt 23.01.2016, 11:41   #3
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Und das letzte :

[/CODE]TDSSKiller Scan:

Code:
ATTFilter
23:23:12.0561 0x2534  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
23:23:17.0811 0x2534  ============================================================
23:23:17.0811 0x2534  Current date / time: 2016/01/22 23:23:17.0811
23:23:17.0811 0x2534  SystemInfo:
23:23:17.0811 0x2534  
23:23:17.0811 0x2534  OS Version: 6.1.7601 ServicePack: 1.0
23:23:17.0811 0x2534  Product type: Workstation
23:23:17.0811 0x2534  ComputerName: GODLIKE-PC
23:23:17.0811 0x2534  UserName: Godlike
23:23:17.0811 0x2534  Windows directory: C:\Windows
23:23:17.0811 0x2534  System windows directory: C:\Windows
23:23:17.0811 0x2534  Running under WOW64
23:23:17.0811 0x2534  Processor architecture: Intel x64
23:23:17.0811 0x2534  Number of processors: 4
23:23:17.0811 0x2534  Page size: 0x1000
23:23:17.0811 0x2534  Boot type: Normal boot
23:23:17.0811 0x2534  ============================================================
23:23:19.0762 0x2534  KLMD registered as C:\Windows\system32\drivers\95294702.sys
23:23:19.0927 0x2534  System UUID: {702EB4D2-CAD3-0506-9221-16B75A225B6F}
23:23:20.0190 0x2534  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
23:23:20.0192 0x2534  ============================================================
23:23:20.0192 0x2534  \Device\Harddisk0\DR0:
23:23:20.0193 0x2534  MBR partitions:
23:23:20.0193 0x2534  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC31E000
23:23:20.0193 0x2534  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x2E034800
23:23:20.0193 0x2534  ============================================================
23:23:20.0219 0x2534  C: <-> \Device\Harddisk0\DR0\Partition1
23:23:20.0251 0x2534  D: <-> \Device\Harddisk0\DR0\Partition2
23:23:20.0251 0x2534  ============================================================
23:23:20.0251 0x2534  Initialize success
23:23:20.0251 0x2534  ============================================================
23:24:39.0414 0x25b8  ============================================================
23:24:39.0414 0x25b8  Scan started
23:24:39.0414 0x25b8  Mode: Manual; SigCheck; TDLFS; 
23:24:39.0414 0x25b8  ============================================================
23:24:39.0414 0x25b8  KSN ping started
23:24:41.0846 0x25b8  KSN ping finished: true
23:24:43.0611 0x25b8  ================ Scan system memory ========================
23:24:43.0611 0x25b8  System memory - ok
23:24:43.0612 0x25b8  ================ Scan services =============================
23:24:43.0742 0x25b8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:24:43.0827 0x25b8  1394ohci - ok
23:24:43.0874 0x25b8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:24:43.0888 0x25b8  ACPI - ok
23:24:43.0901 0x25b8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:24:43.0928 0x25b8  AcpiPmi - ok
23:24:44.0039 0x25b8  [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:24:44.0056 0x25b8  AdobeARMservice - ok
23:24:44.0125 0x25b8  [ 295A5BFCE8D225D014DB4E6E69336279, F786F06F0EE3253FA936FA5D73FD9AC704FAB19BE76C60C65AEAD399DC93F9C5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:24:44.0136 0x25b8  AdobeFlashPlayerUpdateSvc - ok
23:24:44.0179 0x25b8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
23:24:44.0196 0x25b8  adp94xx - ok
23:24:44.0211 0x25b8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
23:24:44.0224 0x25b8  adpahci - ok
23:24:44.0241 0x25b8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
23:24:44.0251 0x25b8  adpu320 - ok
23:24:44.0277 0x25b8  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:24:44.0286 0x25b8  AeLookupSvc - ok
23:24:44.0328 0x25b8  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
23:24:44.0345 0x25b8  AFD - ok
23:24:44.0370 0x25b8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
23:24:44.0378 0x25b8  agp440 - ok
23:24:44.0400 0x25b8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
23:24:44.0409 0x25b8  ALG - ok
23:24:44.0429 0x25b8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:24:44.0436 0x25b8  aliide - ok
23:24:44.0525 0x25b8  ALSysIO - ok
23:24:44.0563 0x25b8  [ 66B54471B5856E314947881E28263A6D, 2D60706B52A2CE98FF806337D62CD010C1DEB2AEDDF899C7B67173928B2D7C4C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:24:44.0595 0x25b8  AMD External Events Utility - ok
23:24:44.0648 0x25b8  AMD FUEL Service - ok
23:24:44.0662 0x25b8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:24:44.0689 0x25b8  amdide - ok
23:24:44.0715 0x25b8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
23:24:44.0726 0x25b8  AmdK8 - ok
23:24:45.0065 0x25b8  [ FBB35875FEFE53D4280259842069ED72, B1A1B5799A6C50C244182CD201A1E9FCB7BE3B5ED4BB2E2E6BCF8E1BF53B75DB ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
23:24:45.0340 0x25b8  amdkmdag - ok
23:24:45.0418 0x25b8  [ A32BCAD9377E3B75D034CAFBA463A0AE, F504895D9C9CD1B4607806BCAF15A1CBFBAC2E5824903277A1350C9F35045602 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
23:24:45.0439 0x25b8  amdkmdap - ok
23:24:45.0463 0x25b8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
23:24:45.0471 0x25b8  AmdPPM - ok
23:24:45.0494 0x25b8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:24:45.0503 0x25b8  amdsata - ok
23:24:45.0518 0x25b8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
23:24:45.0529 0x25b8  amdsbs - ok
23:24:45.0541 0x25b8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:24:45.0548 0x25b8  amdxata - ok
23:24:45.0618 0x25b8  [ B934322C68C30DCECA96C0274A51F7B0, 5A0B10A9E662A0B0EEB951FFD2A82CC71D30939A78DAEBD26B3F58BB24351AC9 ] AODDriver       C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys
23:24:45.0653 0x25b8  AODDriver - ok
23:24:45.0686 0x25b8  [ E8CCB797DAF80779C768BD3A9FC8FCAF, 781BD878CA34D8B6D2FE238439CD173E95449260428859BEA92866D41B1284F4 ] AODDriver4.2.0  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
23:24:45.0696 0x25b8  AODDriver4.2.0 - ok
23:24:45.0753 0x25b8  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
23:24:45.0774 0x25b8  AppID - ok
23:24:45.0785 0x25b8  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:24:45.0795 0x25b8  AppIDSvc - ok
23:24:45.0834 0x25b8  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
23:24:45.0862 0x25b8  Appinfo - ok
23:24:45.0925 0x25b8  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:24:45.0950 0x25b8  Apple Mobile Device - ok
23:24:45.0982 0x25b8  [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
23:24:45.0991 0x25b8  AppleCharger - ok
23:24:46.0006 0x25b8  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
23:24:46.0015 0x25b8  AppleChargerSrv - ok
23:24:46.0027 0x25b8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
23:24:46.0039 0x25b8  arc - ok
23:24:46.0051 0x25b8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
23:24:46.0060 0x25b8  arcsas - ok
23:24:46.0133 0x25b8  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:24:46.0197 0x25b8  aspnet_state - ok
23:24:46.0217 0x25b8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:24:46.0250 0x25b8  AsyncMac - ok
23:24:46.0268 0x25b8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
23:24:46.0279 0x25b8  atapi - ok
23:24:46.0341 0x25b8  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:24:46.0371 0x25b8  AudioEndpointBuilder - ok
23:24:46.0388 0x25b8  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:24:46.0408 0x25b8  AudioSrv - ok
23:24:46.0448 0x25b8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:24:46.0460 0x25b8  AxInstSV - ok
23:24:46.0515 0x25b8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
23:24:46.0541 0x25b8  b06bdrv - ok
23:24:46.0565 0x25b8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:24:46.0577 0x25b8  b57nd60a - ok
23:24:46.0659 0x25b8  [ 44E6E51AEDBF3E0B38A6CD5432649E57, AB7F3EF0F5859B6C759BF1B9704C2F839166905C02300057997836C4B07A2221 ] BCMH43XX        C:\Windows\system32\DRIVERS\bcmwlhigh664.sys
23:24:46.0693 0x25b8  BCMH43XX - ok
23:24:46.0714 0x25b8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:24:46.0723 0x25b8  BDESVC - ok
23:24:46.0743 0x25b8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:24:46.0773 0x25b8  Beep - ok
23:24:46.0840 0x25b8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
23:24:46.0864 0x25b8  BFE - ok
23:24:46.0894 0x25b8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
23:24:46.0977 0x25b8  BITS - ok
23:24:47.0000 0x25b8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:24:47.0007 0x25b8  blbdrive - ok
23:24:47.0036 0x25b8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:24:47.0062 0x25b8  bowser - ok
23:24:47.0122 0x25b8  BRDriver64_1_3_3_E02B25FC - ok
23:24:47.0152 0x25b8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:24:47.0198 0x25b8  BrFiltLo - ok
23:24:47.0212 0x25b8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:24:47.0224 0x25b8  BrFiltUp - ok
23:24:47.0254 0x25b8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
23:24:47.0268 0x25b8  Browser - ok
23:24:47.0286 0x25b8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:24:47.0303 0x25b8  Brserid - ok
23:24:47.0314 0x25b8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:24:47.0323 0x25b8  BrSerWdm - ok
23:24:47.0352 0x25b8  [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub       C:\ProgramData\BitRaider\BRSptStub.exe
23:24:47.0365 0x25b8  BRSptStub - ok
23:24:47.0368 0x25b8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:24:47.0377 0x25b8  BrUsbMdm - ok
23:24:47.0392 0x25b8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:24:47.0399 0x25b8  BrUsbSer - ok
23:24:47.0427 0x25b8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:24:47.0437 0x25b8  BTHMODEM - ok
23:24:47.0472 0x25b8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
23:24:47.0496 0x25b8  bthserv - ok
23:24:47.0508 0x25b8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:24:47.0532 0x25b8  cdfs - ok
23:24:47.0564 0x25b8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:24:47.0574 0x25b8  cdrom - ok
23:24:47.0608 0x25b8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
23:24:47.0631 0x25b8  CertPropSvc - ok
23:24:47.0636 0x25b8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
23:24:47.0645 0x25b8  circlass - ok
23:24:47.0681 0x25b8  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
23:24:47.0696 0x25b8  CLFS - ok
23:24:47.0736 0x25b8  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:24:47.0745 0x25b8  clr_optimization_v2.0.50727_32 - ok
23:24:47.0780 0x25b8  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:24:47.0811 0x25b8  clr_optimization_v2.0.50727_64 - ok
23:24:47.0863 0x25b8  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:24:48.0054 0x25b8  clr_optimization_v4.0.30319_32 - ok
23:24:48.0067 0x25b8  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:24:48.0095 0x25b8  clr_optimization_v4.0.30319_64 - ok
23:24:48.0119 0x25b8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:24:48.0129 0x25b8  CmBatt - ok
23:24:48.0139 0x25b8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:24:48.0149 0x25b8  cmdide - ok
23:24:48.0193 0x25b8  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
23:24:48.0233 0x25b8  CNG - ok
23:24:48.0243 0x25b8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:24:48.0254 0x25b8  Compbatt - ok
23:24:48.0280 0x25b8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:24:48.0294 0x25b8  CompositeBus - ok
23:24:48.0306 0x25b8  COMSysApp - ok
23:24:48.0350 0x25b8  [ F310B453AC562F2C53D30AA6E35506BB, 600A2119657973112025DB3C0EEAB2E69D528BCCFEED75F40C6EF50B059EC8A0 ] cpuz138         C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys
23:24:48.0369 0x25b8  cpuz138 - ok
23:24:48.0374 0x2750  Object required for P2P: [ 295A5BFCE8D225D014DB4E6E69336279 ] AdobeFlashPlayerUpdateSvc
23:24:48.0393 0x25b8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
23:24:48.0403 0x25b8  crcdisk - ok
23:24:48.0443 0x25b8  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:24:48.0459 0x25b8  CryptSvc - ok
23:24:48.0517 0x25b8  dbupdate - ok
23:24:48.0522 0x25b8  dbupdatem - ok
23:24:48.0565 0x25b8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:24:48.0606 0x25b8  DcomLaunch - ok
23:24:48.0631 0x25b8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
23:24:48.0660 0x25b8  defragsvc - ok
23:24:48.0700 0x25b8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:24:48.0724 0x25b8  DfsC - ok
23:24:48.0738 0x25b8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:24:48.0761 0x25b8  Dhcp - ok
23:24:48.0881 0x25b8  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
23:24:48.0920 0x25b8  DiagTrack - ok
23:24:48.0942 0x25b8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
23:24:48.0965 0x25b8  discache - ok
23:24:48.0993 0x25b8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
23:24:49.0001 0x25b8  Disk - ok
23:24:49.0026 0x25b8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:24:49.0036 0x25b8  Dnscache - ok
23:24:49.0066 0x25b8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:24:49.0092 0x25b8  dot3svc - ok
23:24:49.0151 0x25b8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
23:24:49.0194 0x25b8  DPS - ok
23:24:49.0293 0x25b8  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:24:49.0318 0x25b8  drmkaud - ok
23:24:49.0391 0x25b8  [ 8407DDFAB85AE664E507C30314090385, 05F052C64D192CF69A462A5EC16DDA0D43CA5D0245900C9FCB9201685A2E7748 ] DrvAgent64      C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
23:24:49.0404 0x25b8  DrvAgent64 - ok
23:24:49.0497 0x25b8  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:24:49.0531 0x25b8  DXGKrnl - ok
23:24:49.0559 0x25b8  EagleX64 - ok
23:24:49.0579 0x25b8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
23:24:49.0634 0x25b8  EapHost - ok
23:24:49.0646 0x25b8  EasyAntiCheat - ok
23:24:49.0757 0x25b8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
23:24:49.0837 0x25b8  ebdrv - ok
23:24:49.0874 0x25b8  [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] EFS             C:\Windows\System32\lsass.exe
23:24:49.0882 0x25b8  EFS - ok
23:24:49.0950 0x25b8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:24:49.0988 0x25b8  ehRecvr - ok
23:24:50.0014 0x25b8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
23:24:50.0028 0x25b8  ehSched - ok
23:24:50.0057 0x25b8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
23:24:50.0082 0x25b8  elxstor - ok
23:24:50.0104 0x25b8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:24:50.0111 0x25b8  ErrDev - ok
23:24:50.0159 0x25b8  [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
23:24:50.0182 0x25b8  ES lite Service - ok
23:24:50.0213 0x25b8  [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
23:24:50.0221 0x25b8  EtronHub3 - ok
23:24:50.0232 0x25b8  [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
23:24:50.0241 0x25b8  EtronXHCI - ok
23:24:50.0273 0x25b8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
23:24:50.0305 0x25b8  EventSystem - ok
23:24:50.0330 0x25b8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
23:24:50.0357 0x25b8  exfat - ok
23:24:50.0374 0x25b8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:24:50.0402 0x25b8  fastfat - ok
23:24:50.0448 0x25b8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
23:24:50.0468 0x25b8  Fax - ok
23:24:50.0482 0x25b8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
23:24:50.0490 0x25b8  fdc - ok
23:24:50.0511 0x25b8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
23:24:50.0534 0x25b8  fdPHost - ok
23:24:50.0538 0x25b8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:24:50.0561 0x25b8  FDResPub - ok
23:24:50.0575 0x25b8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:24:50.0583 0x25b8  FileInfo - ok
23:24:50.0592 0x25b8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:24:50.0616 0x25b8  Filetrace - ok
23:24:50.0631 0x25b8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
23:24:50.0638 0x25b8  flpydisk - ok
23:24:50.0667 0x25b8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:24:50.0679 0x25b8  FltMgr - ok
23:24:50.0784 0x25b8  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
23:24:50.0823 0x25b8  FontCache - ok
23:24:50.0896 0x25b8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:24:50.0918 0x2750  Object send P2P result: true
23:24:50.0931 0x25b8  FontCache3.0.0.0 - ok
23:24:50.0944 0x25b8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:24:50.0955 0x25b8  FsDepends - ok
23:24:50.0969 0x25b8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:24:50.0977 0x25b8  Fs_Rec - ok
23:24:50.0999 0x25b8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:24:51.0013 0x25b8  fvevol - ok
23:24:51.0027 0x25b8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
23:24:51.0035 0x25b8  gagp30kx - ok
23:24:51.0074 0x25b8  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
23:24:51.0081 0x25b8  gdrv - ok
23:24:51.0121 0x25b8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:24:51.0141 0x25b8  GEARAspiWDM - ok
23:24:51.0228 0x25b8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
23:24:51.0276 0x25b8  gpsvc - ok
23:24:51.0341 0x25b8  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:24:51.0359 0x25b8  gupdate - ok
23:24:51.0375 0x25b8  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:24:51.0387 0x25b8  gupdatem - ok
23:24:51.0403 0x25b8  [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64        C:\Windows\GVTDrv64.sys
23:24:51.0413 0x25b8  GVTDrv64 - ok
23:24:51.0440 0x25b8  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
23:24:51.0449 0x25b8  hamachi - ok
23:24:51.0457 0x25b8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:24:51.0467 0x25b8  hcw85cir - ok
23:24:51.0499 0x25b8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:24:51.0514 0x25b8  HdAudAddService - ok
23:24:51.0528 0x25b8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:24:51.0539 0x25b8  HDAudBus - ok
23:24:51.0558 0x25b8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
23:24:51.0565 0x25b8  HidBatt - ok
23:24:51.0579 0x25b8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
23:24:51.0589 0x25b8  HidBth - ok
23:24:51.0597 0x25b8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
23:24:51.0606 0x25b8  HidIr - ok
23:24:51.0630 0x25b8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
23:24:51.0653 0x25b8  hidserv - ok
23:24:51.0680 0x25b8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:24:51.0687 0x25b8  HidUsb - ok
23:24:51.0713 0x25b8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:24:51.0737 0x25b8  hkmsvc - ok
23:24:51.0762 0x25b8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:24:51.0773 0x25b8  HomeGroupListener - ok
23:24:51.0810 0x25b8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:24:51.0821 0x25b8  HomeGroupProvider - ok
23:24:51.0835 0x25b8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:24:51.0843 0x25b8  HpSAMD - ok
23:24:51.0926 0x25b8  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:24:51.0957 0x25b8  HTTP - ok
23:24:51.0991 0x25b8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:24:52.0002 0x25b8  hwpolicy - ok
23:24:52.0031 0x25b8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
23:24:52.0044 0x25b8  i8042prt - ok
23:24:52.0094 0x25b8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:24:52.0119 0x25b8  iaStorV - ok
23:24:52.0151 0x25b8  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:24:52.0154 0x25b8  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
23:24:54.0884 0x25b8  Detect skipped due to KSN trusted
23:24:54.0884 0x25b8  IDriverT - ok
23:24:54.0978 0x25b8  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:24:55.0013 0x25b8  idsvc - ok
23:24:55.0024 0x25b8  IEEtwCollectorService - ok
23:24:55.0036 0x25b8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
23:24:55.0044 0x25b8  iirsp - ok
23:24:55.0086 0x25b8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
23:24:55.0110 0x25b8  IKEEXT - ok
23:24:55.0287 0x25b8  [ 3A2D6740F51BE48C0FD01AD907329DEE, 4FD899CD6E3B3D5C9803E52CB72F002B6CFC144D524FAF6845CF6D115EC6E059 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:24:55.0383 0x25b8  IntcAzAudAddService - ok
23:24:55.0417 0x25b8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
23:24:55.0424 0x25b8  intelide - ok
23:24:55.0443 0x25b8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:24:55.0452 0x25b8  intelppm - ok
23:24:55.0487 0x25b8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:24:55.0512 0x25b8  IPBusEnum - ok
23:24:55.0539 0x25b8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:24:55.0562 0x25b8  IpFilterDriver - ok
23:24:55.0596 0x25b8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:24:55.0614 0x25b8  iphlpsvc - ok
23:24:55.0639 0x25b8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:24:55.0648 0x25b8  IPMIDRV - ok
23:24:55.0659 0x25b8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:24:55.0684 0x25b8  IPNAT - ok
23:24:55.0732 0x25b8  [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:24:55.0749 0x25b8  iPod Service - ok
23:24:55.0774 0x25b8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:24:55.0784 0x25b8  IRENUM - ok
23:24:55.0801 0x25b8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:24:55.0808 0x25b8  isapnp - ok
23:24:55.0834 0x25b8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:24:55.0847 0x25b8  iScsiPrt - ok
23:24:55.0866 0x25b8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
23:24:55.0873 0x25b8  kbdclass - ok
23:24:55.0885 0x25b8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
23:24:55.0893 0x25b8  kbdhid - ok
23:24:55.0905 0x25b8  [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] KeyIso          C:\Windows\system32\lsass.exe
23:24:55.0913 0x25b8  KeyIso - ok
23:24:55.0942 0x25b8  [ 0F776895884B8DC430A307D57FD867BB, F9E8C8A04D757CEAD86938BEEFFAD9750589037E16FB1A2B0A90E4484E1A6B65 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:24:55.0951 0x25b8  KSecDD - ok
23:24:55.0960 0x25b8  [ 28E75F316CCCD79337E4957C53017D4B, 3BABDA50B4CE72F7F9A0FD7A33DDB19463A01F188D46354E0B411FC0389C01BE ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:24:55.0969 0x25b8  KSecPkg - ok
23:24:55.0976 0x25b8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:24:55.0999 0x25b8  ksthunk - ok
23:24:56.0026 0x25b8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:24:56.0056 0x25b8  KtmRm - ok
23:24:56.0107 0x25b8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
23:24:56.0153 0x25b8  LanmanServer - ok
23:24:56.0189 0x25b8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:24:56.0238 0x25b8  LanmanWorkstation - ok
23:24:56.0265 0x25b8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:24:56.0288 0x25b8  lltdio - ok
23:24:56.0313 0x25b8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:24:56.0342 0x25b8  lltdsvc - ok
23:24:56.0356 0x25b8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:24:56.0380 0x25b8  lmhosts - ok
23:24:56.0416 0x25b8  LMIGuardianSvc - ok
23:24:56.0453 0x25b8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
23:24:56.0483 0x25b8  LSI_FC - ok
23:24:56.0497 0x25b8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
23:24:56.0510 0x25b8  LSI_SAS - ok
23:24:56.0514 0x25b8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:24:56.0522 0x25b8  LSI_SAS2 - ok
23:24:56.0528 0x25b8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:24:56.0537 0x25b8  LSI_SCSI - ok
23:24:56.0557 0x25b8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
23:24:56.0582 0x25b8  luafv - ok
23:24:56.0622 0x25b8  [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
23:24:56.0630 0x25b8  MBAMSwissArmy - ok
23:24:56.0655 0x25b8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:24:56.0664 0x25b8  Mcx2Svc - ok
23:24:56.0674 0x25b8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
23:24:56.0682 0x25b8  megasas - ok
23:24:56.0693 0x25b8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
23:24:56.0706 0x25b8  MegaSR - ok
23:24:56.0710 0x25b8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
23:24:56.0734 0x25b8  MMCSS - ok
23:24:56.0751 0x25b8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
23:24:56.0774 0x25b8  Modem - ok
23:24:56.0785 0x25b8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:24:56.0794 0x25b8  monitor - ok
23:24:56.0798 0x25b8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:24:56.0806 0x25b8  mouclass - ok
23:24:56.0828 0x25b8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:24:56.0836 0x25b8  mouhid - ok
23:24:56.0867 0x25b8  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:24:56.0892 0x25b8  mountmgr - ok
23:24:56.0934 0x25b8  [ 9FC679D10A7377BB04ECC3D0E2E26B53, 24ACD4EC1618A052C29E4463138B28F62C8B78D442DB82F4925E64FC5849A096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:24:56.0964 0x25b8  MozillaMaintenance - ok
23:24:56.0991 0x25b8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:24:57.0006 0x25b8  mpio - ok
23:24:57.0023 0x25b8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:24:57.0056 0x25b8  mpsdrv - ok
23:24:57.0102 0x25b8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:24:57.0141 0x25b8  MpsSvc - ok
23:24:57.0178 0x25b8  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:24:57.0206 0x25b8  MRxDAV - ok
23:24:57.0238 0x25b8  [ 32B85C4923D895B2FB35821A799BA38D, 7A7E5D08F745DB9B498B4BE946325FF7DAA7FA27589D9423FCA4558D20780026 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:24:57.0253 0x25b8  mrxsmb - ok
23:24:57.0275 0x25b8  [ A572BEF41F3C55D7DAF24D2340C91FEC, 1E51EEFEABCDCB664CD39437C2275B160860FB433EAA8DC905D5BC742FD03529 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:24:57.0292 0x25b8  mrxsmb10 - ok
23:24:57.0303 0x25b8  [ C49F1C4CA74FC52AFB2E892D8E50EA39, 9E7A2453627A82AFF4CE3F285AFF105C3F92F423C07E5C43E76BEC523841B8F7 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:24:57.0312 0x25b8  mrxsmb20 - ok
23:24:57.0342 0x25b8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:24:57.0349 0x25b8  msahci - ok
23:24:57.0387 0x25b8  [ A592A054D78750B4D73ABAA4C94DECDF, 40B135C9F9EE698EC78BD19BD18353AE2CF4D020DDB9CFC37CD2FDBF7602614A ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
23:24:57.0396 0x25b8  MSCamSvc - ok
23:24:57.0411 0x25b8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:24:57.0420 0x25b8  msdsm - ok
23:24:57.0437 0x25b8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
23:24:57.0448 0x25b8  MSDTC - ok
23:24:57.0462 0x25b8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:24:57.0498 0x25b8  Msfs - ok
23:24:57.0508 0x25b8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:24:57.0531 0x25b8  mshidkmdf - ok
23:24:57.0553 0x25b8  [ 55218F924E55FD2786ED40EDF4ED79C3, C6000DE3A1FB526ECB77438A03F7212517CCD5E0CC9DDA07826865F8B980BEA0 ] MSHUSBVideo     C:\Windows\system32\Drivers\nx6000.sys
23:24:57.0560 0x25b8  MSHUSBVideo - ok
23:24:57.0561 0x25b8  MSICDSetup - ok
23:24:57.0581 0x25b8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:24:57.0588 0x25b8  msisadrv - ok
23:24:57.0615 0x25b8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:24:57.0641 0x25b8  MSiSCSI - ok
23:24:57.0644 0x25b8  msiserver - ok
23:24:57.0673 0x25b8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:24:57.0697 0x25b8  MSKSSRV - ok
23:24:57.0708 0x25b8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:24:57.0730 0x25b8  MSPCLOCK - ok
23:24:57.0739 0x25b8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:24:57.0762 0x25b8  MSPQM - ok
23:24:57.0795 0x25b8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:24:57.0810 0x25b8  MsRPC - ok
23:24:57.0821 0x25b8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:24:57.0829 0x25b8  mssmbios - ok
23:24:57.0843 0x25b8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:24:57.0865 0x25b8  MSTEE - ok
23:24:57.0874 0x25b8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
23:24:57.0882 0x25b8  MTConfig - ok
23:24:57.0904 0x25b8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
23:24:57.0912 0x25b8  Mup - ok
23:24:57.0969 0x25b8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
23:24:58.0022 0x25b8  napagent - ok
23:24:58.0055 0x25b8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:24:58.0077 0x25b8  NativeWifiP - ok
23:24:58.0132 0x25b8  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:24:58.0158 0x25b8  NDIS - ok
23:24:58.0172 0x25b8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:24:58.0195 0x25b8  NdisCap - ok
23:24:58.0212 0x25b8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:24:58.0235 0x25b8  NdisTapi - ok
23:24:58.0276 0x25b8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:24:58.0326 0x25b8  Ndisuio - ok
23:24:58.0357 0x25b8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:24:58.0382 0x25b8  NdisWan - ok
23:24:58.0394 0x25b8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:24:58.0417 0x25b8  NDProxy - ok
23:24:58.0464 0x25b8  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
23:24:58.0490 0x25b8  Netaapl - ok
23:24:58.0501 0x25b8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:24:58.0530 0x25b8  NetBIOS - ok
23:24:58.0548 0x25b8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:24:58.0575 0x25b8  NetBT - ok
23:24:58.0586 0x25b8  [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] Netlogon        C:\Windows\system32\lsass.exe
23:24:58.0593 0x25b8  Netlogon - ok
23:24:58.0629 0x25b8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
23:24:58.0659 0x25b8  Netman - ok
23:24:58.0726 0x25b8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0764 0x25b8  NetMsmqActivator - ok
23:24:58.0782 0x25b8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0794 0x25b8  NetPipeActivator - ok
23:24:58.0831 0x25b8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
23:24:58.0865 0x25b8  netprofm - ok
23:24:58.0882 0x25b8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0894 0x25b8  NetTcpActivator - ok
23:24:58.0899 0x25b8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:24:58.0910 0x25b8  NetTcpPortSharing - ok
23:24:58.0927 0x25b8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
23:24:58.0937 0x25b8  nfrd960 - ok
23:24:58.0973 0x25b8  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:24:59.0010 0x25b8  NlaSvc - ok
23:24:59.0053 0x25b8  [ C31FA031335EFF434B2D94278E74BCCE, F5DFD40C16E4013CBAD0E4FB8EF2B4419702B9C215218F69C4A2DD7C4C4C1E2B ] NPF             C:\Windows\system32\DRIVERS\npf.sys
23:24:59.0065 0x25b8  NPF - ok
23:24:59.0080 0x25b8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:24:59.0121 0x25b8  Npfs - ok
23:24:59.0143 0x25b8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
23:24:59.0167 0x25b8  nsi - ok
23:24:59.0178 0x25b8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:24:59.0202 0x25b8  nsiproxy - ok
23:24:59.0297 0x25b8  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:24:59.0399 0x25b8  Ntfs - ok
23:24:59.0421 0x25b8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
23:24:59.0445 0x25b8  Null - ok
23:24:59.0479 0x25b8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:24:59.0513 0x25b8  nvraid - ok
23:24:59.0530 0x25b8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:24:59.0545 0x25b8  nvstor - ok
23:24:59.0562 0x25b8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:24:59.0576 0x25b8  nv_agp - ok
23:24:59.0588 0x25b8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:24:59.0599 0x25b8  ohci1394 - ok
23:24:59.0614 0x25b8  Origin Client Service - ok
23:24:59.0666 0x25b8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:24:59.0701 0x25b8  p2pimsvc - ok
23:24:59.0728 0x25b8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
23:24:59.0751 0x25b8  p2psvc - ok
23:24:59.0764 0x25b8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
23:24:59.0773 0x25b8  Parport - ok
23:24:59.0792 0x25b8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:24:59.0800 0x25b8  partmgr - ok
23:24:59.0829 0x25b8  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:24:59.0840 0x25b8  PcaSvc - ok
23:24:59.0851 0x25b8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
23:24:59.0862 0x25b8  pci - ok
23:24:59.0880 0x25b8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
23:24:59.0888 0x25b8  pciide - ok
23:24:59.0895 0x25b8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:24:59.0906 0x25b8  pcmcia - ok
23:24:59.0929 0x25b8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:24:59.0937 0x25b8  pcw - ok
23:24:59.0977 0x25b8  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:24:59.0997 0x25b8  PEAUTH - ok
23:25:00.0048 0x25b8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:25:00.0057 0x25b8  PerfHost - ok
23:25:00.0120 0x25b8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
23:25:00.0171 0x25b8  pla - ok
23:25:00.0203 0x25b8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:25:00.0218 0x25b8  PlugPlay - ok
23:25:00.0233 0x25b8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:25:00.0241 0x25b8  PNRPAutoReg - ok
23:25:00.0256 0x25b8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:25:00.0269 0x25b8  PNRPsvc - ok
23:25:00.0308 0x25b8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:25:00.0340 0x25b8  PolicyAgent - ok
23:25:00.0364 0x25b8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
23:25:00.0391 0x25b8  Power - ok
23:25:00.0425 0x25b8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:25:00.0449 0x25b8  PptpMiniport - ok
23:25:00.0465 0x25b8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
23:25:00.0472 0x25b8  Processor - ok
23:25:00.0500 0x25b8  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:25:00.0511 0x25b8  ProfSvc - ok
23:25:00.0524 0x25b8  [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] ProtectedStorage C:\Windows\system32\lsass.exe
23:25:00.0532 0x25b8  ProtectedStorage - ok
23:25:00.0562 0x25b8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:25:00.0587 0x25b8  Psched - ok
23:25:00.0641 0x25b8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
23:25:00.0678 0x25b8  ql2300 - ok
23:25:00.0696 0x25b8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
23:25:00.0705 0x25b8  ql40xx - ok
23:25:00.0733 0x25b8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
23:25:00.0748 0x25b8  QWAVE - ok
23:25:00.0760 0x25b8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:25:00.0770 0x25b8  QWAVEdrv - ok
23:25:00.0777 0x25b8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:25:00.0800 0x25b8  RasAcd - ok
23:25:00.0829 0x25b8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:25:00.0900 0x25b8  RasAgileVpn - ok
23:25:00.0907 0x25b8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
23:25:00.0944 0x25b8  RasAuto - ok
23:25:00.0976 0x25b8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:25:01.0011 0x25b8  Rasl2tp - ok
23:25:01.0061 0x25b8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
23:25:01.0109 0x25b8  RasMan - ok
23:25:01.0124 0x25b8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:25:01.0160 0x25b8  RasPppoe - ok
23:25:01.0171 0x25b8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:25:01.0196 0x25b8  RasSstp - ok
23:25:01.0231 0x25b8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:25:01.0259 0x25b8  rdbss - ok
23:25:01.0268 0x25b8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:25:01.0277 0x25b8  rdpbus - ok
23:25:01.0290 0x25b8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:25:01.0313 0x25b8  RDPCDD - ok
23:25:01.0337 0x25b8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:25:01.0360 0x25b8  RDPENCDD - ok
23:25:01.0373 0x25b8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:25:01.0396 0x25b8  RDPREFMP - ok
23:25:01.0431 0x25b8  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:25:01.0452 0x25b8  RDPWD - ok
23:25:01.0500 0x25b8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:25:01.0528 0x25b8  rdyboost - ok
23:25:01.0547 0x25b8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:25:01.0573 0x25b8  RemoteAccess - ok
23:25:01.0597 0x25b8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:25:01.0624 0x25b8  RemoteRegistry - ok
23:25:01.0637 0x25b8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:25:01.0662 0x25b8  RpcEptMapper - ok
23:25:01.0672 0x25b8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
23:25:01.0680 0x25b8  RpcLocator - ok
23:25:01.0718 0x25b8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
23:25:01.0751 0x25b8  RpcSs - ok
23:25:01.0782 0x25b8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:25:01.0815 0x25b8  rspndr - ok
23:25:01.0826 0x25b8  RTHDMIAzAudService - ok
23:25:01.0862 0x25b8  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
23:25:01.0876 0x25b8  RTL8167 - ok
23:25:01.0885 0x25b8  [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] SamSs           C:\Windows\system32\lsass.exe
23:25:01.0893 0x25b8  SamSs - ok
23:25:01.0916 0x25b8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:25:01.0925 0x25b8  sbp2port - ok
23:25:01.0945 0x25b8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:25:01.0979 0x25b8  SCardSvr - ok
23:25:02.0003 0x25b8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:25:02.0026 0x25b8  scfilter - ok
23:25:02.0072 0x25b8  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
23:25:02.0102 0x25b8  Schedule - ok
23:25:02.0148 0x25b8  [ 2A50BE713FAF033420466C25979C028E, 46EAF744B8EB23F5D134D63C4600EE46662FAB28282CD762945DFB448D2463B3 ] SCMNdisP        C:\Windows\system32\DRIVERS\scmndisp.sys
23:25:02.0154 0x25b8  SCMNdisP - ok
23:25:02.0183 0x25b8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:25:02.0206 0x25b8  SCPolicySvc - ok
23:25:02.0243 0x25b8  [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
23:25:02.0250 0x25b8  ScreamBAudioSvc - ok
23:25:02.0278 0x25b8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:25:02.0288 0x25b8  SDRSVC - ok
23:25:02.0306 0x25b8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:25:02.0322 0x25b8  secdrv - ok
23:25:02.0345 0x25b8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
23:25:02.0368 0x25b8  seclogon - ok
23:25:02.0392 0x25b8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
23:25:02.0417 0x25b8  SENS - ok
23:25:02.0433 0x25b8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:25:02.0441 0x25b8  SensrSvc - ok
23:25:02.0461 0x25b8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
23:25:02.0468 0x25b8  Serenum - ok
23:25:02.0490 0x25b8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
23:25:02.0499 0x25b8  Serial - ok
23:25:02.0530 0x25b8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
23:25:02.0538 0x25b8  sermouse - ok
23:25:02.0580 0x25b8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
23:25:02.0628 0x25b8  SessionEnv - ok
23:25:02.0651 0x25b8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:25:02.0660 0x25b8  sffdisk - ok
23:25:02.0667 0x25b8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:25:02.0676 0x25b8  sffp_mmc - ok
23:25:02.0679 0x25b8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:25:02.0688 0x25b8  sffp_sd - ok
23:25:02.0699 0x25b8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
23:25:02.0706 0x25b8  sfloppy - ok
23:25:02.0728 0x25b8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:25:02.0758 0x25b8  SharedAccess - ok
23:25:02.0794 0x25b8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:25:02.0823 0x25b8  ShellHWDetection - ok
23:25:02.0834 0x25b8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:25:02.0842 0x25b8  SiSRaid2 - ok
23:25:02.0847 0x25b8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
23:25:02.0855 0x25b8  SiSRaid4 - ok
23:25:02.0955 0x25b8  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:25:02.0981 0x25b8  SkypeUpdate - ok
23:25:03.0006 0x25b8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:25:03.0030 0x25b8  Smb - ok
23:25:03.0052 0x25b8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:25:03.0060 0x25b8  SNMPTRAP - ok
23:25:03.0079 0x25b8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:25:03.0087 0x25b8  spldr - ok
23:25:03.0120 0x25b8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
23:25:03.0139 0x25b8  Spooler - ok
23:25:03.0243 0x25b8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
23:25:03.0336 0x25b8  sppsvc - ok
23:25:03.0358 0x25b8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:25:03.0383 0x25b8  sppuinotify - ok
23:25:03.0414 0x25b8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:25:03.0429 0x25b8  srv - ok
23:25:03.0448 0x25b8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:25:03.0463 0x25b8  srv2 - ok
23:25:03.0479 0x25b8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:25:03.0489 0x25b8  srvnet - ok
23:25:03.0523 0x25b8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:25:03.0551 0x25b8  SSDPSRV - ok
23:25:03.0565 0x25b8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:25:03.0590 0x25b8  SstpSvc - ok
23:25:03.0689 0x25b8  [ A831D5A4D2F5138E332AC1B98315EBB1, 2FF5C256A83ACFB5CEC17B9FA7875048F770B793C37657D6D4E37C70B2F857A8 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:25:03.0718 0x25b8  Steam Client Service - ok
23:25:03.0736 0x25b8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
23:25:03.0743 0x25b8  stexstor - ok
23:25:03.0825 0x25b8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
23:25:03.0861 0x25b8  stisvc - ok
23:25:03.0884 0x25b8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:25:03.0895 0x25b8  swenum - ok
23:25:03.0920 0x25b8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
23:25:03.0964 0x25b8  swprv - ok
23:25:04.0033 0x25b8  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
23:25:04.0075 0x25b8  SysMain - ok
23:25:04.0106 0x25b8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:25:04.0119 0x25b8  TabletInputService - ok
23:25:04.0141 0x25b8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:25:04.0170 0x25b8  TapiSrv - ok
23:25:04.0192 0x25b8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
23:25:04.0217 0x25b8  TBS - ok
23:25:04.0314 0x25b8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:25:04.0360 0x25b8  Tcpip - ok
23:25:04.0406 0x25b8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:25:04.0451 0x25b8  TCPIP6 - ok
23:25:04.0480 0x25b8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:25:04.0487 0x25b8  tcpipreg - ok
23:25:04.0531 0x25b8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:25:04.0557 0x25b8  TDPIPE - ok
23:25:04.0580 0x25b8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:25:04.0606 0x25b8  TDTCP - ok
23:25:04.0654 0x25b8  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:25:04.0667 0x25b8  tdx - ok
23:25:04.0852 0x25b8  [ FC8DC5DB5F707C96FEBC526AA4CE562A, AB97B53EA9E8C55A18733A6A3DE42E6EBC8BA9150796338DF04AB2DDA5124E1A ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
23:25:04.0978 0x25b8  TeamViewer - ok
23:25:05.0015 0x25b8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:25:05.0023 0x25b8  TermDD - ok
23:25:05.0095 0x25b8  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
23:25:05.0125 0x25b8  TermService - ok
23:25:05.0145 0x25b8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
23:25:05.0157 0x25b8  Themes - ok
23:25:05.0174 0x25b8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
23:25:05.0204 0x25b8  THREADORDER - ok
23:25:05.0213 0x25b8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
23:25:05.0249 0x25b8  TrkWks - ok
23:25:05.0298 0x25b8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:25:05.0342 0x25b8  TrustedInstaller - ok
23:25:05.0371 0x25b8  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:25:05.0378 0x25b8  tssecsrv - ok
23:25:05.0415 0x25b8  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:25:05.0425 0x25b8  TsUsbFlt - ok
23:25:05.0588 0x25b8  [ 4645910BE6CB805DB15CC49D8B6BAA39, A773290E200E8E7BCD52A88EA2464D93D2BFF47434592DF46B626F9C86BC9ED1 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
23:25:05.0653 0x25b8  TuneUp.UtilitiesSvc - ok
23:25:05.0697 0x25b8  [ DB3C912A851FCA6358FED4D53DAA7E91, B35375EC9AF61D829489D9B278605E2098D6402419E79EB24C65D3B65816AEBC ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
23:25:05.0727 0x25b8  TuneUpUtilitiesDrv - ok
23:25:05.0759 0x25b8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:25:05.0794 0x25b8  tunnel - ok
23:25:05.0811 0x25b8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
23:25:05.0823 0x25b8  uagp35 - ok
23:25:05.0857 0x25b8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:25:05.0889 0x25b8  udfs - ok
23:25:05.0907 0x25b8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:25:05.0916 0x25b8  UI0Detect - ok
23:25:05.0924 0x25b8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:25:05.0932 0x25b8  uliagpkx - ok
23:25:05.0957 0x25b8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
23:25:05.0965 0x25b8  umbus - ok
23:25:05.0978 0x25b8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
23:25:05.0985 0x25b8  UmPass - ok
23:25:06.0007 0x25b8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
23:25:06.0038 0x25b8  upnphost - ok
23:25:06.0091 0x25b8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
23:25:06.0099 0x25b8  USBAAPL64 - ok
23:25:06.0132 0x25b8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
23:25:06.0141 0x25b8  usbaudio - ok
23:25:06.0166 0x25b8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:25:06.0174 0x25b8  usbccgp - ok
23:25:06.0198 0x25b8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:25:06.0207 0x25b8  usbcir - ok
23:25:06.0223 0x25b8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
23:25:06.0231 0x25b8  usbehci - ok
23:25:06.0270 0x25b8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:25:06.0283 0x25b8  usbhub - ok
23:25:06.0296 0x25b8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
23:25:06.0302 0x25b8  usbohci - ok
23:25:06.0317 0x25b8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:25:06.0326 0x25b8  usbprint - ok
23:25:06.0348 0x25b8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:25:06.0356 0x25b8  USBSTOR - ok
23:25:06.0365 0x25b8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:25:06.0372 0x25b8  usbuhci - ok
23:25:06.0390 0x25b8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
23:25:06.0401 0x25b8  usbvideo - ok
23:25:06.0425 0x25b8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
23:25:06.0450 0x25b8  UxSms - ok
23:25:06.0503 0x25b8  [ E646F34228D63EF5BA94A8E209430D2B, 082DB7A2C377AFF085D777DC1F070965C33E8C4F78F72E0B478551A218F039A8 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
23:25:06.0510 0x25b8  UxTuneUp - ok
23:25:06.0525 0x25b8  [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] VaultSvc        C:\Windows\system32\lsass.exe
23:25:06.0532 0x25b8  VaultSvc - ok
23:25:06.0558 0x25b8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:25:06.0565 0x25b8  vdrvroot - ok
23:25:06.0604 0x25b8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
23:25:06.0638 0x25b8  vds - ok
23:25:06.0654 0x25b8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:25:06.0663 0x25b8  vga - ok
23:25:06.0674 0x25b8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:25:06.0698 0x25b8  VgaSave - ok
23:25:06.0728 0x25b8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:25:06.0739 0x25b8  vhdmp - ok
23:25:06.0755 0x25b8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:25:06.0763 0x25b8  viaide - ok
23:25:06.0774 0x25b8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:25:06.0783 0x25b8  volmgr - ok
23:25:06.0824 0x25b8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:25:06.0839 0x25b8  volmgrx - ok
23:25:06.0858 0x25b8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:25:06.0870 0x25b8  volsnap - ok
23:25:06.0884 0x25b8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
23:25:06.0894 0x25b8  vsmraid - ok
23:25:06.0961 0x25b8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
23:25:07.0016 0x25b8  VSS - ok
23:25:07.0034 0x25b8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:25:07.0043 0x25b8  vwifibus - ok
23:25:07.0066 0x25b8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:25:07.0076 0x25b8  vwififlt - ok
23:25:07.0105 0x25b8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
23:25:07.0136 0x25b8  W32Time - ok
23:25:07.0149 0x25b8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
23:25:07.0156 0x25b8  WacomPen - ok
23:25:07.0181 0x25b8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:25:07.0205 0x25b8  WANARP - ok
23:25:07.0209 0x25b8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:25:07.0232 0x25b8  Wanarpv6 - ok
23:25:07.0293 0x25b8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
23:25:07.0330 0x25b8  wbengine - ok
23:25:07.0357 0x25b8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:25:07.0372 0x25b8  WbioSrvc - ok
23:25:07.0404 0x25b8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:25:07.0422 0x25b8  wcncsvc - ok
23:25:07.0431 0x25b8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:25:07.0440 0x25b8  WcsPlugInService - ok
23:25:07.0453 0x25b8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
23:25:07.0461 0x25b8  Wd - ok
23:25:07.0507 0x25b8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:25:07.0531 0x25b8  Wdf01000 - ok
23:25:07.0555 0x25b8  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:25:07.0564 0x25b8  WdiServiceHost - ok
23:25:07.0568 0x25b8  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:25:07.0577 0x25b8  WdiSystemHost - ok
23:25:07.0609 0x25b8  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
23:25:07.0621 0x25b8  WebClient - ok
23:25:07.0639 0x25b8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:25:07.0667 0x25b8  Wecsvc - ok
23:25:07.0685 0x25b8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:25:07.0711 0x25b8  wercplsupport - ok
23:25:07.0741 0x25b8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:25:07.0766 0x25b8  WerSvc - ok
23:25:07.0779 0x25b8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:25:07.0803 0x25b8  WfpLwf - ok
23:25:07.0811 0x25b8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:25:07.0819 0x25b8  WIMMount - ok
23:25:07.0835 0x25b8  WinDefend - ok
23:25:07.0839 0x25b8  WinHttpAutoProxySvc - ok
23:25:07.0876 0x25b8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:25:07.0913 0x25b8  Winmgmt - ok
23:25:07.0986 0x25b8  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
23:25:08.0041 0x25b8  WinRM - ok
23:25:08.0086 0x25b8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:25:08.0096 0x25b8  WinUsb - ok
23:25:08.0138 0x25b8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:25:08.0167 0x25b8  Wlansvc - ok
23:25:08.0191 0x25b8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:25:08.0198 0x25b8  WmiAcpi - ok
23:25:08.0225 0x25b8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:25:08.0237 0x25b8  wmiApSrv - ok
23:25:08.0259 0x25b8  WMPNetworkSvc - ok
23:25:08.0269 0x25b8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:25:08.0277 0x25b8  WPCSvc - ok
23:25:08.0304 0x25b8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:25:08.0315 0x25b8  WPDBusEnum - ok
23:25:08.0329 0x25b8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:25:08.0355 0x25b8  ws2ifsl - ok
23:25:08.0398 0x25b8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
23:25:08.0411 0x25b8  wscsvc - ok
23:25:08.0414 0x25b8  WSearch - ok
23:25:08.0476 0x25b8  [ D161D62AE8D3F3EC1197B012D5E47431, 9D89B5C4B74231F41C039E142E69F4E8060259F1897E7077FE0EE94D58D4A1BA ] WSWNDA3100v2    C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
23:25:08.0488 0x25b8  WSWNDA3100v2 - ok
23:25:08.0578 0x25b8  [ 6075791ED85E47A2A2916B1F34582944, 25B5FAD161711875B38BDD014A26FA527C8EE4854D485989D19A72D5EBBA4054 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:25:08.0639 0x25b8  wuauserv - ok
23:25:08.0660 0x25b8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:25:08.0669 0x25b8  WudfPf - ok
23:25:08.0700 0x25b8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:25:08.0711 0x25b8  WUDFRd - ok
23:25:08.0719 0x25b8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:25:08.0728 0x25b8  wudfsvc - ok
23:25:08.0757 0x25b8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:25:08.0768 0x25b8  WwanSvc - ok
23:25:08.0815 0x25b8  X6va015 - ok
23:25:08.0817 0x25b8  X6va031 - ok
23:25:08.0831 0x25b8  X6va060 - ok
23:25:08.0848 0x25b8  xhunter1 - ok
23:25:08.0865 0x25b8  ================ Scan global ===============================
23:25:08.0891 0x25b8  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
23:25:08.0932 0x25b8  [ CE14A4BBF890A7D4C898CF886D145EC9, AD4BE7CBB0C624EC00E8496AF33AC5AB8C5689C75C66C4C99F2FB7149E912D18 ] C:\Windows\system32\winsrv.dll
23:25:08.0948 0x25b8  [ CE14A4BBF890A7D4C898CF886D145EC9, AD4BE7CBB0C624EC00E8496AF33AC5AB8C5689C75C66C4C99F2FB7149E912D18 ] C:\Windows\system32\winsrv.dll
23:25:08.0971 0x25b8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:25:09.0021 0x25b8  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
23:25:09.0031 0x25b8  [ Global ] - ok
23:25:09.0031 0x25b8  ================ Scan MBR ==================================
23:25:09.0043 0x25b8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:25:09.0267 0x25b8  \Device\Harddisk0\DR0 - ok
23:25:09.0268 0x25b8  ================ Scan VBR ==================================
23:25:09.0273 0x25b8  [ C45ED52722A2D9B2933C024D5FB5A698 ] \Device\Harddisk0\DR0\Partition1
23:25:09.0277 0x25b8  \Device\Harddisk0\DR0\Partition1 - ok
23:25:09.0283 0x25b8  [ 16825DC20864F4F56EB4AAEFB58D8CDE ] \Device\Harddisk0\DR0\Partition2
23:25:09.0286 0x25b8  \Device\Harddisk0\DR0\Partition2 - ok
23:25:09.0288 0x25b8  ================ Scan generic autorun ======================
23:25:09.0696 0x25b8  [ D0E9E2E198C8BA95297EF8C9D04865F1, 1889A66AEEEE1E9D80FB99E23AFBB23AF37044BAA8AE00070667D3B2E32AB804 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:25:10.0085 0x25b8  RtHDVCpl - ok
23:25:10.0148 0x25b8  [ 0133E5265FDD7063F87856C9BD5156C9, 27C0389B3FA0209C6B4D1A8A75AAD23525DD3B5DB7B0CD7358D1D6417818C8EF ] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
23:25:10.0156 0x25b8  LifeCam - ok
23:25:10.0227 0x25b8  Dropbox - ok
23:25:10.0460 0x2598  Object required for P2P: [ 4645910BE6CB805DB15CC49D8B6BAA39 ] TuneUp.UtilitiesSvc
23:25:10.0462 0x25b8  [ 16598A9758F386F82D2C447C70C95D10, 0A698135EFC195C359702AA76897B9C67712FDE0A54B51587134B65510B154ED ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
23:25:10.0487 0x25b8  StartCCC - ok
23:25:10.0550 0x25b8  [ 9E279D1BC39F5C6C530F0A0DB1D2DC98, A8CBB368E306DD72671B63A25C595E0F360768CBBB5C42C01899343BB7B79023 ] C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe
23:25:10.0559 0x25b8  EasyTuneVI - detected UnsignedFile.Multi.Generic ( 1 )
23:25:12.0941 0x2598  Object send P2P result: true
23:25:12.0992 0x25b8  Detect skipped due to KSN trusted
23:25:12.0992 0x25b8  EasyTuneVI - ok
23:25:13.0108 0x25b8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
23:25:13.0175 0x25b8  Sidebar - ok
23:25:13.0198 0x25b8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:25:13.0210 0x25b8  mctadmin - ok
23:25:13.0236 0x25b8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
23:25:13.0265 0x25b8  Sidebar - ok
23:25:13.0270 0x25b8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:25:13.0282 0x25b8  mctadmin - ok
23:25:13.0356 0x25b8  [ 105C276BB7B43501225C419B062096D0, F5D35230FC5E116FB04147F216313D2E2542D96E975B19F5FD9F7641CF11271F ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
23:25:13.0378 0x25b8  ApplePhotoStreams - ok
23:25:13.0540 0x25b8  [ 6FFAA12536B591E67BD17E5197714D6C, B672DF16F261A683D8EBD4A69BC01761B78D6F48425AC34784C826EA857443CD ] C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
23:25:13.0601 0x25b8  Spotify Web Helper - ok
23:25:13.0860 0x25b8  [ C05FA9531D3B18A91C0C6E97A746D011, 1B9FAE97949040B7B465772FB1F7432D7F7CA7D2CC5F1035FF278B198653857D ] C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
23:25:14.0040 0x25b8  Spotify - ok
23:25:14.0090 0x25b8  [ 3C10152733BEFC8A109A751EDBB59551, 38FCDAE6CE1369C1E7B08998AC1E597A494FC84CF528BFC82673CF3E7A5B8C27 ] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
23:25:14.0101 0x25b8  HydraVisionDesktopManager - detected UnsignedFile.Multi.Generic ( 1 )
23:25:16.0521 0x25b8  Detect skipped due to KSN trusted
23:25:16.0522 0x25b8  HydraVisionDesktopManager - ok
23:25:16.0523 0x25b8  Waiting for KSN requests completion. In queue: 27
23:25:17.0523 0x25b8  Waiting for KSN requests completion. In queue: 27
23:25:18.0523 0x25b8  Waiting for KSN requests completion. In queue: 27
23:25:19.0140 0x2058  Object required for P2P: [ 6FFAA12536B591E67BD17E5197714D6C ] C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
23:25:19.0523 0x25b8  Waiting for KSN requests completion. In queue: 2
23:25:20.0523 0x25b8  Waiting for KSN requests completion. In queue: 2
23:25:21.0523 0x25b8  Waiting for KSN requests completion. In queue: 2
23:25:21.0616 0x2058  Object send P2P result: true
23:25:22.0552 0x25b8  Win FW state via NFP2: disabled ( trusted )
23:25:25.0008 0x25b8  ============================================================
23:25:25.0008 0x25b8  Scan finished
23:25:25.0008 0x25b8  ============================================================
23:25:25.0027 0x265c  Detected object count: 0
23:25:25.0027 0x265c  Actual detected object count: 0
         
MfG Ainshval

Junkware Removal Tool ist auf dem desktop.
MBAM und AdwCleaner sind auch schon auf dem pc
__________________

Geändert von Ainshval (23.01.2016 um 11:46 Uhr)

Alt 23.01.2016, 12:22   #4
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Nochmal die logs vom nutzen von Adwcleaner, vor dem posten dieses Threads.

Code:
ATTFilter
# AdwCleaner v5.030 - Bericht erstellt am 22/01/2016 um 22:10:37
# Aktualisiert am 17/01/2016 von Xplode
# Datenbank : 2016-01-19.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Godlike - GODLIKE-PC
# Gestartet von : C:\Users\Godlike\Downloads\AdwCleaner_5.030.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files\FileViewPro
[-] Ordner Gelöscht : C:\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}
[-] Ordner Gelöscht : C:\Program Files (x86)\eSupport.com
[-] Ordner Gelöscht : C:\Program Files (x86)\SoftwareUpdater
[-] Ordner Gelöscht : C:\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}
[-] Ordner Gelöscht : C:\ProgramData\AVG Security Toolbar
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
[-] Ordner Gelöscht : C:\Users\Godlike\AppData\Local\eSupport.com
[-] Ordner Gelöscht : C:\Users\Godlike\AppData\Local\FileViewPro
[-] Ordner Gelöscht : C:\Users\Godlike\AppData\Roaming\Systweak
[-] Ordner Gelöscht : C:\Windows\Installer\{895529FD-A18D-4387-9613-0E72DBE542F8}
[#] Ordner Gelöscht : C:\Windows\SysNative\Tasks\Software Updater

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[-] Datei Gelöscht : C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\foxydeal.sqlite
[-] Datei Gelöscht : C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\user.js
[-] Datei Gelöscht : C:\Users\Godlike\Desktop\Find Drivers with DriverAgent.lnk
[-] Datei Gelöscht : C:\Windows\SysNative\roboot64.exe
[-] Datei Gelöscht : C:\Windows\SysNative\GroupPolicy\Machine\Registry.pol
[-] Datei Gelöscht : C:\Windows\SysNative\GroupPolicy\GPT.ini
[-] Datei Gelöscht : C:\Windows\SysWOW64\lavasofttcpservice.dll

***** [ DLLs ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****

[-] Geplante Aufgabe Gelöscht : Software Updater

***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DPBHO.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1C6F51F8-BCE6-4702-8952-6A8233359FBC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{C654F3FE-8E84-4BB7-87CF-8D9171FC3C73}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Schlüssel Gelöscht : HKCU\Software\eSupport.com
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Reg\Clean
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Reg\Clean
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverAgent_is1
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel Gelöscht : HKU\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel Gelöscht : HKU\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}

***** [ Internetbrowser ] *****

[-] [C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.quick_start.enable_search1", false);
[-] [C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\prefs.js] [Preference] Gelöscht : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [5131 Bytes] ##########
         
Quarantäne:
Code:
ATTFilter
C:\Program Files\FileViewPro\Aspose.Slides.lic->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Aspose.Slides.lic.vir
C:\Program Files\FileViewPro\axvlc.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\axvlc.dll.vir
C:\Program Files\FileViewPro\axvlc.dll.manifest->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\axvlc.dll.manifest.vir
C:\Program Files\FileViewPro\Be.Windows.Forms.HexBox.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Be.Windows.Forms.HexBox.dll.vir
C:\Program Files\FileViewPro\Declarations.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Declarations.dll.vir
C:\Program Files\FileViewPro\DevExpress.Data.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Data.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.Data.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Data.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.dll.vir
C:\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Office.v12.1.Core.xml.vir
C:\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.dll.vir
C:\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Printing.v12.1.Core.xml.vir
C:\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.dll.vir
C:\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.RichEdit.v12.1.Core.xml.vir
C:\Program Files\FileViewPro\DevExpress.Utils.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Utils.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.Utils.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.Utils.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraBars.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraEditors.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraGrid.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraPrinting.v12.1.xml.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Design.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Design.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Extensions.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Extensions.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Printing.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.Printing.dll.vir
C:\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\DevExpress.XtraRichEdit.v12.1.xml.vir
C:\Program Files\FileViewPro\EULA_FileViewPro.rtf->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\EULA_FileViewPro.rtf.vir
C:\Program Files\FileViewPro\Facebook.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Facebook.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Common.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Common.dll.vir
C:\Program Files\FileViewPro\FileViewPro.exe.config->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.exe.config.vir
C:\Program Files\FileViewPro\FileViewPro.Facebook.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Facebook.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Licensing.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Licensing.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Localization.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Localization.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Strings.3.resources->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Strings.3.resources.vir
C:\Program Files\FileViewPro\FileViewPro.Views.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Document.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Document.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Media.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Media.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Message.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Message.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Mime.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Mime.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Pdf.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Pdf.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Torrent.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Torrent.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Wpd.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Wpd.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Wps.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Wps.dll.vir
C:\Program Files\FileViewPro\FileViewPro.Views.Xps.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.Views.Xps.dll.vir
C:\Program Files\FileViewPro\FileViewPro.vshost.exe->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.vshost.exe.vir
C:\Program Files\FileViewPro\FileViewPro.vshost.exe.config->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.vshost.exe.config.vir
C:\Program Files\FileViewPro\FileViewPro.vshost.exe.manifest->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\FileViewPro.vshost.exe.manifest.vir
C:\Program Files\FileViewPro\ICSharpCode.SharpZipLib.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\ICSharpCode.SharpZipLib.dll.vir
C:\Program Files\FileViewPro\ICSharpCode.TextEditor.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\ICSharpCode.TextEditor.dll.vir
C:\Program Files\FileViewPro\ImageView.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\ImageView.dll.vir
C:\Program Files\FileViewPro\Implementation.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Implementation.dll.vir
C:\Program Files\FileViewPro\Interop.WIA.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Interop.WIA.dll.vir
C:\Program Files\FileViewPro\IsLicense50.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\IsLicense50.dll.vir
C:\Program Files\FileViewPro\libvlc.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\libvlc.dll.vir
C:\Program Files\FileViewPro\libvlccore.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\libvlccore.dll.vir
C:\Program Files\FileViewPro\LibVlcWrapper.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\LibVlcWrapper.dll.vir
C:\Program Files\FileViewPro\licenses.licx->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\licenses.licx.vir
C:\Program Files\FileViewPro\new_icon.ico->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\new_icon.ico.vir
C:\Program Files\FileViewPro\NLog.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\NLog.dll.vir
C:\Program Files\FileViewPro\O2S.Components.PDFRender4NET.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFRender4NET.dll.vir
C:\Program Files\FileViewPro\O2S.Components.PDFRender4NET.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFRender4NET.xml.vir
C:\Program Files\FileViewPro\O2S.Components.PDFView4NET.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFView4NET.dll.vir
C:\Program Files\FileViewPro\O2S.Components.PDFView4NET.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\O2S.Components.PDFView4NET.xml.vir
C:\Program Files\FileViewPro\PaintDotNet.Base.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Base.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Core.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Core.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Data.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Data.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Effects.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Effects.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.Resources.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.Resources.dll.vir
C:\Program Files\FileViewPro\PaintDotNet.SystemLayer.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\PaintDotNet.SystemLayer.dll.vir
C:\Program Files\FileViewPro\Plugins.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Plugins.xml.vir
C:\Program Files\FileViewPro\QlmControls.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\QlmControls.dll.vir
C:\Program Files\FileViewPro\QlmLicenseLib.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\QlmLicenseLib.dll.vir
C:\Program Files\FileViewPro\SDL.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SDL.dll.vir
C:\Program Files\FileViewPro\SevenZipSharp.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SevenZipSharp.dll.vir
C:\Program Files\FileViewPro\SimplePsd.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SimplePsd.dll.vir
C:\Program Files\FileViewPro\SocialExplorer.FastDBF.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SocialExplorer.FastDBF.dll.vir
C:\Program Files\FileViewPro\SpreadsheetGear.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SpreadsheetGear.dll.vir
C:\Program Files\FileViewPro\SpreadsheetGear.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\SpreadsheetGear.xml.vir
C:\Program Files\FileViewPro\Svg.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Svg.dll.vir
C:\Program Files\FileViewPro\swscale-0.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\swscale-0.dll.vir
C:\Program Files\FileViewPro\System.Windows.Forms.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\System.Windows.Forms.dll.vir
C:\Program Files\FileViewPro\TorrentParser.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\TorrentParser.dll.vir
C:\Program Files\FileViewPro\unassoc.bat->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\unassoc.bat.vir
C:\Program Files\FileViewPro\unins000.dat->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\unins000.dat.vir
C:\Program Files\FileViewPro\unins000.msg->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\unins000.msg.vir
C:\Program Files\FileViewPro\Wps\wps2html.exe->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Wps\wps2html.exe.vir
C:\Program Files\FileViewPro\Raw\dcraw.exe->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Raw\dcraw.exe.vir
C:\Program Files\FileViewPro\Langs\ar.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ar.xml.vir
C:\Program Files\FileViewPro\Langs\cs.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\cs.xml.vir
C:\Program Files\FileViewPro\Langs\da.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\da.xml.vir
C:\Program Files\FileViewPro\Langs\de.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\de.xml.vir
C:\Program Files\FileViewPro\Langs\el.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\el.xml.vir
C:\Program Files\FileViewPro\Langs\en-US.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\en-US.xml.vir
C:\Program Files\FileViewPro\Langs\en.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\en.xml.vir
C:\Program Files\FileViewPro\Langs\es.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\es.xml.vir
C:\Program Files\FileViewPro\Langs\fi.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\fi.xml.vir
C:\Program Files\FileViewPro\Langs\fr.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\fr.xml.vir
C:\Program Files\FileViewPro\Langs\hi.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\hi.xml.vir
C:\Program Files\FileViewPro\Langs\hu.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\hu.xml.vir
C:\Program Files\FileViewPro\Langs\it.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\it.xml.vir
C:\Program Files\FileViewPro\Langs\ja.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ja.xml.vir
C:\Program Files\FileViewPro\Langs\ko.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ko.xml.vir
C:\Program Files\FileViewPro\Langs\nl.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\nl.xml.vir
C:\Program Files\FileViewPro\Langs\no.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\no.xml.vir
C:\Program Files\FileViewPro\Langs\pl.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\pl.xml.vir
C:\Program Files\FileViewPro\Langs\pt-br.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\pt-br.xml.vir
C:\Program Files\FileViewPro\Langs\pt-pt.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\pt-pt.xml.vir
C:\Program Files\FileViewPro\Langs\ro.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ro.xml.vir
C:\Program Files\FileViewPro\Langs\ru.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\ru.xml.vir
C:\Program Files\FileViewPro\Langs\sv.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\sv.xml.vir
C:\Program Files\FileViewPro\Langs\tr.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\tr.xml.vir
C:\Program Files\FileViewPro\Langs\zh-cn.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\zh-cn.xml.vir
C:\Program Files\FileViewPro\Langs\zh-tw.xml->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Langs\zh-tw.xml.vir
C:\Program Files\FileViewPro\Cursors\PanToolCursor.cur->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Cursors\PanToolCursor.cur.vir
C:\Program Files\FileViewPro\Code\Extended\Patch-Mode.xshd->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Code\Extended\Patch-Mode.xshd.vir
C:\Program Files\FileViewPro\Code\Extended\Python-Mode.xshd->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Code\Extended\Python-Mode.xshd.vir
C:\Program Files\FileViewPro\Code\Extended\SQL-Mode.xshd->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\Code\Extended\SQL-Mode.xshd.vir
C:\Program Files\FileViewPro\7z\7z.dll->C:\AdwCleaner\Quarantine\C\Program Files\FileViewPro\7z\7z.dll.vir
C:\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\config.json->C:\AdwCleaner\Quarantine\C\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\config.json.vir
C:\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\def.bin->C:\AdwCleaner\Quarantine\C\Program Files\{0B0D8E39-9D14-4086-860E-4632A1F04A19}\def.bin.vir
C:\Program Files (x86)\eSupport.com\driveragent\DriverAgent.exe->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\DriverAgent.exe.vir
C:\Program Files (x86)\eSupport.com\driveragent\launcher64.dll->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\launcher64.dll.vir
C:\Program Files (x86)\eSupport.com\driveragent\unins000.dat->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\unins000.dat.vir
C:\Program Files (x86)\eSupport.com\driveragent\unins000.exe->C:\AdwCleaner\Quarantine\C\Program Files (x86)\eSupport.com\driveragent\unins000.exe.vir
C:\Program Files (x86)\SoftwareUpdater\config->C:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\config.vir
C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe->C:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe.vir
C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.dll->C:\AdwCleaner\Quarantine\C\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.dll.vir
C:\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\config.json->C:\AdwCleaner\Quarantine\C\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\config.json.vir
C:\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\def.bin->C:\AdwCleaner\Quarantine\C\Program Files (x86)\{6379557D-0E6B-4B43-98BD-F20AEA4D7101}\def.bin.vir
C:\ProgramData\AVG Security Toolbar\TBCampaignINSP.txt->C:\AdwCleaner\Quarantine\C\ProgramData\AVG Security Toolbar\TBCampaignINSP.txt.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\DriverAgent.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\DriverAgent.lnk.vir
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\Uninstall DriverAgent.lnk->C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com\DriverAgent\Uninstall DriverAgent.lnk.vir
C:\Users\Godlike\AppData\Local\FileViewPro\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm\1.5.0.0\user.config->C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Local\FileViewPro\FileViewPro.exe_Url_jn4xqozlzppxcht2yt2wvho2bxkp31wm\1.5.0.0\user.config.vir
C:\Windows\Installer\{895529FD-A18D-4387-9613-0E72DBE542F8}\{4DEDD96D-51ED-4597-9EA2-1E6FE5768B08}.xpi->C:\AdwCleaner\Quarantine\C\Windows\Installer\{895529FD-A18D-4387-9613-0E72DBE542F8}\{4DEDD96D-51ED-4597-9EA2-1E6FE5768B08}.xpi.vir
C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml->C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml.vir
C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\foxydeal.sqlite->C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\foxydeal.sqlite.vir
C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\user.js->C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\user.js.vir
C:\Users\Godlike\Desktop\Find Drivers with DriverAgent.lnk->C:\AdwCleaner\Quarantine\C\Users\Godlike\Desktop\Find Drivers with DriverAgent.lnk.vir
C:\Windows\SysNative\roboot64.exe->C:\AdwCleaner\Quarantine\C\Windows\SysNative\roboot64.exe.vir
C:\Windows\SysNative\GroupPolicy\Machine\Registry.pol->C:\AdwCleaner\Quarantine\C\Windows\SysNative\GroupPolicy\Machine\Registry.pol.vir
C:\Windows\SysNative\GroupPolicy\GPT.ini->C:\AdwCleaner\Quarantine\C\Windows\SysNative\GroupPolicy\GPT.ini.vir
C:\Windows\SysWOW64\lavasofttcpservice.dll->C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\lavasofttcpservice.dll.vir
         
Und noch der befund von MBAM der heute gemacht wurde :
Sind auch noch logs von 2015 Oktober da, auf anforderung poste ich diese auch gerne .

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 23.01.2016
Suchlaufzeit: 13:00
Protokolldatei: 
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2016.01.23.02
Rootkit-Datenbank: v2016.01.20.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Godlike

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 360511
Abgelaufene Zeit: 14 Min., 30 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 4
PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll, , [ea24d26bfd9c3006fb057d3058acd030], 
PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll, , [b35b84b99dfc191d6eb9238b44c09868], 
Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, , [0e00fa437425fe383bc6ce107b86fb05], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat, , [6ba3ed50831674c2901ab235ab59f808], 

Registrierungsschlüssel: 3
PUP.Optional.CrossRider, HKU\S-1-5-21-1581255019-2042543514-717909806-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{95BBB557-50F8-82B9-EE41-A834434DB4DE}, , [38d676c7a2f787af837df0bdf50f9070], 
PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, , [61ad033abddc96a08bfbb934a85abe42], 
PUP.Optional.SystemSpeedup, HKU\S-1-5-21-1581255019-2042543514-717909806-1000\SOFTWARE\SYSTWEAK\ssd, , [5ab470cdcecb2214dfa6b93459a9cf31], 

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 6
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\jetpack\@77AF5469C15DBB102B74AB45D727C2C877AF, , [e02ec578118802340924396c49b910f0], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\jetpack\@77AF5469C15DBB102B74AB45D727C2C877AF\simple-storage, , [e02ec578118802340924396c49b910f0], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component2, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}, , [6ba3ed50831674c2901ab235ab59f808], 

Dateien: 19
PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll, , [ea24d26bfd9c3006fb057d3058acd030], 
PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll, , [b35b84b99dfc191d6eb9238b44c09868], 
Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, , [0e00fa437425fe383bc6ce107b86fb05], 
RiskWare.Injector.DC, C:\Users\Godlike\Desktop\Extreme Injector v3.exe, , [c84679c4ebae1c1a356e43e317eaaf51], 
RiskWare.Injector.DC, C:\Users\Godlike\Downloads\Extreme Injector v3.6.1 - by master131_mpgh.net.rar, , [d33bb18c8118c571e7bc8c9ad62b8f71], 
PUP.Optional.CrossRider, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{30D5C149-054C-E0A0-969E-E0793FCFA3B3}.dll, , [38d676c7a2f787af837df0bdf50f9070], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi, , [35d9b9844d4cd660cd3ca40cfd0626da], 
PUP.Optional.FireFoxHijack, C:\Program Files (x86)\Mozilla Firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js, , [7e901a23415839fd8f207eb807fde31d], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\jetpack\@77AF5469C15DBB102B74AB45D727C2C877AF\simple-storage\store.json, , [e02ec578118802340924396c49b910f0], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\config.json, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\hello.js, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\log.html, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\manifest.json, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\scriptTagContext.js, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\tmp_bg.js, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component\uconfig.json, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\Component2\plugin, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\c.dat, , [6ba3ed50831674c2901ab235ab59f808], 
PUP.Optional.CrossAd.Gen, C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat, , [6ba3ed50831674c2901ab235ab59f808], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         
Danke im vorraus . LG Ainshval

Hier der JRT(scan) Log :

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.2 (01.06.2016)
Operating System: Windows 7 Home Premium x64 
Ran by Godlike (Administrator) on 23.01.2016 at 13:18:54,86
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 12 

Successfully deleted: C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8 (Folder) 
Successfully deleted: C:\ProgramData\97cab95400000c6c (Folder) 
Successfully deleted: C:\ProgramData\c7d2cf1f50cccfec (Folder) 
Successfully deleted: C:\Windows\system32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 (Task)
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1G5902JA (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7HT2W55Q (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E8X0QYDM (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I0QRZ3L8 (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NE8P4M6T (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P0B5PDYY (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P3UO2S7B (Folder) 
Successfully deleted: C:\Users\Godlike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XP7A5IFP (Folder) 

Deleted the following from C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\prefs.js
user_pref(browser.search.searchengine.alias, istartsurf);
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.iconURL, hxxp://www.istartsurf.com/web/favicon.ico);
user_pref(browser.search.searchengine.name, istartsurf);
user_pref(browser.search.searchengine.ptid, cor);
user_pref(browser.search.searchengine.uid, SAMSUNGXHD502HJ_S20BJA0B580295);
user_pref(browser.search.searchengine.url, hxxp://www.istartsurf.com/web/?type=dspp&ts=1435589941&z=25aa2b235240af3686dd3b9g2z9c0w0w6bat5tcbab&from=cor&uid=SAMSUNGXHD502HJ_



Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.01.2016 at 13:21:07,72
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

Alt 24.01.2016, 17:27   #5
burningice
/// Malwareteam
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.




Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
  • Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
  • Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist
Los geht's

Wenn du in deinem ersten Postings mehrere "Antworten" schreibst, tauchst du nicht mehr in unseren internen Suche von "unbeantwortete Themen" auf, darum wurde hier noch nicht geantwortet...

Zunächst erstelle bitte mal neue, aktuelle Logs mit FRST damit ich mich mal auskenne hier

Schritt 1
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 24.01.2016, 17:41   #6
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-24 18:38:40)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version:  - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version:  - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version:  - Blue Mammoth Games)
Browser Max (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\{95BBB557-50F8-82B9-EE41-A834434DB4DE}) (Version: 1.4.9 - Experience Plugin corp) <==== ACHTUNG
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version:  - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version:  - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version:  - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version:  - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version:  - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version:  - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
RIFT (HKLM-x32\...\Glyph RIFT) (Version:  - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version:  - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version:  - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version:  - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version:  - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version:  - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version:  - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe 
Task: {0830D47B-264C-4C5D-8FF2-D9AD87D11414} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG
Task: {674515C9-A0D8-456F-87F3-BA014568940D} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9172961A-E770-4E0A-83B0-48F9EA672D15} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00012800 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00011264 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\{6F8FAAF1-AADE-F811-57E8-5780584D3409}.dat
2016-01-21 01:58 - 2016-01-21 01:58 - 00028160 _____ () C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll
2015-08-22 07:54 - 2015-08-23 22:51 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll
2016-01-21 01:36 - 2016-01-12 17:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-12-14 12:58 - 2016-01-21 09:41 - 50679920 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libcef.dll
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-14 12:58 - 2016-01-21 09:41 - 01882224 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libglesv2.dll
2015-12-14 12:58 - 2016-01-21 09:41 - 00082544 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libegl.dll
2015-08-14 17:58 - 2015-08-23 22:51 - 00005120 _____ () C:\Windows\syswow64\ktmw3232.dll
2016-01-21 03:02 - 2016-01-21 03:02 - 17882304 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E39E1162-1AAA-411B-A02A-846CA9BFFF10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

23-01-2016 13:18:55 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/22/2016 11:51:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 38.0.5.5623 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: ba8

Startzeit: 01d1555a178d160c

Endzeit: 90

Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Berichts-ID: b871bce0-c15a-11e5-afa2-1c6f65d41233

Error: (01/22/2016 11:51:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x188
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1730

Startzeit: 01d135cd59c12231

Endzeit: 156

Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe

Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233

Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 233c

Startzeit: 01d12cf4aca80f57

Endzeit: 2698

Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe

Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233

Error: (11/24/2015 10:01:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x17ac
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/23/2015 05:28:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x4958
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/20/2015 06:47:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x76bc
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/17/2015 06:00:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x844c
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/15/2015 04:56:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0xad88
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/13/2015 12:41:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Steam.exe, Version 3.1.81.43 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 280

Startzeit: 01d11e07d08b12ab

Endzeit: 16

Anwendungspfad: D:\Steam\Steam.exe

Berichts-ID: 70cf4151-89fb-11e5-938b-4494fcf2eb50


Systemfehler:
=============
Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%50

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:10:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:10:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WSWNDA3100v2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AVG PC TuneUp Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


CodeIntegrity:
===================================
  Date: 2016-01-21 01:46:32.761
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.626
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.232
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.943
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.756
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.492
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.279
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.781
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.693
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.600
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 67%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 1340.06 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 4758.07 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:1.35 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:11.25 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
Code:
ATTFilter
LastRegBack: 2016-01-21 10:59

==================== Ende von FRST.txt ============================
         

Alt 24.01.2016, 17:43   #7
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



2.ter Scan, weil ich denke das die frst falsch gescannt wurde .
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (24-01-2016 18:41:01)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_286.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8316528 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG

Chrome: 
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S3 cpuz138; C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [43304 2015-11-30] (CPUID)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-24] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-23] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X]
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-24 18:39 - 2016-01-24 18:41 - 00018963 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-24 18:38 - 2016-01-24 18:39 - 00065612 _____ C:\Users\Godlike\Desktop\Addition.txt
2016-01-23 13:26 - 2016-01-23 13:26 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2016-01-23 12:59 - 2016-01-23 12:59 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-23 12:46 - 2016-01-23 12:46 - 01600184 _____ (Malwarebytes) C:\Users\Godlike\Desktop\JRT.exe
2016-01-22 23:23 - 2016-01-22 23:51 - 00199698 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_23.23.12_log.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-24 18:41 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-21 11:07 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-21 10:15 - 00051200 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:58 - 2016-01-21 01:58 - 00003162 _____ C:\Windows\System32\Tasks\Browser Max
2016-01-21 01:58 - 2016-01-21 01:58 - 00003150 _____ C:\Windows\System32\Tasks\Browser Max2
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-24 18:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-24 18:40 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-24 18:39 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-24 18:39 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-24 18:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-24 17:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-24 16:50 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-24 16:50 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-24 16:09 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-24 12:30 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-24 12:30 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-24 12:30 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-24 12:30 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-24 12:29 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-24 12:29 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-24 12:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-24 02:54 - 2015-01-17 10:39 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\TS3Client
2016-01-23 13:00 - 2015-08-23 22:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-01-21 01:58 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat


Einige Dateien in TEMP:
====================
C:\Users\Godlike\AppData\Local\Temp\410cd83c4cb3ea4f078cf76a6fb32361.dll
C:\Users\Godlike\AppData\Local\Temp\532018948649ce2b41018b827bc595f3.dll
C:\Users\Godlike\AppData\Local\Temp\73bb9f9c.exe
C:\Users\Godlike\AppData\Local\Temp\98fec1cbe.dll
C:\Users\Godlike\AppData\Local\Temp\b802a.dll
C:\Users\Godlike\AppData\Local\Temp\b875a87b4.dll
C:\Users\Godlike\AppData\Local\Temp\cf8e2b5e3.dll
C:\Users\Godlike\AppData\Local\Temp\dba40eb.exe
C:\Users\Godlike\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp60jpac.dll
C:\Users\Godlike\AppData\Local\Temp\e63fa933.dll
C:\Users\Godlike\AppData\Local\Temp\e856a7fb7.dll
C:\Users\Godlike\AppData\Local\Temp\eea7d0.dll
C:\Users\Godlike\AppData\Local\Temp\fe50d.dll
C:\Users\Godlike\AppData\Local\Temp\Gw2.exe
C:\Users\Godlike\AppData\Local\Temp\UNINSTALL.EXE


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-01-21 10:59

==================== Ende von FRST.txt ============================
         

Alt 25.01.2016, 14:39   #8
burningice
/// Malwareteam
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Schritt 1
Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    Browser Max

  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 



Schritt 2
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG

Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG

Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
cmd: netsh advfirewall set allprofiles state on
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG 
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X] 
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X] 
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X] 
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X] 
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 3
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

Hast du noch irgendwelche Probleme mit deinem Rechner?


Bitte poste in deiner nächsten Antwort also:
  • Fixlog.txt
  • Frst.txt
  • Addition.txt
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Geändert von burningice (25.01.2016 um 14:48 Uhr)

Alt 25.01.2016, 16:08   #9
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Fixlog:
Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-25 17:00:08) Run:1
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
Task: {66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} - System32\Tasks\Browser Max => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\BrowserMax.dll",#1 <==== ACHTUNG

Task: {ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} - System32\Tasks\Browser Max2 => Rundll32.exe "C:\Users\Godlike\AppData\Local\Browser Max\{57608611-CA49-9A2D-133B-35DDF73E8929}\lkgb.dll",#1 <==== ACHTUNG

Task: {EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2} - \Speedial -> Keine Datei <==== ACHTUNG
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9
cmd: netsh advfirewall set allprofiles state on
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Arc\Plugins\npArcPluginFF.dll [Keine Datei]
FF Extension: "Browser Max - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi [2016-01-21] [ist nicht signiert]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js [2016-01-21] <==== ACHTUNG 
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF [2016-01-21] <==== ACHTUNG
S3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X] 
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X] 
S3 X6va031; \??\C:\Windows\SysWOW64\Drivers\X6va031 [X] 
S3 X6va060; \??\C:\Windows\SysWOW64\Drivers\X6va060 [X] 
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
2016-01-21 01:58 - 2016-01-21 01:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Browser Max
emptytemp:
*****************

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66F8C3A3-9D12-4CDF-A6BD-AD28C12A480E} => Schlüssel nicht gefunden. 
C:\Windows\System32\Tasks\Browser Max => nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Max => Schlüssel nicht gefunden. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABBFB11C-A4B5-4512-A3B0-DCCAA255829A} => Schlüssel nicht gefunden. 
C:\Windows\System32\Tasks\Browser Max2 => nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Max2 => Schlüssel nicht gefunden. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDB38D4C-BF09-49EB-9AA2-09AF29BE71B2}" => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Speedial => Schlüssel nicht gefunden. 
C:\ProgramData\TEMP => ":CB0AACC9" ADS erfolgreich entfernt.

=========  netsh advfirewall set allprofiles state on =========

OK.


========= Ende von CMD: =========

"HKLM\Software\Wow6432Node\MozillaPlugins\@perfectworld.com/npArcPlayNowPlugin" => Schlüssel erfolgreich entfernt
C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\@77AF5469C15DBB102B74AB45D727C2C877AF.xpi => nicht gefunden.
"C:\Program Files (x86)\mozilla firefox\defaults\pref\!77AF5469C15DBB102B74AB45D727C2C877AF.js" => nicht gefunden.
"C:\Program Files (x86)\mozilla firefox\77AF5469C15DBB102B74AB45D727C2C877AF" => nicht gefunden.
ALSysIO => Dienst erfolgreich entfernt
MSICDSetup => Dienst erfolgreich entfernt
X6va015 => Dienst erfolgreich entfernt
X6va031 => Dienst erfolgreich entfernt
X6va060 => Dienst erfolgreich entfernt
xhunter1 => Dienst erfolgreich entfernt
C:\Users\Godlike\AppData\Local\Browser Max => erfolgreich verschoben
EmptyTemp: => 2.2 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 17:00:33 ====
         
Addition :
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-25 17:07:12)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version:  - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version:  - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version:  - Blue Mammoth Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version:  - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version:  - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version:  - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version:  - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version:  - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version:  - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RIFT (HKLM-x32\...\Glyph RIFT) (Version:  - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version:  - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version:  - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version:  - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version:  - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version:  - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version:  - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe 
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {49239E6F-18B2-4004-92BC-4D5DA321A699} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9172961A-E770-4E0A-83B0-48F9EA672D15} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {F86B3000-0FF6-4135-917C-7E275734E519} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-08-14 17:58 - 2015-08-23 22:51 - 00005120 _____ () C:\Windows\syswow64\ktmw3232.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{E39E1162-1AAA-411B-A02A-846CA9BFFF10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

25-01-2016 16:57:31 Revo Uninstaller's restore point - Browser Max

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/25/2016 04:57:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x1af4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (01/22/2016 11:51:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 38.0.5.5623 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: ba8

Startzeit: 01d1555a178d160c

Endzeit: 90

Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Berichts-ID: b871bce0-c15a-11e5-afa2-1c6f65d41233

Error: (01/22/2016 11:51:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x188
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1730

Startzeit: 01d135cd59c12231

Endzeit: 156

Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe

Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233

Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 233c

Startzeit: 01d12cf4aca80f57

Endzeit: 2698

Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe

Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233

Error: (11/24/2015 10:01:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x17ac
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/23/2015 05:28:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x4958
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/20/2015 06:47:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x76bc
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/17/2015 06:00:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0x844c
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3

Error: (11/15/2015 04:56:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DDNet.exe, Version: 0.0.0.0, Zeitstempel: 0x00394fe8
Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.18915, Zeitstempel: 0x55981fd5
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000230fe
ID des fehlerhaften Prozesses: 0xad88
Startzeit der fehlerhaften Anwendung: 0xDDNet.exe0
Pfad der fehlerhaften Anwendung: DDNet.exe1
Pfad des fehlerhaften Moduls: DDNet.exe2
Berichtskennung: DDNet.exe3


Systemfehler:
=============
Error: (01/25/2016 01:03:33 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (01/22/2016 10:11:06 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%50

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:11:05 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:10:54 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\System32\bcmihvsrv64.dll

Error: (01/22/2016 10:10:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/22/2016 10:10:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "WSWNDA3100v2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-01-21 01:46:32.761
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.626
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.232
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.943
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.756
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.492
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.279
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.781
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.693
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-11-27 10:16:40.600
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 1857.22 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 6075.55 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:4.66 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:10.46 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 25.01.2016, 16:13   #10
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



FRST:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (25-01-2016 17:05:47)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8316528 2016-01-21] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]

Chrome: 
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-25] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-23] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 cpuz138; \??\C:\Users\Godlike\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-25 17:00 - 2016-01-25 17:00 - 00004120 _____ C:\Users\Godlike\Desktop\Fixlog.txt
2016-01-25 16:55 - 2016-01-25 16:55 - 00001264 _____ C:\Users\Godlike\Desktop\Revo Uninstaller.lnk
2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2016-01-25 16:54 - 2016-01-25 16:54 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Godlike\Desktop\revosetup95.exe
2016-01-24 18:39 - 2016-01-25 17:06 - 00017355 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-24 18:38 - 2016-01-24 18:41 - 00065612 _____ C:\Users\Godlike\Desktop\Addition.txt
2016-01-23 13:26 - 2016-01-23 13:26 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2016-01-23 12:59 - 2016-01-23 12:59 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-23 12:46 - 2016-01-23 12:46 - 01600184 _____ (Malwarebytes) C:\Users\Godlike\Desktop\JRT.exe
2016-01-22 23:23 - 2016-01-22 23:51 - 00199698 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_23.23.12_log.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-25 17:05 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-21 11:07 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-25 17:04 - 00061952 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-25 17:04 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-25 17:04 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-25 17:03 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-25 17:03 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-25 17:03 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-25 17:03 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-25 17:03 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-25 17:03 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-25 17:02 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-25 17:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-25 16:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-25 16:57 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-25 16:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-25 14:14 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-25 14:14 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-24 21:46 - 2015-01-17 10:39 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\TS3Client
2016-01-24 21:34 - 2015-06-05 12:59 - 00000000 ____D C:\Users\Godlike\AppData\Local\Steam
2016-01-24 21:19 - 2015-07-27 14:53 - 00000000 ____D C:\Users\Godlike\Desktop\Doks
2016-01-24 19:36 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-24 19:18 - 2014-05-20 16:07 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\LolClient
2016-01-24 18:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-23 13:00 - 2015-08-23 22:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-01-21 10:59

==================== Ende von FRST.txt ============================
         
Also danke schonma vorweg das das geklappt hat so schnell , ich kann jetzt nicht sicher sagen das alles weg ist , zumindest sieht es so aus . Ist den der virus/maleware bekannt ? also woher ich den gezogen habe . Ich weiß ich surfe auf vielen seiten auf denen ich net sein sollte aber kommt das von denen ? oder generell nur von downloads ?.
Werde aber weiterhin den threat verfolgen um sicher zu gehen das alles weg ist ! Ein danke post wirst du auch noch von mir bekommen .

Alt 25.01.2016, 17:29   #11
burningice
/// Malwareteam
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Wir brauchen auch noch einen abschließenden Scan

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...


In deinem Fall hast du die Infektion vermutlich von dem Installer von diesem Programm gekriegt:
Zitat:
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 26.01.2016, 17:40   #12
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Mhmm das programm hat wohl noch einiges gefunden .
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e6fdb0e1ea738c45be1f78361ee9a35f
# end=init
# utc_time=2016-01-26 08:47:30
# local_time=2016-01-26 09:47:30 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 27816
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e6fdb0e1ea738c45be1f78361ee9a35f
# end=updated
# utc_time=2016-01-26 08:50:42
# local_time=2016-01-26 09:50:42 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=e6fdb0e1ea738c45be1f78361ee9a35f
# engine=27816
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-01-26 01:37:09
# local_time=2016-01-26 02:37:09 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 158141 205445279 0 0
# scanned=452578
# found=103
# cleaned=0
# scan_time=17186
sh=A89CBB855D1D817504C73A97928E20B769467312 ft=1 fh=eb62d49b9a4a84ce vn="Variante von Win32/Conduit.SearchProtect.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir"
sh=150F3C518C04F43587191CF74B64A60B3481D2B1 ft=1 fh=7b5f7deea3da51cd vn="Variante von Win32/Conduit.SearchProtect.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPTool.dll.vir"
sh=A84D20259894D103902B7793478C92F6074D91F8 ft=1 fh=756bcba5a17bf9e9 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir"
sh=8EDB805A1CCE376CE49A7596AC32DECF5CBE97EF ft=1 fh=13592d25c84570d3 vn="Variante von Win32/Conduit.SearchProtect.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir"
sh=C3BA588339DAD76E9A0ACD182045E60CD53BF81D ft=1 fh=1d0dde9de0d7f56a vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe.vir"
sh=395FACDD5FB1DDCF88C890017B2B6D1B3577959B ft=1 fh=75b444e12abf0f79 vn="Variante von Win32/Conduit.SearchProtect.H evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll.vir"
sh=E0309A9DE1725D7A1D9A6A31FBE9D24829159995 ft=1 fh=e34227a016969ae1 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll.vir"
sh=75590FE2ECB98E82A3ED659C99E6237632765764 ft=1 fh=f4256eaeddc59ec2 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll.vir"
sh=A4439885E159383833A11A793B4D1635E75F867F ft=1 fh=b3bb1e3868e6e0a3 vn="Variante von Win32/ClientConnect.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll.vir"
sh=147A0302D0A75A5CBD4056936E0EAA09FF3E18CE ft=1 fh=6569f7c240c29224 vn="Variante von Win32/Conduit.SearchProtect.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir"
sh=C7C0F42A23562AA6DCCD60326FD8CC2AA41B5448 ft=1 fh=c053642cee9f3def vn="Win32/Thinknice.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir"
sh=4E5E1B36910AD12E0E328F71A7CDC6EA6C009F9E ft=1 fh=ad050ae056d7e21e vn="Win32/Thinknice.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\SupTab.dll.vir"
sh=8EB72E101395FEBB37131078A884E25D05BB51C9 ft=1 fh=c71c00113a7cc125 vn="Variante von Win32/AdWare.MultiPlug.T Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\DiscounTLoCatOr\u8kAxb3fr.dll.vir"
sh=458A7DCB3C85CBE3C93EB7876FA0E6CD7E07F0F6 ft=1 fh=c71c0011129d357b vn="Variante von Win32/AdWare.MultiPlug.S Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\DiscounTLoCatOr\u8kAxb3fr.exe.vir"
sh=21FA935C037CDD4DA753895AA750262A3056B871 ft=1 fh=c71c001127f5a6d6 vn="Variante von Win64/Adware.MultiPlug.B Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\DiscounTLoCatOr\u8kAxb3fr.x64.dll.vir"
sh=A0D52DCF369EF5A26EDD02F381A30BC06D6159F1 ft=1 fh=c71c00110a80296a vn="Variante von Win64/SProtector.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\Fast And Safe\FastAndSafe_x64.dll.vir"
sh=56659F7FF1F1FA7906A77228E315F65F38BCEF73 ft=1 fh=0ff759dfc352fd03 vn="Variante von Win32/ELEX.AD evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\IePluginServices\PluginService.exe.vir"
sh=1D03A81886EDF9606846569E1D438666B78AACBB ft=1 fh=c71c0011b1721274 vn="Variante von Win32/AdWare.MultiPlug.Y Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\savingtoyoou\nc6PAn.dll.vir"
sh=3234CF556DE3998C997B452E43B9F6AEF16FAAA6 ft=1 fh=c71c00117e710243 vn="Variante von Win32/AdWare.MultiPlug.AB Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\savingtoyoou\nc6PAn.exe.vir"
sh=240BB47ACE5BFBB0480A55613304EBEDF2C9E8AD ft=1 fh=dbd092d9f12ad0e6 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\TubeDimmer.exe.vir"
sh=C119154F2505246F2F1FF21B0AC3F96667B300CD ft=1 fh=18e7345265268015 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\TubeDimmer64.exe.vir"
sh=60B2A72AE5FF3CDC5B25B451F478E917D74DB6A8 ft=1 fh=3b179ee9367fefd1 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\TubeDimmerService.exe.vir"
sh=B3C358F8D90C52607175D8EBCDFCBB2C50B7F73D ft=1 fh=64ecea5d0a77208e vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmer.exe.vir"
sh=C119154F2505246F2F1FF21B0AC3F96667B300CD ft=1 fh=18e7345265268015 vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmer64.exe.vir"
sh=92DFB296C55107E1FF003B05034FC06EE419F4C3 ft=1 fh=5c30942c78325abd vn="Variante von MSIL/Adware.PullUpdate.A Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmerService.exe.vir"
sh=E2702E15F00C3ECD2699295A34BC10AA347E56B6 ft=1 fh=a0e2dd5d83ce6880 vn="MSIL/Adware.PullUpdate.I Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\TubeDimmer\up\2.6.80\TubeDimmerUpdate.exe.vir"
sh=4B438C9B64DD27C64140EC83EA5020B761BA94B3 ft=1 fh=c35f7b16075203da vn="Variante von Win32/ELEX.AE evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\WPM\wprotectmanager.exe.vir"
sh=705761CE546199C3EF51F4BBDC30B49DB4D96A35 ft=1 fh=feecfd7c534a9d83 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Local\Temp\OCS\ocs_v71b.exe.vir"
sh=79308F52434579AE91CE42EF4E032BBBE95B728E ft=0 fh=0000000000000000 vn="JS/Adware.MultiPlug.I Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\2bdbm4v8@llhgs-.edu\content\bg.js.vir"
sh=C4420C6E94B8CAACCB3811384280D8A93CB0A37D ft=1 fh=25f111c507a31a21 vn="Win32/Toolbar.Conduit.R evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\OpenCandy\0B6E912F691E46FBA32893082D45CBE8\sp-downloader.exe.vir"
sh=DA1A38E6C4F6C3D735C094F41EB6BA73194E95DA ft=1 fh=e6a12e5ba6d150fb vn="Variante von Win32/DealPly.S evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Godlike\AppData\Roaming\Speedial\UpdateProc\UpdateTask.exe.vir"
sh=C1515799C5063A5CAAD8CAB51725104041B7D5C1 ft=1 fh=bae9daf254c5bb84 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\SysNative\roboot64.exe.vir"
sh=01B3B3ACA52DBB2039411FE9439BDA6918C08005 ft=1 fh=be6702d52ffb235f vn="Variante von Win64/BrowseFox.AC evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys.vir"
sh=94823B4BF2F736A41D956075DBA58FF793851136 ft=0 fh=0000000000000000 vn="Variante von Win32/Delf.QDK Trojaner" ac=I fn="C:\Users\Godlike\Downloads\FeenixDash.rar"
sh=D9CD6E3C5B7D4305C73BC03DF91F35506489E4A5 ft=1 fh=9b7812153d57257c vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Godlike\Downloads\Matrix Screensaver - CHIP-Installer.exe"
sh=3425236BF120CD2C07351BA76341A45D37A5C5C1 ft=1 fh=7453b3f759f8fb4e vn="Win32/InstallMonetizer.AF evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Godlike\Downloads\spotydl_setup.exe"
sh=D45985A4A3152CAD455E60DDCD0B5B84EF51BA17 ft=1 fh=6baa6a20e4167795 vn="Win32/FireHooker.A Trojaner" ac=I fn="C:\Windows\SysWOW64\ktmw3232.dll"
sh=201DFDE604D9369DA4630503EA9BF4682B95DE0E ft=0 fh=0000000000000000 vn="Win32/SoftonicDownloader.E evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-04-21 045158\Backup Files 2013-04-21 190001\Backup files 1.zip"
sh=CFCA6F1F932B59864A284BA27CF47276E41B0A72 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-04-21 045158\Backup Files 2013-04-28 190001\Backup files 2.zip"
sh=94256CBF2B26C81084129ACBE0CCB262AC61FC87 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-12 190002\Backup files 2.zip"
sh=B1B9903D4004569B2FA868F1C3361F73282EEBDB ft=0 fh=0000000000000000 vn="Win32/SoftonicDownloader.E evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-12 190002\Backup files 3.zip"
sh=8F2D525B0079441983F33398B9B1F54D5D5C82F0 ft=0 fh=0000000000000000 vn="JS/Kryptik.ALH Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-19 190001\Backup files 1.zip"
sh=78CC8C0B65DBC58B512E87DB6A7E2A750D23F545 ft=0 fh=0000000000000000 vn="Java/Exploit.Agent.OHO Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-19 190001\Backup files 3.zip"
sh=A3AF88B16F6CEFF96AA4C6DABABD49CEA3837C77 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-26 190002\Backup files 1.zip"
sh=69391A2B842FB1CF7726D93D3D6D8A8609724817 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-05-12 190002\Backup Files 2013-05-26 190002\Backup files 3.zip"
sh=0EBEF6FB81311B4C091A294284DAA2C01DDC73C5 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 1.zip"
sh=AC5FC18947FBA31D4038C4AB88B66A748F5A205D ft=0 fh=0000000000000000 vn="JS/Kryptik.ALH Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 2.zip"
sh=57E46EB08F2E099C250DB6193A787F77D41F63B3 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 3.zip"
sh=0DD646EF8392BF3EAC28CD0E9219F50BDDBE4233 ft=0 fh=0000000000000000 vn="Win32/SoftonicDownloader.E evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 4.zip"
sh=4E488F427B2E5598708442270FFF5DC6387B8443 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-02 190002\Backup files 7.zip"
sh=B97A1C88C838340F26DEA6EEC9996A59E9124B9B ft=0 fh=0000000000000000 vn="Java/Exploit.Agent.ONS Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-02 190002\Backup Files 2013-06-16 190008\Backup files 2.zip"
sh=15AA7C121A7BF02E06BFF66994E1EF4DFC914768 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 1.zip"
sh=D119A8924EFB53AB170A433ADCA986FCAF968B88 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 3.zip"
sh=D88010994DB391591A88DBC3461D61B99FBCD2CF ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 4.zip"
sh=0579561D5614A50588429CED998C67303ED57441 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-06-23 190008\Backup Files 2013-06-23 190008\Backup files 8.zip"
sh=7695B81B4CC575480947BE52CAC014C7279E6A7E ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 1.zip"
sh=DFF10DAE4C9FA65F2C5F6463DEEA168255533F93 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 3.zip"
sh=DF550B8DE6D536C08599FBBCE71725A53BC7D69F ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 4.zip"
sh=1D6A3DCC90A6E384A8BB039D81823C6095957D67 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-14 190002\Backup files 8.zip"
sh=446E7F3A04E0FD128C23118474FEC107AFA1F2E6 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.Themida.AAL Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-28 190002\Backup files 12.zip"
sh=C9293AA26D118E3EA58970294B161E94A667AD3A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-07-28 190002\Backup files 2.zip"
sh=CB4521DA3F8EBB6965982DDA96613674A3B12D07 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-04 190002\Backup files 10.zip"
sh=479233D056686192D0ABCCA1A8273DA0D3CED784 ft=0 fh=0000000000000000 vn="Win32/Packed.Autoit.H verdächtige Datei" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-04 190002\Backup files 3.zip"
sh=52561583FBDC3FE75F804EBA1C2A3942332B7234 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-11 190005\Backup files 1.zip"
sh=38FA13647CA558A0692993055D3376D4E9C81E5A ft=0 fh=0000000000000000 vn="Win32/Somoto.I evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-11 190005\Backup files 2.zip"
sh=1E8661C54CEF05C78367246216818FCE51E6DD9A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-11 190005\Backup files 3.zip"
sh=9AB5078E5204F901B8CFC1AE803C5EE243CB2CCC ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-18 190003\Backup files 1.zip"
sh=AF2E57DD117979C2667B393CE1421A3C9FE4353A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-08-25 190002\Backup files 1.zip"
sh=EFA2EFC270D64749A4793C90214149F8AB1B0282 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-01 190002\Backup files 1.zip"
sh=8ABB4FC155B276D532C0BA141CFA89F1BEB5097C ft=0 fh=0000000000000000 vn="Win32/Toolbar.Babylon.AE evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-08 190013\Backup files 1.zip"
sh=3A97CAB944BFA37CFBEFE6D22F92ED13959E3D14 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-15 190004\Backup files 2.zip"
sh=C4EE247FD1990B5490DACF41333CC34CDC81D147 ft=0 fh=0000000000000000 vn="Win32/Packed.Autoit.H verdächtige Datei" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-15 190004\Backup files 3.zip"
sh=7BE8F5CDB0C240869B5E991EC5B28877C2061627 ft=0 fh=0000000000000000 vn="Variante von Win32/FileScout.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-07-14 190002\Backup Files 2013-09-22 190002\Backup files 1.zip"
sh=6008C4C9207766E16DEF0ABC019ECD4526B9E170 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 1.zip"
sh=09B63D3A7037037C166905464A1743DC65C2EA9D ft=0 fh=0000000000000000 vn="Win32/Somoto.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 15.zip"
sh=E0F648AA61F119D04A014848F581E62D1CA8294A ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 16.zip"
sh=61F381F314616B46BCD94E131DA4AE6A0B8FF31F ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 2.zip"
sh=EF2F78B6D3F82BBEC326C6F9EDF908EDC41306FC ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 32.zip"
sh=32477F32EBEEB3CA21B836D4F545B6239B7E64A0 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.Themida.AAL Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 40.zip"
sh=149C885BB5373D687B038F5DE380D799B32CAD86 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 41.zip"
sh=5A08981D4F4FD939318FFF4B4D160372E7D26FBD ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-13 190002\Backup files 8.zip"
sh=8E7E884A8D8B494B54181C93DDD1A73DC425A2F1 ft=0 fh=0000000000000000 vn="Win32/WinloadSDA.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-10-27 190006\Backup files 3.zip"
sh=1714C5E02BB4B85BFDE02BDB88DF1EC7C826110F ft=0 fh=0000000000000000 vn="Variante von Win32/YourFileDownloader.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-11-03 190003\Backup files 1.zip"
sh=CBBB548CE8B92C2474E30EAE9EB444A83926AF84 ft=0 fh=0000000000000000 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-11-24 190005\Backup files 2.zip"
sh=A4DC44F64B7457A374B97A28E10B052B5994E99E ft=0 fh=0000000000000000 vn="Variante von Win32/Verti.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-10-13 190002\Backup Files 2013-12-01 190002\Backup files 2.zip"
sh=F9E2277F9CF322DC4D771B5E0B903CC6D7A86ED2 ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 1.zip"
sh=2365F14EAFEEEA14D4BA95F2EC9484953441D1DE ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 10.zip"
sh=A0258FB1897CAC758C36E8FE5C7EE63A37A508F5 ft=0 fh=0000000000000000 vn="Win32/Somoto.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 17.zip"
sh=B002BCAFCBC68FC709595B1D170BA700FC64BFE1 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 18.zip"
sh=49FEA55DB0F1FA27D3A23F93860227216DEBEA59 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 2.zip"
sh=3912689DEC423F384D5636DB00EAECEB9158643C ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 3.zip"
sh=EE80396BCF6CCAFD39818F4AAE2176EBE321019E ft=0 fh=0000000000000000 vn="Variante von Win32/Injector.Autoit.LK Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 37.zip"
sh=6A900AF4B15948C2252347209D3EABB148D57270 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.Themida.AAL Trojaner" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 44.zip"
sh=6EA4D866CEEE56C868A3D42DFBF063759C0B235C ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2013-12-15 190002\Backup files 48.zip"
sh=9DBD84B47BB947D6E5D9E3EAC24F7C9B93785272 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 1.zip"
sh=93FA03BBEAA4AE9800E721C755FA94C17BF44A11 ft=0 fh=0000000000000000 vn="Variante von Win32/Amonetize.AB evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 2.zip"
sh=8F748103794323E742340123118AEC91A81D0BF6 ft=0 fh=0000000000000000 vn="Variante von Win32/YourFileDownloader.B evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 3.zip"
sh=015A306C6BC48A4FCF6A7B8BE06D205AED3709F9 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-02-16 190006\Backup files 4.zip"
sh=2365579D387663E6248FA4B4792989660BA93B37 ft=0 fh=0000000000000000 vn="Win32/Systweak.G evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-04-06 190004\Backup files 1.zip"
sh=643F1CB9FB1BF7D982E1C935D1D2B79C358229AF ft=0 fh=0000000000000000 vn="Variante von Win32/BSDownloader evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-04-06 190004\Backup files 2.zip"
sh=601EACDCA74F3EEC28747EAF74D011223EB527F0 ft=0 fh=0000000000000000 vn="Mehrere Bedrohungen" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-05-11 190002\Backup files 1.zip"
sh=7F090FB8F0EE551922F1187C2EF6E5DBA2C1A6F2 ft=0 fh=0000000000000000 vn="Variante von Win32/DownloadGuide.A evtl. unerwünschte Anwendung" ac=I fn="D:\JOSH-PC\Backup Set 2013-12-15 190002\Backup Files 2014-05-11 190002\Backup files 2.zip"
sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Win32/FireHooker.A Trojaner" ac=I fn="${Memory}"
         

Alt 27.01.2016, 00:33   #13
burningice
/// Malwareteam
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Schritt 1
Du hast den Malwarebytes-Scan zu Beginn nicht richtig ausgeführt.

Starte bitte wieder Malwarebytes Anti-Malware
  • Klicke auf die Einstellungen / Erkennung und Schutz und setze dabei den Haken bei "Nach Rootkits suchen"
  • Klicke im Anschluss auf Dashboard und klicke unter dem Punkt Datenbankversion auf "Jetzt aktualisieren"
  • Wechsle zum Reiter Scannen und wähle den Bedrohungssuchlauf aus und klicke im Anschluss auf Suchlauf starten
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Suchlaufprotokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 2
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 30.01.2016, 13:35   #14
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 30.01.2016
Suchlaufzeit: 13:44
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2016.01.30.02
Rootkit-Datenbank: v2016.01.20.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Godlike

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 363360
Abgelaufene Zeit: 22 Min., 30 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 1
Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, Löschen bei Neustart, [9139f14e2b6e57df143ccf16b74ab54b], 

Registrierungsschlüssel: 2
PUP.Optional.SystemSpeedup, HKLM\SOFTWARE\WOW6432NODE\SYSTWEAK\ssd, In Quarantäne, [23a7b38c960363d37228b3440df5718f], 
PUP.Optional.SystemSpeedup, HKU\S-1-5-21-1581255019-2042543514-717909806-1000\SOFTWARE\SYSTWEAK\ssd, In Quarantäne, [5872db649aff0036861354a32cd6a15f], 

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 3
Trojan.Agent.WSB, C:\Windows\SysWOW64\ktmw3232.dll, Löschen bei Neustart, [9139f14e2b6e57df143ccf16b74ab54b], 
RiskWare.Injector.DC, C:\Users\Godlike\Desktop\Extreme Injector v3.exe, In Quarantäne, [04c672cd5a3f75c1265bd8500001d32d], 
RiskWare.Injector.DC, C:\Users\Godlike\Downloads\Extreme Injector v3.6.1 - by master131_mpgh.net.rar, In Quarantäne, [2e9ce25d1d7c57dfa3debb6dc0410ef2], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         
Addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-01-2016
durchgeführt von Godlike (2016-01-30 14:34:01)
Gestartet von C:\Users\Godlike\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-16 22:56:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1581255019-2042543514-717909806-500 - Administrator - Disabled)
Gast (S-1-5-21-1581255019-2042543514-717909806-501 - Limited - Enabled)
Godlike (S-1-5-21-1581255019-2042543514-717909806-1000 - Administrator - Enabled) => C:\Users\Godlike
HomeGroupUser$ (S-1-5-21-1581255019-2042543514-717909806-1008 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version:  - The Fun Pimps)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version:  - Gameforge)
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Any Audio Converter 4.0.1 (HKLM-x32\...\Any Audio Converter_is1) (Version:  - Any-Audio-Converter.com)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
ATI AVIVO64 Codecs (Version: 11.6.0.50825 - ATI Technologies Inc.) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoGreen B10.1021.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.1021.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
AutoHotkey 1.1.22.03 (HKLM\...\AutoHotkey) (Version: 1.1.22.03 - Lexikos)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Brawlhalla (HKLM-x32\...\Steam App 291550) (Version:  - Blue Mammoth Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version:  - Cheat Engine)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Creatures of Darkness (HKLM-x32\...\{573F9269-A022-4C6F-97BD-CF1316A76369}) (Version: 3.3.1 - Screaming Bee)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Deep Space Voices (HKLM-x32\...\{67CEC218-B250-4B4C-B23F-A597EC8DB153}) (Version: 3.3.1 - Screaming Bee)
Dirty Bomb (HKLM-x32\...\Steam App 333930) (Version:  - Splash Damage®)
Dream Of Mirror Online (HKLM-x32\...\Steam App 335820) (Version:  - SoftStar)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
Female Voice Pack (HKLM-x32\...\{D947A225-8C23-4E52-866E-CF3967476BFC}) (Version: 3.3.2 - Screaming Bee)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Furry Voices for Second Life (HKLM-x32\...\{2032DA39-C844-43AE-B638-6A4F7496686E}) (Version: 1.3.1 - Screaming Bee)
Galactic Voices (HKLM-x32\...\{891D8FC9-726D-46F2-ADC0-E060A6EB1DC3}) (Version: 1.3.1 - Screaming Bee)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Gothic II - Die Nacht des Raben (HKLM-x32\...\Gothic II - Die Nacht des Raben) (Version: 2.6 - JoWooD Productions Software AG)
GOTHIC2 - Odyssee - 'System-Paket' (HKLM-x32\...\GOTHIC2 - Odyssee - 'System-Paket') (Version: 1.1 - World of Gothic RU © 2014)
GOTHIC2 ADDON - 'Odyssey — on behalf of the King' (HKLM-x32\...\GOTHIC2 ADDON - 'Odyssey — on behalf of the King') (Version: 1.3 - World of Gothic DE - Community © 2015)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Happy Wars (HKLM-x32\...\Steam App 246280) (Version:  - Toylogic inc.)
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Reloaded Games)
Hazard Ops (HKLM-x32\...\{F70DE052-CFFD-4DCB-8DA3-3ECAAFBB7D15}}_is1) (Version: 1.5.4 - Infernum Productions AG)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.180.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
LastChaosGER (HKLM-x32\...\{A86A50FC-7C22-478B-BAEF-82393328825F}) (Version: 1.00.000 - Barunsongames CO., LTD.)
Magicka: Wizard Wars (HKLM-x32\...\Steam App 202090) (Version:  - Paradox North)
Male Voice Pack (HKLM-x32\...\{2CC32E0E-9A10-4BCC-94F0-614F85375F59}) (Version: 1.3.1 - Screaming Bee)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mobile Mouse Server (HKLM-x32\...\{333AE9D2-1A42-4012-BEC3-DFF9BEBF5CDD}) (Version: 3.0.1 - RPA Tech, Inc)
MorphVOX Effects Rack (HKLM-x32\...\{4439ED25-D9ED-4E78-A41E-6C6C5DCEDE62}) (Version: 4.3.0 - Screaming Bee)
MorphVOX Pro (HKLM-x32\...\{75B956F9-D72D-4929-B695-120D70E8AEE1}) (Version: 4.4.7 - Screaming Bee)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 2.0.0 (HKLM-x32\...\Afterburner) (Version: 2.0.0 - MSI Co., LTD)
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM-x32\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.60.9 - Black Tree Gaming)
Nostale(DE) (HKLM-x32\...\NosTale(DE)_is1) (Version:  - Gameforge 4D GmbH)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Odyssee_Speech 1.0 (HKLM-x32\...\Odyssee_Speech) (Version: 1.0 - OdysseeModTeam)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Personality Voices (HKLM-x32\...\{4B886E97-AF5B-46F0-9F48-6BE03149D972}) (Version: 1.0.1 - Screaming Bee)
Popcorn Time (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Popcorn Time) (Version:  - Popcorn Official)
Quake Live (HKLM-x32\...\Quake Live) (Version:  - id Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version:  - Capcom)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version:  - )
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RIFT (HKLM-x32\...\Glyph RIFT) (Version:  - Trion Worlds, Inc.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version:  - )
Sci-Fi Voice Pack (HKLM-x32\...\{BC038C91-D3C6-4E43-8439-B65976FE7937}) (Version: 1.3.1 - Screaming Bee)
Shards of War (HKLM-x32\...\1d128bf6-25c8-4b8a-bfa2-12b013ab230e_is1) (Version: 59459 - Bigpoint GmbH)
SilkroadR (HKLM-x32\...\SilkroadR) (Version:  - )
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM-x32\...\Steam App 365720) (Version:  - The SKSE Team)
SkySaga Infinite Isles (HKLM-x32\...\SkySaga Infinite Isles 1.0.3365.0) (Version: 1.0.3365.0 - Radiant Worlds)
SkySaga Infinite Isles (x32 Version: 1.0.3365.0 - Radiant Worlds) Hidden
Soldat 1.6.8 (HKLM-x32\...\Soldat_is1) (Version: 1.6.8 - Michal Marcinkowski)
Special Effects Voices (HKLM-x32\...\{913C4C4F-9E3E-41A6-A614-1BDC1352A225}) (Version: 1.0.2 - Screaming Bee)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version:  - Three Rings)
Spotify (HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Spotify) (Version: 1.0.21.143.g76c19bcd - Spotify AB)
Spotydl 0.9.37.0 (HKLM-x32\...\Spotydl_is1) (Version: 0.9.37.0 - spotydl.com)
Tap Tap Infinity (HKLM-x32\...\Steam App 380360) (Version:  - Scary Bee LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.42849 - TeamViewer)
Technitium MAC Address Changer v6.0.5 (HKLM-x32\...\TMACv6.0) (Version: 6.0.5 - Technitium)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Tom Clancy's Splinter Cell Conviction (HKLM-x32\...\{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}) (Version: 1.00.000 - Ubisoft)
Translator Fun Voice Pack (HKLM-x32\...\{C39768C1-82E7-4466-8526-2D8AC44B768F}) (Version: 1.5.1 - Screaming Bee)
Trojan Remover 6.9.2.2938 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.2.2938 - Simply Super Software)
Trove (HKLM-x32\...\Glyph Trove) (Version:  - Trion Worlds, Inc.)
TubeBox (x32 Version: 5.2.0.0 - Freetec) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voice Splicer Plug-In (HKLM-x32\...\{5A53F620-6A7A-4362-94AD-12D9FCB856E1}) (Version: 4.2.11 - Screaming Bee)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
XSplit Broadcaster (HKLM-x32\...\{2EE61038-4F2E-438C-8BA4-04B13C363D59}) (Version: 1.3.1309.1602 - SplitMediaLabs)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {03350D4A-99E2-4544-AC9E-74EED4DC45FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {03D00002-3439-4C8D-8A9A-C7E5243052AB} - System32\Tasks\{0AFB6FF9-C61C-424E-8F98-E0187118A6C4} => Firefox.exe 
Task: {1295A838-FE3C-4E85-975F-0F27D8F6B761} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {18147544-5F29-4220-99D8-D8980D979C4F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6142D733-21A1-4EF3-BB8A-9C79D9A404AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {66322F75-ED94-46D8-963F-33F771002E05} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {72FEE775-45D9-43CF-B84D-270615FF45F2} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-06-08] (Oracle Corporation)
Task: {8BFC28A3-E790-4C6C-82B4-E814B93A1672} - System32\Tasks\{50781498-D7FB-41B8-AC80-204F3AB203F0} => pcalua.exe -a C:\Users\Godlike\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\Godlike\Downloads
Task: {9172961A-E770-4E0A-83B0-48F9EA672D15} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {A0365BEE-22E2-406C-87B5-0712FD877C32} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {B2A14D92-AEB3-4F2D-A32A-7AB76B336ED8} - System32\Tasks\{B29AC6B8-4856-4DB6-BE38-31DC1EA75F4A} => pcalua.exe -a "C:\Program Files (x86)\HDV1.6\Uninstall.exe" -c /fcp=1
Task: {C0E63E43-47F7-4F8E-A619-A7D92815A7A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-21] (Google Inc.)
Task: {C2E61000-CBBD-4428-88A6-1461073580A7} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-24] (Dropbox, Inc.)
Task: {CBB1ED1C-6E7B-4AE7-B984-9A7FDE7DAE3D} - System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7} => pcalua.exe -a C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe -d C:\Users\Godlike\Downloads
Task: {CD962B17-5B95-47CC-B702-8705BF84E10A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Godlike\Knuddels\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=foldericon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels - Kopie.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\Users\Godlike\Desktop\Exen-Clients\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=desktopicon-app-start
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Knuddels.lnk -> C:\Users\Godlike\Knuddels\FirefoxPortable\KnuddelsApp.exe (PortableApps.com) -> hxxp://www.knuddels.de/?utm_medium=knu-windowsapp&utm_campaign=chromeproj-2015-q1&utm_source=knuddels&utm_content=menuicon-app-start

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-12-06 16:06 - 2013-12-06 16:06 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-05-17 00:01 - 2009-08-24 13:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-16 04:21 - 2011-12-14 16:53 - 00303360 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2008-03-25 16:21 - 2008-03-25 16:21 - 00219656 _____ () C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
2015-09-16 04:21 - 2011-12-14 16:55 - 08453376 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-11-30 10:44 - 2013-10-08 13:23 - 00890016 _____ () C:\Program Files\Core Temp\Core Temp.exe
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-17 00:01 - 2009-03-13 10:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-09-16 04:21 - 2011-12-14 09:22 - 00368640 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiLib.dll
2011-01-20 09:23 - 2011-01-20 09:23 - 02605127 _____ () C:\Program Files (x86)\Gigabyte\ET6\Normal.dll
2011-01-11 18:43 - 2011-01-11 18:43 - 00413763 _____ () C:\Program Files (x86)\Gigabyte\ET6\work.dll
2010-12-01 17:15 - 2010-12-01 17:15 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\SF.dll
2008-05-07 14:22 - 2008-05-07 14:22 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\CIAMIB.dll
2010-12-02 14:59 - 2010-12-02 14:59 - 00151552 _____ () C:\Program Files (x86)\Gigabyte\ET6\OCK.dll
2009-12-22 15:52 - 2009-12-22 15:52 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\ycc.dll
2010-10-19 09:59 - 2010-10-19 09:59 - 00065536 _____ () C:\Program Files (x86)\Gigabyte\ET6\GPTT.dll
2010-06-24 14:50 - 2010-06-24 14:50 - 00094208 _____ () C:\Program Files (x86)\Gigabyte\ET6\IccLibDll.dll
2010-09-30 07:45 - 2010-09-30 07:45 - 00126976 _____ () C:\Program Files (x86)\Gigabyte\ET6\StabilityLib.dll
2010-12-02 15:01 - 2010-12-02 15:01 - 00106496 _____ () C:\Program Files (x86)\Gigabyte\ET6\HM.dll
2011-01-19 09:48 - 2011-01-19 09:48 - 00192512 _____ () C:\Program Files (x86)\Gigabyte\ET6\GVTunner.dll
2003-02-14 13:11 - 2003-02-14 13:11 - 00102400 _____ () C:\Program Files (x86)\Gigabyte\ET6\Sound.dll
2010-06-10 14:52 - 2010-06-10 14:52 - 00110592 _____ () C:\Program Files (x86)\Gigabyte\ET6\AMD8.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 04449632 _____ () C:\Program Files (x86)\Gigabyte\ET6\Platform.dll
2010-03-12 04:40 - 2010-03-12 04:40 - 00423256 _____ () C:\Program Files (x86)\Gigabyte\ET6\Device.dll
2011-01-04 15:21 - 2011-01-04 15:21 - 00303104 _____ () C:\Program Files (x86)\Gigabyte\ET6\MFCCPU.DLL
2015-12-14 12:58 - 2016-01-29 21:19 - 50679920 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libcef.dll
2015-09-16 04:21 - 2011-12-14 09:43 - 00278528 _____ () C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvcLib.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 03:43 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-13 03:43 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-13 03:43 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-13 03:43 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-13 03:43 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 03:43 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-13 03:43 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-14 12:58 - 2016-01-29 21:19 - 01882224 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libglesv2.dll
2015-12-14 12:58 - 2016-01-29 21:19 - 00082544 _____ () C:\Users\Godlike\AppData\Roaming\Spotify\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Godlike\Desktop\Butch Cassidy und Sundance Kid.mkv:Mac_Metadata

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1581255019-2042543514-717909806-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Air Mouse.lnk => C:\Windows\pss\Air Mouse.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Godlike^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: TrojanScanner => C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DDCB0DC4-721A-4F52-827B-569094E5B652}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{1960C050-5668-4120-ADB6-A94F3E1D834D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{7E5926B1-303C-4649-9A4E-E0619ED5BB60}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{8B70F11B-A6D3-4040-8CD8-34C982C3964D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{7B9D18F3-A960-462A-A58A-407BD2520000}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F88AD8DC-2465-4F8A-9688-3985E1C02916}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{F6B274F4-AC48-4364-8C08-03BBDE1FDF59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{EF2670B9-FCF6-4FDF-9C52-1D9DEBA4FE4F}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{0DCFF87A-5071-4CEC-A089-FBB1E2F9B95B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{632B1E49-9018-49D5-AB35-6AC42C183FB0}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{06DA4FCD-51CB-4AE5-BA2F-959BF5457332}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C61BCD9B-8665-4C45-87CA-A10132E2C5EB}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{02AE6191-23B8-4D51-88D9-C95D5972546C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EF62F4CF-B902-493F-8641-B233844ADEA1}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{53A479CB-B1D7-4A77-A58E-ADE84808466E}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\sw.exe
FirewallRules: [{F5FE4C50-5F81-40CB-949F-4A5D3C745FF3}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{47F18DDA-A5E0-48FB-971E-16FCE3E9ABF2}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{3D80C5BC-C4B6-4C5B-A009-C4DE6FEA7C26}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{EAA13B41-0F59-4266-9CBB-D413FE9AC9AA}] => (Allow) D:\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{F74CB6CD-F7F5-4353-949D-29855F98709C}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{BF84E656-7145-46E1-A1EE-0A5C81234FBA}] => (Allow) D:\Steam\SteamApps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [TCP Query User{A59D66D6-4595-406C-BB8E-6A0234E98B5C}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{57CF97B6-84B9-4BAE-89B9-86ED0AF06215}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{2A4CC8FC-3FA5-427F-BF13-6AC5498539CB}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{C0A7B7F8-8484-46AD-A515-3D12AB2A14FF}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [{D6F00E05-C474-4A79-A930-A6FCFB48BD24}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{6F75E19C-125A-43C9-8411-C4CCAF2B5EE2}] => (Allow) D:\Steam\SteamApps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{A56C5238-81D0-4BDE-AAEE-C2B07F2B0D49}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{475F6050-7129-4B4D-A37A-E6E9ABC4D95A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{420D8987-F49D-4D1D-97EA-6B12E6FB68C1}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EDF2537A-872F-49E4-A8A1-3F20410156CF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{BF1F8E50-D730-44D4-9DD4-1A5FA38765FF}] => (Allow) D:\Steam\SteamApps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{5BF0F55F-9761-404B-8C6A-9DA2A3E68944}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{FE0EAEAE-CFEF-4A64-8FDF-A9926E777047}] => (Allow) D:\Steam\SteamApps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [TCP Query User{72C4E64F-B0F3-45D4-B1B6-A117EBCE1F1E}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [UDP Query User{3163FFE1-2D9D-4763-A0CD-61133D6095E7}C:\program files (x86)\air mouse\air mouse\air mouse.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\air mouse.exe
FirewallRules: [TCP Query User{755C758E-9599-4E1D-9E91-3032E294A22C}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [UDP Query User{1269DF36-39F3-4244-A792-D6D6FFF0E2F7}C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe] => (Allow) C:\program files (x86)\air mouse\air mouse\mobile mouse service.exe
FirewallRules: [TCP Query User{4B708890-50C5-4E32-8514-2D9E1DA9EDA9}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [UDP Query User{F758E14B-9826-4001-949D-C8BEE24D95E5}C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\aion\nclauncher.exe
FirewallRules: [TCP Query User{01C92C84-A1E9-4A9A-970C-32CA769F259E}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [UDP Query User{1203EABC-DB8A-4156-8C4E-8D6AB261105D}D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe] => (Allow) D:\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe
FirewallRules: [{4C053FCB-B61F-453A-8259-A460388AFC15}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{417CCCF0-B7A6-4B11-ABC9-EF5FF4741F8D}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{08EF3198-43A5-4B01-9AC1-01D4B4E65BE7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CD283A5B-196A-463C-B371-484743E4D669}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7889F82C-3995-4044-87B7-248B7DC08025}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [UDP Query User{9F057430-41C0-4D77-8FB5-3C0CBDCCDBF7}D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic ii\_work\tools\zspy\zspy.exe
FirewallRules: [{9B89126C-847E-43EE-956E-6A660AE14403}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{732E65EB-124E-4EE4-978A-6803A9A5A19E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5F685543-EB06-486B-9DD4-169099D76A85}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{30C63F29-87D0-44CD-8734-F4BDEC2A74C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{0DE4FD1F-136D-456B-862B-9C80FDE14024}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{5AA0D6FD-1085-4E1A-B284-236803C5C188}] => (Allow) D:\Steam\SteamApps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{2AE49A8C-01F7-41E6-BD09-87FB2F2ECE25}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{59241224-CFF6-45BA-BF10-DFC0E74A2F1C}] => (Allow) D:\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{D6C6EF3A-437E-4D58-9626-79B68A164588}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{A6F41836-78A2-4640-B6C3-8552D0C453D4}] => (Allow) D:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{243CA8F8-0064-48F5-BDFB-7D94543E8FE0}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{602EBBB6-1EBB-471D-A417-6FA433C38163}] => (Allow) D:\Steam\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ACD9CB2A-849F-458C-AEEE-A8E9B151C689}] => (Allow) C:\Program Files (x86)\Radiant Worlds\SkySaga Infinite Isles\SkySagaLauncher.exe
FirewallRules: [TCP Query User{25AB90D6-707E-486F-8EEE-B683AA0BC3DD}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [UDP Query User{E949ECB5-EF8B-40BB-B10B-5BF7922CE116}D:\steam\steamapps\common\happywars\happywars.exe] => (Allow) D:\steam\steamapps\common\happywars\happywars.exe
FirewallRules: [TCP Query User{522329B1-1ACE-4CD4-9455-1B7F5044C72E}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [UDP Query User{6CC8CAE1-6F54-42A8-9296-5C4CCE825076}D:\terraria 1.3.0.2\terraria.exe] => (Allow) D:\terraria 1.3.0.2\terraria.exe
FirewallRules: [TCP Query User{40E701CB-8B72-4A1B-8A03-E7C71E8DDF79}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [UDP Query User{E85DFEDF-9DE9-4B19-9548-F8D483BC7070}D:\terraria 1.3.0.2\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\terrariaserver.exe
FirewallRules: [TCP Query User{4C81E8BD-CCA1-4D80-8698-26287855EFED}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [UDP Query User{E3032C58-5319-43DC-8090-8E20E055AF2D}D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe] => (Allow) D:\terraria 1.3.0.2\1.3 server setup software (multiplayer)\terrariaserver.exe
FirewallRules: [TCP Query User{56714215-21CA-4EAB-9F81-F40B6F26DCA7}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{AAA3A261-1F67-4D8B-901C-737B545A79D2}D:\terraria\terrariaserver.exe] => (Allow) D:\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{68F00547-9126-4052-82E5-BC1A06B8554A}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [UDP Query User{F227DF74-5452-47C7-B42A-30CC798108F0}D:\terraria\terraria.exe] => (Allow) D:\terraria\terraria.exe
FirewallRules: [{C0EB3705-D934-4C54-B51C-B477762B89D2}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{A01C4922-86AD-4E3D-A290-D3A77C82FCCD}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{2FC2C55C-8DB2-4109-B94B-D5248DE7C1E5}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F64D6289-C77B-4AF2-9C5C-D1721EA5FB80}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{B4D58AE0-0E77-43BB-9B72-DC4A5F3F9467}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [UDP Query User{3F43F91E-69E9-42A8-91AE-5C7812A2D9A4}C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe] => (Allow) C:\users\godlike\desktop\ddnet-7.9.1-win64\ddnet.exe
FirewallRules: [TCP Query User{07AAA093-4DAE-4F7E-B42C-A90BF8610821}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{EFC9571E-9C53-4297-AF74-4E76CBB559C1}C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\godlike\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [TCP Query User{21F29C42-431C-4AAA-A723-B64254ADF76A}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [UDP Query User{041E831B-1848-4925-BA3C-9F04C5A863E1}C:\soldat\soldat.exe] => (Allow) C:\soldat\soldat.exe
FirewallRules: [TCP Query User{E793509E-3828-421A-9ACB-CA45F5FE3D84}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{DB283311-A163-45FA-BCF9-B1CD14819628}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{4A3F120C-39D1-4DC6-B60F-0EA4C3309549}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{10F528A4-0D8B-4032-A120-2172B49400D7}] => (Allow) D:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{40D0453A-AD94-4B43-8898-8061275D3526}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{D6AC434E-EBB9-4BE3-8495-23F016ED36D9}] => (Allow) D:\Steam\SteamApps\common\Tap Tap Infinity\TapTapInfinity.exe
FirewallRules: [{1FC024A4-B263-4B4A-B14B-CE269901AC9E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{00445E9D-D608-4086-9B54-3AC623AE199E}] => (Allow) D:\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{E9F02950-B58B-487B-BB13-6129E771FBED}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{148E3501-D7A1-4D86-9152-051A64B5352C}] => (Allow) D:\Steam\SteamApps\common\Hawken\Binaries\Win32\HawkenGame-Win32-Shipping.exe
FirewallRules: [{ADE35079-CBD9-47D9-9CCF-FF0045EC0BDC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{10EB2AF8-C547-41DD-9F8A-159AB3E8340B}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{BF194124-893F-43CD-9201-1C41B89DCB6F}] => (Allow) D:\GameforgeLive\gfl_client.exe
FirewallRules: [{E1295097-3548-47C6-8782-3957FA9812A7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{62E6D74F-9D67-4220-90D9-76FE5E827E71}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{C52B87B9-5888-41E4-875A-380BA134C34E}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{D0D1CC1D-E1DD-46F3-8FC0-F891554D3869}] => (Allow) D:\Steam\SteamApps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{093994A1-40F5-4C19-92F0-710022DF1B95}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{7DDAFB8E-1D51-47FE-9AE8-DB0FC40410AF}] => (Allow) D:\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{AA11B688-E76C-4CDF-86A5-0E9C7C514075}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{419FB252-C5FE-42B3-99CB-4C3D62B1CF94}] => (Allow) D:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{270EA5ED-A61D-4022-AE0B-91B324408825}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{F9BA5A61-89F2-443C-92FB-9016CB33A1D3}] => (Allow) D:\Steam\SteamApps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{EECDC32B-01F6-4E6F-835A-D4D3EA09AD87}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{6B49CB0D-660C-4395-A31F-D091F2ECB0D3}] => (Allow) D:\Steam\SteamApps\common\DOMO_US\Main\DOMO.exe
FirewallRules: [{038CA70A-74E3-452D-BB1F-2551258A9E82}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [TCP Query User{19AD8EC3-063B-4605-A438-F100BAE1836D}C:\users\godlike\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\godlike\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{D7C5A6B1-4764-4085-9ABF-4D68FF818992}C:\users\godlike\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\godlike\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6C9F8BFE-7AF1-4953-8110-D0B720E000AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

28-01-2016 18:35:21 Geplanter Prüfpunkt
29-01-2016 16:22:56 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/29/2016 04:19:46 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm GWXUX.exe, Version 6.3.9600.18155 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1004

Startzeit: 01d15aa85a969247

Endzeit: 1

Anwendungspfad: C:\Windows\System32\GWX\GWXUX.exe

Berichts-ID: b2bbf6e4-c69b-11e5-88a1-1c6f65d41233

Error: (01/28/2016 06:00:26 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (01/26/2016 06:38:37 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (01/26/2016 09:47:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (01/26/2016 09:47:13 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (01/25/2016 04:57:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x1af4
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (01/22/2016 11:51:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 38.0.5.5623 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: ba8

Startzeit: 01d1555a178d160c

Endzeit: 90

Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Berichts-ID: b871bce0-c15a-11e5-afa2-1c6f65d41233

Error: (01/22/2016 11:51:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x188
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (12/13/2015 08:58:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Wow.exe, Version 3.3.5.12340 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1730

Startzeit: 01d135cd59c12231

Endzeit: 156

Anwendungspfad: D:\World of Warcraft Lichking\Wow.exe

Berichts-ID: d4b2f956-a1d3-11e5-b017-1c6f65d41233

Error: (12/02/2015 03:50:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm DDNet.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 233c

Startzeit: 01d12cf4aca80f57

Endzeit: 2698

Anwendungspfad: C:\Users\Godlike\Desktop\DDNet-7.9.1-win64\DDNet.exe

Berichts-ID: 0009af6a-9904-11e5-a789-1c6f65d41233


Systemfehler:
=============
Error: (01/28/2016 06:26:31 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (01/26/2016 09:50:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (01/26/2016 09:50:39 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (01/26/2016 09:50:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (01/26/2016 09:50:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (01/26/2016 09:50:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (01/26/2016 09:50:38 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (01/26/2016 09:48:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (01/26/2016 09:48:02 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Godlike\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (01/26/2016 09:48:01 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275


CodeIntegrity:
===================================
  Date: 2016-01-28 17:59:30.910
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-28 17:59:30.801
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-28 17:59:30.660
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.761
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.626
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:46:32.232
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.943
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.756
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.492
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-01-21 01:40:27.279
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpa.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: AMD Phenom(tm) II X4 955 Processor
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 4093.55 MB
Verfügbarer physikalischer RAM: 2247.95 MB
Summe virtueller Speicher: 8185.32 MB
Verfügbarer virtueller Speicher: 5951.65 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:3.97 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:368.1 GB) (Free:10.46 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A3BBFCCB)
Partition 1: (Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 30.01.2016, 13:36   #15
Ainshval
 
Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Standard

Firefox werbung in neuen tabs + werbung auf jeglichen seiten.



FRST :
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:18-01-2016
durchgeführt von Godlike (Administrator) auf GODLIKE-PC (30-01-2016 14:33:18)
Gestartet von C:\Users\Godlike\Desktop
Geladene Profile: Godlike (Verfügbare Profile: Godlike)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\Gigabyte\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Spotify Ltd) C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(CPUID) C:\Program Files\CPUID\CPU-Z\cpuz.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\Gigabyte\ET6\ETCall.exe [20480 2007-07-26] ()
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify Web Helper] => C:\Users\Godlike\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2355312 2016-01-29] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [Spotify] => C:\Users\Godlike\AppData\Roaming\Spotify\Spotify.exe [8449136 2016-01-29] (Spotify Ltd)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2010-08-25] (AMD)
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {6579406f-fc6f-11e4-953f-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {de529e6c-1b31-11e5-9738-806e6f6e6963} - F:\fscommand\LS_Start_Launch.cmd
HKU\S-1-5-21-1581255019-2042543514-717909806-1000\...\MountPoints2: {fd711d48-dd30-11e3-a462-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-05-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNDA3100v2 Genie.lnk [2015-09-16]
ShortcutTarget: NETGEAR WNDA3100v2 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNDA3100v2\WNDA3100v2.exe ()
Startup: C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-10-16] ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{97BFA505-8A1D-4855-B9D4-994726B502AF}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F6176ED3-9817-4D22-BDE9-D5B0883C0BA2}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F9951D3E-BDEC-45B8-BF0E-B6590CAC0D1C}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\S-1-5-21-1581255019-2042543514-717909806-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-25] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-25] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default
FF DefaultSearchEngine: Google Default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-21] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\searchplugins\google-default.xml [2015-08-17]
FF Extension: leethax.net extension - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\extensions\leethax@leethax.net.xpi [2015-09-16]
FF Extension: ProxTube - Unblock YouTube - C:\Users\Godlike\AppData\Roaming\Mozilla\Firefox\Profiles\5gh85y4x.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-09-22]

Chrome: 
=======
CHR Profile: C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google-Suche) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-21]
CHR Extension: (Google Präsentationen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-21]
CHR Extension: (Google Mail) - C:\Users\Godlike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-09-23] (BitRaider, LLC)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-24] (Dropbox, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [238376 2015-06-20] (EasyAntiCheat Ltd)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5491984 2015-05-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
S3 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WSWNDA3100v2; C:\Program Files (x86)\NETGEAR\WNDA3100v2\WifiSvc.exe [303360 2011-12-14] ()
S4 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]
S3 Origin Client Service; "D:\Origin\OriginClientService.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R3 cpuz139; C:\Users\Godlike\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [43312 2016-01-30] (CPUID)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-01-30] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-30] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
R3 ALSysIO; \??\C:\Users\Godlike\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 RTHDMIAzAudService; system32\drivers\RtHDMIVX.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-30 14:31 - 2016-01-30 14:31 - 00001878 _____ C:\Users\Godlike\Desktop\mbam.txt
2016-01-30 14:27 - 2016-01-30 14:28 - 01665568 _____ ( ) C:\Users\Godlike\Downloads\cpu-z_1.75-en.exe
2016-01-26 09:47 - 2016-01-26 09:47 - 00000000 ____D C:\Program Files (x86)\ESET
2016-01-26 09:46 - 2016-01-26 09:46 - 02870984 _____ (ESET) C:\Users\Godlike\Downloads\esetsmartinstaller_deu.exe
2016-01-25 17:00 - 2016-01-25 17:00 - 00004120 _____ C:\Users\Godlike\Desktop\Fixlog.txt
2016-01-25 16:55 - 2016-01-25 16:55 - 00001264 _____ C:\Users\Godlike\Desktop\Revo Uninstaller.lnk
2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-01-25 16:55 - 2016-01-25 16:55 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2016-01-25 16:54 - 2016-01-25 16:54 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Godlike\Desktop\revosetup95.exe
2016-01-24 18:39 - 2016-01-30 14:33 - 00017708 _____ C:\Users\Godlike\Desktop\FRST.txt
2016-01-24 18:38 - 2016-01-25 17:08 - 00063845 _____ C:\Users\Godlike\Desktop\Addition.txt
2016-01-23 13:26 - 2016-01-23 13:26 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2016-01-23 12:59 - 2016-01-23 12:59 - 00001102 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-01-23 12:46 - 2016-01-23 12:46 - 01600184 _____ (Malwarebytes) C:\Users\Godlike\Desktop\JRT.exe
2016-01-22 23:23 - 2016-01-22 23:51 - 00199698 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_23.23.12_log.txt
2016-01-22 23:18 - 2016-01-22 23:18 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Godlike\Desktop\tdsskiller.exe
2016-01-22 23:14 - 2016-01-22 23:14 - 02370560 _____ (Farbar) C:\Users\Godlike\Desktop\FRST64.exe
2016-01-22 23:11 - 2016-01-22 23:11 - 00000000 _____ C:\Users\Godlike\Downloads\ADW.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065604 _____ C:\Users\Godlike\Downloads\Addition.txt
2016-01-22 22:44 - 2016-01-22 22:45 - 00065354 _____ C:\Users\Godlike\Downloads\FRST.txt
2016-01-22 22:43 - 2016-01-30 14:33 - 00000000 ____D C:\FRST
2016-01-22 22:40 - 2016-01-22 22:43 - 00004274 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_22.40.27_log.txt
2016-01-22 22:03 - 2016-01-22 22:03 - 01505280 _____ C:\Users\Godlike\Desktop\AdwCleaner_5.030.exe
2016-01-22 21:57 - 2016-01-22 22:00 - 00199172 _____ C:\TDSSKiller.3.1.0.9_22.01.2016_21.57.56_log.txt
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-01-21 17:18 - 2016-01-21 17:18 - 00000000 ____D C:\Program Files\Realtek
2016-01-21 17:18 - 2015-06-18 18:45 - 04496600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-01-21 17:18 - 2015-06-18 17:59 - 02862488 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-21 17:18 - 2015-06-17 19:47 - 02930904 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-01-21 17:18 - 2015-06-17 14:45 - 03234520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-01-21 17:18 - 2015-06-15 17:39 - 01748184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-01-21 17:18 - 2015-05-26 11:59 - 00166616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-01-21 17:18 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-01-21 17:18 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-01-21 17:18 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-01-21 17:18 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-01-21 17:18 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2016-01-21 17:18 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2016-01-21 17:18 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-01-21 17:18 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2016-01-21 17:18 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-01-21 17:18 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-01-21 17:18 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-01-21 17:18 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2016-01-21 17:17 - 2015-05-25 15:18 - 03195416 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-01-21 17:17 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-01-21 17:17 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-01-21 17:17 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-01-21 17:17 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-01-21 17:17 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-21 16:51 - 2016-01-21 16:59 - 228531151 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0005-Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\Users\Godlike\AppData\Local\AMD
2016-01-21 16:31 - 2016-01-21 16:31 - 00000000 ____D C:\ProgramData\ATI
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-01-21 16:30 - 2016-01-21 16:30 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-01-21 16:29 - 2016-01-21 16:30 - 00000000 ____D C:\ProgramData\AMD
2016-01-21 16:27 - 2016-01-21 16:27 - 00000000 ____D C:\Program Files\AMD
2016-01-21 16:24 - 2016-01-21 16:24 - 00003198 _____ C:\Windows\System32\Tasks\{FEC3E867-194E-4014-B5F4-DBECA4381CB7}
2016-01-21 16:23 - 2016-01-21 16:23 - 00000000 ____D C:\AMD
2016-01-21 16:13 - 2016-01-21 16:20 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Godlike\Downloads\13-12_win7_win8_64_dd_ccc_whql.exe
2016-01-21 16:10 - 2016-01-21 16:15 - 131494359 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0006-64bit_Win7_Win8_Win81_Win10_R279.exe
2016-01-21 16:10 - 2016-01-21 16:12 - 23173327 _____ (Realtek Semiconductor Corp.) C:\Users\Godlike\Downloads\0001-HDMI_R270.exe
2016-01-21 11:06 - 2016-01-30 14:23 - 00000000 ____D C:\Windows\rescache
2016-01-21 10:15 - 2016-01-25 17:04 - 00061952 ___SH C:\Users\Godlike\Desktop\Thumbs.db
2016-01-21 02:04 - 2015-11-17 02:11 - 00025024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-01-21 02:04 - 2015-11-17 02:08 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-21 02:04 - 2015-11-17 02:08 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-21 02:04 - 2015-11-16 21:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-01-21 02:04 - 2015-11-14 00:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-01-21 02:04 - 2015-11-14 00:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-01-21 02:04 - 2015-11-13 23:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-01-21 02:04 - 2015-11-13 23:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-01-21 02:03 - 2015-12-24 00:13 - 00387784 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-21 02:03 - 2015-12-23 23:52 - 00341192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-21 02:03 - 2015-12-12 19:54 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 19:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-01-21 02:03 - 2015-12-12 19:16 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 02887168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-21 02:03 - 2015-12-12 19:15 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-01-21 02:03 - 2015-12-12 19:15 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 19:14 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 19:07 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-21 02:03 - 2015-12-12 19:03 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 19:02 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 19:02 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-01-21 02:03 - 2015-12-12 18:55 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-01-21 02:03 - 2015-12-12 18:51 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-21 02:03 - 2015-12-12 18:44 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:40 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:39 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-01-21 02:03 - 2015-12-12 18:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-01-21 02:03 - 2015-12-12 18:36 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-01-21 02:03 - 2015-12-12 18:36 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-01-21 02:03 - 2015-12-12 18:35 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-01-21 02:03 - 2015-12-12 18:33 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-01-21 02:03 - 2015-12-12 18:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-01-21 02:03 - 2015-12-12 18:30 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-01-21 02:03 - 2015-12-12 18:28 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-01-21 02:03 - 2015-12-12 18:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-01-21 02:03 - 2015-12-12 18:25 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:23 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 18:22 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-21 02:03 - 2015-12-12 18:21 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:20 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-01-21 02:03 - 2015-12-12 18:18 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-01-21 02:03 - 2015-12-12 18:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-01-21 02:03 - 2015-12-12 18:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-01-21 02:03 - 2015-12-12 18:09 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-01-21 02:03 - 2015-12-12 18:08 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-01-21 02:03 - 2015-12-12 18:06 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-01-21 02:03 - 2015-12-12 18:02 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-21 02:03 - 2015-12-12 18:00 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-01-21 02:03 - 2015-12-12 18:00 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-21 02:03 - 2015-12-12 17:54 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:42 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-01-21 02:03 - 2015-12-12 17:41 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-01-21 02:03 - 2015-12-12 17:38 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-01-21 02:03 - 2015-12-12 17:36 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-01-21 02:03 - 2015-12-11 19:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 22:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 22:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 22:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 22:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-01-21 02:03 - 2015-12-08 22:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-21 02:03 - 2015-12-08 20:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-21 02:03 - 2015-12-08 20:07 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-01-21 02:03 - 2015-12-08 20:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-01-21 02:03 - 2015-12-08 20:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-21 02:03 - 2015-12-08 20:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-21 02:03 - 2015-12-08 20:04 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-01-21 02:03 - 2015-12-08 19:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-01-21 02:03 - 2015-12-08 19:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-01-21 02:03 - 2015-12-08 19:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-01-21 02:03 - 2015-12-08 18:58 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 05572544 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 20:08 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-21 01:59 - 2015-12-30 20:08 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-01-21 01:59 - 2015-12-30 20:05 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 20:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-01-21 01:59 - 2015-12-30 20:01 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-01-21 01:59 - 2015-12-30 20:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-01-21 01:59 - 2015-12-30 19:58 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:47 - 03993536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-01-21 01:59 - 2015-12-30 19:47 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-01-21 01:59 - 2015-12-30 19:44 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-01-21 01:59 - 2015-12-30 19:41 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-21 01:59 - 2015-12-30 19:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-01-21 01:59 - 2015-12-30 19:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-01-21 01:59 - 2015-12-30 19:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:57 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:50 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-01-21 01:59 - 2015-12-30 18:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-01-21 01:59 - 2015-12-30 18:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-01-21 01:59 - 2015-12-30 18:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-01-21 01:59 - 2015-12-30 18:42 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-01-21 01:59 - 2015-12-30 18:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-21 01:59 - 2015-12-30 18:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-01-21 01:59 - 2015-12-30 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-01-21 01:59 - 2015-12-30 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-01-21 01:59 - 2015-12-30 18:30 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-01-21 01:59 - 2015-12-30 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-01-21 01:59 - 2015-12-08 22:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-21 01:59 - 2015-12-08 22:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-21 01:59 - 2015-12-08 20:07 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-21 01:56 - 2016-01-21 02:45 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotydl
2016-01-21 01:56 - 2016-01-21 01:56 - 28675647 _____ (spotydl.com ) C:\Users\Godlike\Downloads\spotydl_setup.exe
2016-01-21 01:56 - 2016-01-21 01:56 - 00000532 _____ C:\Users\Godlike\Desktop\Spotydl.lnk
2016-01-21 01:56 - 2016-01-21 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotydl

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-01-30 14:32 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-30 14:32 - 2009-07-14 05:45 - 00023168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-30 14:31 - 2015-12-14 12:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Spotify
2016-01-30 14:29 - 2015-08-23 22:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-30 14:28 - 2015-11-30 10:47 - 00000869 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2016-01-30 14:27 - 2015-07-24 17:35 - 00000000 ____D C:\Users\Godlike\AppData\Local\Dropbox
2016-01-30 14:26 - 2015-12-14 12:58 - 00000000 ____D C:\Users\Godlike\AppData\Local\Spotify
2016-01-30 14:26 - 2014-05-17 00:13 - 00030528 _____ C:\Windows\GVTDrv64.sys
2016-01-30 14:26 - 2014-05-17 00:13 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2016-01-30 14:26 - 2014-05-17 00:13 - 00000004 _____ C:\Windows\SysWOW64\GVTunner.ref
2016-01-30 14:25 - 2015-08-21 04:04 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-30 14:25 - 2015-07-24 17:35 - 00001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-01-30 14:23 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-30 14:00 - 2014-05-17 12:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-30 13:58 - 2015-08-21 04:04 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-30 13:52 - 2014-05-17 00:56 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Teeworlds
2016-01-30 13:40 - 2015-07-24 17:35 - 00001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-01-29 16:59 - 2015-08-21 04:04 - 00002234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-25 17:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2016-01-25 16:57 - 2015-06-03 01:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-24 21:46 - 2015-01-17 10:39 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\TS3Client
2016-01-24 21:34 - 2015-06-05 12:59 - 00000000 ____D C:\Users\Godlike\AppData\Local\Steam
2016-01-24 21:19 - 2015-07-27 14:53 - 00000000 ____D C:\Users\Godlike\Desktop\Doks
2016-01-24 19:18 - 2014-05-20 16:07 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\LolClient
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-01-23 12:59 - 2015-08-23 22:20 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-01-22 23:11 - 2014-07-21 19:09 - 00000000 ____D C:\AdwCleaner
2016-01-22 22:12 - 2014-07-06 13:21 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-01-22 22:10 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-01-21 17:30 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-01-21 17:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-01-21 17:17 - 2014-05-17 00:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 17:01 - 2014-05-17 00:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-01-21 16:30 - 2014-05-17 00:16 - 00000000 ____D C:\Program Files\ATI Technologies
2016-01-21 16:29 - 2014-05-17 00:17 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-01-21 16:26 - 2014-07-02 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-21 16:03 - 2014-05-25 18:38 - 00000000 ____D C:\Users\Godlike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-21 10:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-21 09:50 - 2015-08-21 04:04 - 00002205 _____ C:\Users\Public\Desktop\Idee (1).lnk
2016-01-21 09:45 - 2009-07-14 18:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2016-01-21 09:45 - 2009-07-14 18:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2016-01-21 09:45 - 2009-07-14 06:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-21 09:39 - 2009-07-14 05:45 - 00297312 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-21 03:18 - 2014-12-11 14:22 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-21 03:18 - 2014-05-20 14:34 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-01-21 03:08 - 2014-05-17 21:14 - 00000000 ____D C:\Windows\system32\MRT
2016-01-21 03:03 - 2014-05-17 21:14 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-21 03:02 - 2014-05-17 12:25 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-21 03:02 - 2014-05-17 12:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-21 02:04 - 2014-12-23 17:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-31 01:03 - 2015-07-31 01:03 - 0000099 _____ () C:\Users\Godlike\AppData\Roaming\LauncherSettings_live.cfg
2015-07-31 00:19 - 2015-07-31 00:19 - 0000040 _____ () C:\Users\Godlike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-06-12 01:28 - 2014-06-12 01:28 - 0000045 _____ () C:\Users\Godlike\AppData\Roaming\WB.CFG
2014-12-29 18:00 - 2015-05-23 19:48 - 0007168 _____ () C:\Users\Godlike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-27 14:41 - 2014-07-29 14:41 - 0000032 ____R () C:\ProgramData\hash.dat

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-01-29 16:58

==================== Ende von FRST.txt ============================
         
und sry das es doch ein wenig länger gedauert hat . aber ich habe die tage den pc nicht angehabt also auch nicht wirklich was verändert .

Antwort

Themen zu Firefox werbung in neuen tabs + werbung auf jeglichen seiten.
adobe, avg, defender, desktop, dnsapi.dll, firefox, flash player, google, home, homepage, installation, kaspersky, maleware, mozilla, netgear, popups, prozesse, realtek, registry, rundll, scan, secur, services.exe, software, svchost.exe, system, virus, werbung, windows



Ähnliche Themen: Firefox werbung in neuen tabs + werbung auf jeglichen seiten.


  1. Chrome , Firefox und Internet Explorer macht ständig Werbung und Security Warnungen in neuen Tabs auf!
    Log-Analyse und Auswertung - 21.12.2015 (27)
  2. Windows 7: Werbung öffnet sich in neuen Tabs, Anti-Vir funktioniert nicht
    Log-Analyse und Auswertung - 09.11.2015 (12)
  3. Werbung in neuen Tabs bei jeglichem Klicken durh Maus oder Tastatur
    Plagegeister aller Art und deren Bekämpfung - 08.09.2015 (6)
  4. Mozilla Firefox öffnet ständig Werbung und neue Tabs mit Werbung
    Log-Analyse und Auswertung - 21.07.2015 (10)
  5. Google Chrome (auf Mac!) öffnet permanent automatisch Werbung in neuen Tabs
    Alles rund um Mac OSX & Linux - 03.03.2015 (3)
  6. Werbung poppt in neuen Tabs auf und ebenso springen auf Werbefenster auf
    Plagegeister aller Art und deren Bekämpfung - 19.02.2015 (15)
  7. Windows 7, Firefox öffnet automatisch neuen Tab mit Werbung
    Log-Analyse und Auswertung - 02.09.2014 (9)
  8. Windows 7 Chrome: Werbung in neuen Tabs
    Log-Analyse und Auswertung - 23.08.2014 (19)
  9. Windows 8: Internet langsam/stockend + ganz viel Werbung auf neuen Tabs
    Plagegeister aller Art und deren Bekämpfung - 26.04.2014 (34)
  10. Firefox öffnet ein neuen Tab mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 28.02.2014 (20)
  11. Windows 8.1 Firefox: Problem mit Werbeseiten, Werbung beim Öffnen eines neuen Tabs
    Log-Analyse und Auswertung - 24.02.2014 (9)
  12. Firefox / Internet Explorer öffnet Werbung in neuen Tabs
    Log-Analyse und Auswertung - 11.02.2012 (7)
  13. Tabs Öffnen sich ständig im neuen fenster ! ABer KEINE WERBUNG
    Plagegeister aller Art und deren Bekämpfung - 15.07.2011 (21)
  14. Firefox öffnet Tabs mit Werbung / Anstelle einer verlinkten URL öffnet sich Werbung
    Plagegeister aller Art und deren Bekämpfung - 08.08.2010 (4)
  15. Firefox öffnet selbständig Tabs mit Werbung, leitet Links auf andere Seiten weiter
    Plagegeister aller Art und deren Bekämpfung - 21.06.2010 (18)
  16. FireFox Öffnet neuen browser mit werbung
    Mülltonne - 07.10.2008 (0)
  17. 'Werbung' in neuen Firefox Fenster
    Plagegeister aller Art und deren Bekämpfung - 09.08.2008 (3)

Zum Thema Firefox werbung in neuen tabs + werbung auf jeglichen seiten. - Servus, wie schon der titel sagt habe ich meist werbung von reimageplus, naja nun habe ich schon ein wenig selbst in angriff genommen was ich wohl hätte nicht machen sollen^^ - Firefox werbung in neuen tabs + werbung auf jeglichen seiten....
Archiv
Du betrachtest: Firefox werbung in neuen tabs + werbung auf jeglichen seiten. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.