| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: trojaner keine windows uodates mehrWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
12.03.2016, 13:50
| #31 |
| /// TB-Ausbilder   |  trojaner keine windows uodates mehr Dann bitte noch die anderen Logdateien posten. |
|
12.03.2016, 14:00
| #32 |
 | trojaner keine windows uodates mehr der eset scan ist sehr lange
__________________nach 2,5 stunden erst 22% |
|
12.03.2016, 14:19
| #33 | |
| /// TB-Ausbilder | trojaner keine windows uodates mehrZitat:
 Langsam, aber gründlich....  |
|
12.03.2016, 20:23
| #34 |
| | trojaner keine windows uodates mehr 30% Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=bb4183b39341474ab767f766a4de387b
# end=init
# utc_time=2016-03-12 10:23:38
# local_time=2016-03-12 11:23:38 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 28545
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=bb4183b39341474ab767f766a4de387b
# end=updated
# utc_time=2016-03-12 10:28:58
# local_time=2016-03-12 11:28:58 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=bb4183b39341474ab767f766a4de387b
# engine=28545
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-03-12 04:41:48
# local_time=2016-03-12 05:41:48 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Kaspersky Internet Security'
# compatibility_mode=1302 16777213 100 100 26660 85379738 0 0
# scanned=960464
# found=58
# cleaned=0
# scan_time=22369
sh=66A5C05ABA8D6111DB8E6E145F0D71A103428A49 ft=0 fh=0000000000000000 vn="JS/Toolbar.Crossrider.J evtl. unerwünschte Anwendung" ac=I fn="C:\$Recycle.Bin\S-1-5-21-3487997803-1532060654-1365074507-1002\$R8RC4PA.xpi"
sh=42B18D3B4FD1BFEC76C68D40EFDCD382AB75E302 ft=1 fh=d0faee58d52d5a34 vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ASP\AspManager.exe.vir"
sh=10144C66DAC7B66A84C1BA9B0907FB05FDA2D98C ft=1 fh=19e6b5f4ae1975f8 vn="Win32/Systweak.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ASP\ASPUninstall.exe.vir"
sh=AEC34E2F095ECA9330878E48D8858D4F47340D5A ft=1 fh=c29f3fb9e9cf9465 vn="Variante von Win32/Systweak.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ASP\Communication.dll.vir"
sh=706E2F9B54F36E3A6BE9C46601EA643458EEE626 ft=1 fh=25ac7765e7ecc5d9 vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ASP\filetypehelper.exe.vir"
sh=0F244B5FB9082B29DADE8CA9F46F4BE668EC8698 ft=1 fh=e5d74cce0e8be202 vn="Variante von MSIL/AdvancedSystemProtector.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ASP\scandll.dll.vir"
sh=09E369F9EA069BC141F0D34DC18AEC3ABBA77F6B ft=1 fh=241f3ea108f7cde2 vn="Variante von Win32/Adware.Vonteera.L Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Convertor\Convertor.exe.vir"
sh=2CE3BF0EB7CE2B73358ED9617B3187BF1C746667 ft=1 fh=60328772d3a6e4ff vn="Variante von Win32/Toolbar.CrossRider.CW evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe.vir"
sh=8849C55CB466A73CEEAB6416962659C75987B71F ft=1 fh=785bc7ab428e2b17 vn="Variante von Win32/AlteredSoftware.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe.vir"
sh=8849C55CB466A73CEEAB6416962659C75987B71F ft=1 fh=785bc7ab428e2b17 vn="Variante von Win32/AlteredSoftware.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\setup.exe.vir"
sh=9D3F54D82B7C62C17F6406761683DC26AA74ED80 ft=1 fh=97e8c9321e0d92e5 vn="Variante von Win32/Packed.Komodia.D verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\ACDLL.dll.vir"
sh=3DA6A323CB986C57B1EB1D2307DEBCAA62AE9151 ft=1 fh=5157e8dc14682854 vn="Variante von Win64/Packed.Komodia.F verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\ACDLL64.dll.vir"
sh=E85B1E7D8DF337B0AD7AFF714595ECA5D5EA2E8F ft=1 fh=747e4c160724cb8b vn="Variante von Win64/Packed.Komodia.A verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\ACDLL64.exe.vir"
sh=783A840EEBDAE7F86B5F211352C9A2A60352BE51 ft=1 fh=5b627b5065c7707b vn="Variante von Win32/Packed.Komodia.D verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\acengine.dll.vir"
sh=186ECB6855D797528F60AE8A94A518A2D9E6431A ft=1 fh=a6a444532d8ce064 vn="Variante von Win32/Packed.Komodia.A verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\acengine.exe.vir"
sh=40DA924475F939721BFC39DE225D1604A29689BF ft=1 fh=a039efda69b6d65e vn="Variante von Win64/Packed.Komodia.C verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\acengine64.dll.vir"
sh=49D7AA01F17A8FA1EC90C13BE6AF63580946DFE8 ft=1 fh=27c3d03a6e26c0d8 vn="Variante von Win32/Packed.Komodia.D verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\acenginecert.dll.vir"
sh=66543A0AD2BC9EF30E1BE51842C683121A267E8B ft=1 fh=a22cc4c8074c6fd8 vn="Win32/RiskWare.Komodia.H Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\acwfp.sys.vir"
sh=5258F47EA3D5C8A029F12482A6F05769E50350C4 ft=1 fh=81458dcd3b86c70b vn="Win64/Riskware.Komodia.C Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\acwfp64.sys.vir"
sh=0A91619CA990D530C527D5B42083C69BF0A30A2C ft=1 fh=c44c92c0f598ffeb vn="Variante von Win32/Packed.Komodia.A verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\lengine.exe.vir"
sh=050CD1C801409B91256FC807A99BD83977F3B3F7 ft=1 fh=ca98f9e2dddf003d vn="Variante von Win64/Packed.Komodia.D verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\FastSearch\lengine64.exe.vir"
sh=DD4605E26B48B7C231DBEBA5E8FAA91F33D21B2B ft=1 fh=bb1ffd2794ad6ec5 vn="Win32/AlteredSoftware.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\globalupdate.exe.vir"
sh=DD4605E26B48B7C231DBEBA5E8FAA91F33D21B2B ft=1 fh=bb1ffd2794ad6ec5 vn="Win32/AlteredSoftware.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdate.exe.vir"
sh=DD4605E26B48B7C231DBEBA5E8FAA91F33D21B2B ft=1 fh=bb1ffd2794ad6ec5 vn="Win32/AlteredSoftware.F evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateCrashHandler.exe.vir"
sh=2BCC66A18F1AE6E53575452B44D68E340903A781 ft=1 fh=c71c001178de99b1 vn="Variante von Win32/AlteredSoftware.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir"
sh=F155D5C60D580CA098721BDB1FED102C4E997351 ft=1 fh=e858233d4598588e vn="Variante von Win32/AlteredSoftware.J evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir"
sh=236328E2BCA8B52DD696D4507490DECC714B7AA5 ft=1 fh=69bb3e3e08890f65 vn="Variante von Win32/Speedchecker.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\pc speed up\PCSUSD.exe.vir"
sh=CDE78F3360C6E454C10B29DAD6169182F467D112 ft=1 fh=b715a34effb02301 vn="Variante von Win32/Speedchecker.C evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\pc speed up\PCSUService.exe.vir"
sh=16B86EFCC35F286C4216D4BAEE733E578434FC1D ft=1 fh=bbaa0c87cbe2b416 vn="Variante von Win32/Speedchecker.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\pc speed up\PCSUUCC.exe.vir"
sh=440A48D3CB57EF728EACE4773119642BC7404DC6 ft=1 fh=15ee57bce7e88e73 vn="Win32/Systweak.O evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RCP\CleanSchedule.exe.vir"
sh=E3610EA1F8F519D51D53CB030D6271AC81307E69 ft=1 fh=d9da9824af8bb37e vn="Variante von Win32/Systweak.K evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RCP\RCPUninstall.exe.vir"
sh=8977C1130459C6F87CC86A080CE023DA4EC85EE1 ft=1 fh=1b8645e970019d8b vn="Variante von Win32/Systweak evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RCP\RegCleanPro.exe.vir"
sh=A8652F1D713A0D8A14B3A8BADE1757E137E112CE ft=1 fh=30b12dff3ee5c037 vn="Win32/Systweak.E evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\RCP\systweakasp.exe.vir"
sh=09E369F9EA069BC141F0D34DC18AEC3ABBA77F6B ft=1 fh=241f3ea108f7cde2 vn="Variante von Win32/Adware.Vonteera.L Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\winsta\bin\Winsta.exe.vir"
sh=EB859D95914B976EB423030EC6341DE71AAB3A40 ft=1 fh=db3bbe5aa8304b46 vn="Variante von Win64/Adware.CouponMarvel.F Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\LolliScan\LolliScan.exe.vir"
sh=BEE69FE03CDD8998719D55EA909DCC2AE1006150 ft=1 fh=efbcdebfcacb83a2 vn="Variante von Win32/Adware.CouponMarvel.N Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\LolliScan\LolliScan32.dll.vir"
sh=77C255287BF1960678C6339F902AB05E28B9CE8A ft=1 fh=1d1c6b07f02c26ce vn="Variante von Win32/Adware.ConvertAd.XB Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Michael\AppData\Local\4C4C4544-1439835442-3510-804C-B8C04F33354A\rnsuF337.exe.vir"
sh=6CEB7D5FAA0137115B3A6292EF63260002B981FC ft=0 fh=0000000000000000 vn="Variante von Win32/Speedchecker.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Michael\AppData\Local\Microsoft\Silverlight\OutOfBrowser\Speedchecker.PCSpeedUp\application.xap.vir"
sh=A8607A580039FC8A5FE77140D54C097A1868C07D ft=1 fh=34b94086e40a1f1c vn="Variante von Win64/Adware.Hicosmea.H Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Michael\AppData\Roaming\agederar\fortetri.dll.vir"
sh=62A22F2A651DFFE747D300FA095631C740FF92F6 ft=1 fh=ed66734ba6ef6c2e vn="Variante von Win32/ELEX.CP evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Michael\AppData\Roaming\mystartsearch\UninstallManager.exe.vir"
sh=62A22F2A651DFFE747D300FA095631C740FF92F6 ft=1 fh=ed66734ba6ef6c2e vn="Variante von Win32/ELEX.CP evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Michael\AppData\Roaming\oursurfing\UninstallManager.exe.vir"
sh=40DA924475F939721BFC39DE225D1604A29689BF ft=1 fh=a039efda69b6d65e vn="Variante von Win64/Packed.Komodia.C verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\Sysnative\acengine64.dll.vir"
sh=25E02BBF87CA6C352A3CDE9B2F2897AAF0ADEAD5 ft=1 fh=21f1aa46b421d68e vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\Sysnative\roboot64.exe.vir"
sh=30415927FBB84F33FDAE3B0A0E558009E724BD22 ft=1 fh=ce824a5c89be92a1 vn="Win64/AdvancedSystemProtector.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\Sysnative\sasnative64.exe.vir"
sh=783A840EEBDAE7F86B5F211352C9A2A60352BE51 ft=1 fh=5b627b5065c7707b vn="Variante von Win32/Packed.Komodia.D verdächtige Datei" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\acengine.dll.vir"
sh=3F9921200CF59B27C620DC31C47B81C71D7E9C61 ft=1 fh=cb36ffb5fad023af vn="Variante von Win32/Rising.B evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\AdwCleaner\FileQuarantine\C\Program Files (x86)\Rising\RAV\RstoreDll.dll.vir"
sh=411EEA18ADEE58E0236270152CEF1D842412AA6C ft=1 fh=a87b79873f3237d3 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\AdwCleaner\FileQuarantine\C\Windows\SysNative\roboot64.exe.vir"
sh=A48D4337DF99A587680C8922A1E9A02507900221 ft=1 fh=3dcd6cab25f7d5c4 vn="Variante von Win32/Toolbar.Conduit.AI evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\ageofconan-de.exe"
sh=E7B7F20231546FF1F2527B43A9F6C040732FC7E7 ft=1 fh=e3be5bc64306b4be vn="Variante von Win32/Systweak evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\dffsetup-fmodex.exe"
sh=83E2DBD0914E18806599A34B2BEC1C8668158790 ft=1 fh=8e93f75c32f0d9b7 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\DirectX - CHIP-Installer (1).exe"
sh=2E347EFB052609598638C41856D807A77F9E3961 ft=1 fh=0edb98f62627ebad vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\DirectX - CHIP-Installer.exe"
sh=E29BF1EA916E4498CF70939538AFC1CD3361201B ft=1 fh=7d5037adb2e29ba0 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\Disk Space Fan - CHIP-Installer.exe"
sh=523DCECB6268EA612F0C977493A6AC6CFC0C8926 ft=0 fh=0000000000000000 vn="Variante von Win32/InstallCore.ACZ evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\Installer (Right Click and select extract).zip"
sh=EFE883D5F8B6EC6CB095514D96F615D170183C57 ft=1 fh=0be83fe0653abdab vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\No23 Recorder - CHIP-Installer.exe"
sh=2BA17D23CAE33BC8FD0C3A4ADE49148E09FAFC22 ft=1 fh=ac7fb190af2af3e6 vn="Variante von Win32/UniBlue.F evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\pcmechanicpm.exe"
sh=E0B67166BDC419873962FD0EC935D11A4D7D5800 ft=1 fh=c69ebb5946850e3d vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\TrueCrypt - CHIP-Installer.exe"
sh=7D5331E26F9AE2799ED9F79405A80CCB08141BE0 ft=1 fh=1e66b4c72772de7d vn="Win32/Systweak.U evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Lukas\Downloads\WinThruster_2016_Setup.exe"
sh=AF319CD0F9FF44033BFCE0F64E4A1358608CDB4C ft=0 fh=0000000000000000 vn="Win32/Adware.Hicosmea.I Anwendung" ac=I fn="C:\Windows\Installer\26ad8.msi"
Code:
ATTFilter Results of screen317's Security Check version 1.009 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Kaspersky Internet Security Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Spyder5Pro Spybot - Search & Destroy TuneUp Utilities 2014 (de-DE) Java(TM) 6 Update 26 Java 7 Update 55 Java version 32-bit out of Date! Adobe Flash Player 21.0.0.182 Mozilla Firefox (42.0) Google Chrome (48.0.2564.109) Google Chrome (48.0.2564.116) Google Chrome (wtsapi32.dll..) ````````Process Check: objlist.exe by Laurent```````` Spybot Teatimer.exe is disabled! Malwarebytes Anti-Malware mbamscheduler.exe Kaspersky Lab Kaspersky Internet Security 15.0.2 avp.exe Kaspersky Lab Kaspersky Internet Security 15.0.2 avpui.exe Kaspersky Lab Kaspersky Internet Security 15.0.2 plugin-nm-server.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 durchgeführt von Lukas (Administrator) auf PC-LUKAS (12-03-2016 20:21:01) Gestartet von C:\Users\Lukas\Desktop Geladene Profile: Lukas (Verfügbare Profile: FAE & PFrey & Michael & Lukas & Hannah & Maximilian) Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\System32\PnkBstrA.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Windows\System32\rundll32.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor Corp.) C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Microsoft Corporation) C:\Windows\System32\taskmgr.exe (Hammer & Chisel, Inc.) C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\Discord.exe (Hammer & Chisel, Inc.) C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\Discord.exe (Hammer & Chisel, Inc.) C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\Discord.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Bohemia Interactive) K:\Lukas\Steam\steamapps\common\Arma 3\arma3launcher.exe (Ipswitch) C:\Program Files (x86)\Ipswitch\WS_FTP 12\WsftpCOMHelper.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe [2907240 2010-10-04] (Realtek Semiconductor Corp.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2728736 2014-07-02] () HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [815512 2012-04-04] (Adobe Systems Inc.) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [837640 2015-12-08] (DivX, LLC) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50605696 2016-02-02] (Skype Technologies S.A.) HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\MountPoints2: {576796b7-e342-11e3-94f0-782bcb99e3ce} - I:\LG_PC_Programs.exe HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHVE.EXE [241280 2014-01-20] (SEIKO EPSON CORPORATION) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2011-07-25] (Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2016-02-18] ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Hosts: Hosts Datei wurde nicht im Standardordner gefunden Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B5E208C6-BB9C-4F8E-8724-0786695ADEB6}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=de-de SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox SearchScopes: HKLM-x32 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {151F5FAD-352E-4BED-AF04-DABC47B2632C} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {48356623-4CDD-4A32-9251-CD12380A0FDE} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {802B7583-F36D-4AFC-A7C1-24395748F1BC} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {9C2FAA18-42D8-4412-BC5F-CCCBDAE73C42} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-02-05] (Microsoft Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-02-04] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-04] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default FF DefaultSearchEngine: Bing FF SelectedSearchEngine: Bing FF SearchEngineOrder.3: Bing FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q= FF Homepage: hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=de-de hxxps://www.malwarebytes.org/restorebrowser//?u=4ef09132d37415b6ea9b7cb45a0bfa6f&c=up1&src=hp&inst=1440087070 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-10] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Keine Datei] FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-07-15] (Sun Microsystems, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-10] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-12-02] (DivX, LLC) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Keine Datei] FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-14] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-04-14] (Oracle Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-08-22] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-08-22] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-08-22] () FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-04] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [Keine Datei] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2012-04-04] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3487997803-1532060654-1365074507-1003: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [Keine Datei] FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default\searchplugins\bing-.xml [2015-12-31] FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Bing Search - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default\Extensions\bingsearch.full@microsoft.com.xpi [2015-12-31] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-04-17] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com Chrome: ======= CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2016-03-07] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-03-07] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-07] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1300512 2016-01-16] () S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-12-21] (BitRaider, LLC) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2804976 2016-02-04] (Microsoft Corporation) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2015-10-03] (EasyAntiCheat Ltd) S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-05-06] (Freemake) [Datei ist nicht signiert] R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2498848 2013-12-19] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-25] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-12] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-09-12] () R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AX88178; C:\Windows\System32\DRIVERS\ax88178.sys [59392 2010-11-24] (ASIX Electronics Corp.) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-12-06] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2015-12-06] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [1980648 2010-10-04] (Realtek Semiconductor Corp.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [225976 2015-07-09] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [831672 2015-10-06] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39280 2015-07-09] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [39280 2015-07-09] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-07-09] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [190648 2015-10-06] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-03-11] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) R1 rsutils; C:\Windows\System32\DRIVERS\rsutils.sys [69336 2014-08-15] (Beijing Rising Information Technology Co., Ltd.) S3 Spyder5; C:\Windows\System32\DRIVERS\dccmtr.sys [15360 2014-12-19] (Datacolor) R0 sysmon; C:\Windows\System32\DRIVERS\sysmon.sys [119344 2014-09-10] (Beijing Rising Information Technology Co., Ltd.) S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2011-03-31] (C-Media Electronics Inc) R0 vidsflt61; C:\Windows\System32\DRIVERS\vsflt61.sys [142944 2012-03-28] (Acronis) U3 DfSdkS; kein ImagePath U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X] S3 SBFWIMCLMP; system32\DRIVERS\SBFWIM.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-12 11:15 - 2016-03-12 11:15 - 00852720 _____ C:\Users\Lukas\Downloads\SecurityCheck.exe 2016-03-12 11:14 - 2016-03-12 11:14 - 02870984 _____ (ESET) C:\Users\Lukas\Downloads\esetsmartinstaller_deu.exe 2016-03-11 17:21 - 2016-03-11 17:21 - 12924796 _____ C:\Users\Lukas\Downloads\a3beaf-B2A_Spirit.zip 2016-03-11 17:16 - 2016-03-11 17:16 - 10035437 _____ C:\Users\Lukas\Downloads\2d860a-XB70_Valkyrie.zip 2016-03-11 17:15 - 2016-03-11 17:15 - 04053135 _____ C:\Users\Lukas\Downloads\4c2f26-[Addon]Lockheed F-117 Nighthawk Black GTAV (1).rar 2016-03-11 15:47 - 2016-03-11 15:47 - 01199720 _____ (Uniblue Systems Limited ) C:\Users\Lukas\Downloads\pcmechanicpm.exe 2016-03-11 15:13 - 2016-03-11 15:13 - 04053135 _____ C:\Users\Lukas\Downloads\4c2f26-[Addon]Lockheed F-117 Nighthawk Black GTAV.rar 2016-03-11 15:04 - 2016-03-11 15:05 - 00459515 _____ C:\Users\Lukas\Downloads\eaf5ab-TruckingMissions.zip 2016-03-11 15:03 - 2016-03-11 15:04 - 00645613 _____ C:\Users\Lukas\Downloads\4ac205-MapEditor.zip 2016-03-11 14:50 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-03-11 14:50 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2016-03-11 14:50 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2016-03-11 14:50 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2016-03-11 14:50 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2016-03-11 14:16 - 2016-03-11 14:16 - 00001202 _____ C:\1.txt 2016-03-10 18:41 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2016-03-10 18:41 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2016-03-10 18:41 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2016-03-10 18:41 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2016-03-10 18:41 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2016-03-10 18:41 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2016-03-10 18:41 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2016-03-10 18:41 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2016-03-10 18:41 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2016-03-10 18:41 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2016-03-10 18:39 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2016-03-10 18:39 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2016-03-10 18:39 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2016-03-10 18:39 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2016-03-10 18:35 - 2015-12-16 19:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2016-03-10 18:35 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2016-03-10 18:35 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2016-03-10 18:35 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2016-03-10 18:35 - 2015-12-16 19:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll 2016-03-10 18:23 - 2016-03-11 14:26 - 00080615 _____ C:\Users\Lukas\Desktop\Addition.txt 2016-03-10 18:21 - 2016-03-12 20:21 - 00030941 _____ C:\Users\Lukas\Desktop\FRST.txt 2016-03-10 18:05 - 2016-03-12 11:16 - 00001800 _____ C:\Users\Lukas\Desktop\Fixlog.txt 2016-03-10 17:18 - 2016-03-10 17:18 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (3).exe 2016-03-10 17:13 - 2016-03-10 17:13 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking 2016-03-10 17:13 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe 2016-03-10 17:12 - 2016-03-10 17:23 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2016-03-10 16:58 - 2016-03-10 16:58 - 00286761 _____ C:\Users\Lukas\Downloads\getsysteminfo.de.exe 2016-03-10 16:57 - 2016-03-10 17:05 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Lukas\Downloads\spybot-2.4.exe 2016-03-10 16:55 - 2016-03-10 17:15 - 163116760 _____ (Kaspersky Lab) C:\Users\Lukas\Downloads\kis16.0.0.614de-de (1).exe 2016-03-10 16:33 - 2016-03-10 16:33 - 03901072 _____ (solvusoft Corporation ) C:\Users\Lukas\Downloads\WinThruster_2016_Setup.exe 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{FD404819-2B7F-4103-B8F7-1CD6EAE18EBF} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{B6250C77-5AB3-4C11-96BE-61314EE2E72F} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{AD3F3399-3AE7-4745-BCDA-A3A0700D2BE0} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{8F8A23AD-9F3C-45EC-AE7A-46917BEDC8F2} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{600C58C3-4CD4-4EFD-B9A1-E128C0871C49} 2016-03-10 16:03 - 2016-03-10 16:05 - 47718584 _____ (Hammer & Chisel, Inc.) C:\Users\Lukas\Downloads\DiscordSetup (1).exe 2016-03-10 15:35 - 2016-03-10 15:37 - 00000000 ___HD C:\$WINDOWS.~BT 2016-03-10 15:32 - 2016-03-10 15:36 - 70087104 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP451-KB2858728-x86-x64-AllOS-ENU.exe 2016-03-10 15:23 - 2016-03-10 15:25 - 24277024 _____ (Microsoft) C:\Users\Lukas\Downloads\dotnetfx.exe 2016-03-10 15:23 - 2016-03-10 15:24 - 10703680 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP1.1sp1-KB867460-X86.exe 2016-03-10 15:23 - 2016-03-10 15:24 - 02959376 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotnetfx35setup (1).exe 2016-03-10 15:22 - 2016-03-10 15:22 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (2).exe 2016-03-10 15:22 - 2016-03-10 15:22 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (3).zip 2016-03-10 15:15 - 2016-03-10 15:15 - 01733224 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP46-KB3127233-x64.exe 2016-03-10 14:52 - 2016-03-10 14:52 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (1).exe 2016-03-10 14:48 - 2016-03-10 14:48 - 00000000 ____D C:\23beeb6426fcffe7086cd457 2016-03-10 14:45 - 2016-03-10 14:51 - 00063828 _____ C:\Users\Lukas\Downloads\SystemLook.txt 2016-03-10 14:44 - 2016-03-10 14:44 - 00165376 _____ C:\Users\Lukas\Downloads\SystemLook_x64.exe 2016-03-10 14:43 - 2016-03-10 14:51 - 163116760 _____ (Kaspersky Lab) C:\Users\Lukas\Downloads\kis16.0.0.614de-de.exe 2016-03-09 21:38 - 2016-03-09 21:38 - 00003028 _____ C:\Windows\System32\Tasks\{2AE0AE68-F989-4438-A80F-CCCD7486EC32} 2016-03-09 21:38 - 2016-03-09 21:38 - 00003028 _____ C:\Windows\System32\Tasks\{028F3DEC-334E-4191-8600-B67A45E3280F} 2016-03-09 21:19 - 2016-03-09 21:19 - 00889416 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Full_setup (1).exe 2016-03-09 21:18 - 2016-03-09 21:18 - 01424328 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP461-KB3102438-Web (1).exe 2016-03-09 21:16 - 2016-03-09 21:16 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool.exe 2016-03-09 21:12 - 2016-03-09 21:12 - 01424328 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP461-KB3102438-Web.exe 2016-03-09 20:34 - 2016-03-09 20:57 - 18370440 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP46-KB3045557-x86-x64-AllOS-ENU.exe 2016-03-09 20:32 - 2016-03-09 20:32 - 00266910 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (2).zip 2016-03-09 20:01 - 2016-03-09 20:01 - 00889416 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Full_setup.exe 2016-03-09 19:58 - 2016-03-09 19:58 - 00063893 _____ C:\Users\Lukas\Downloads\NETFx4RTM.htm 2016-03-09 19:57 - 2016-03-09 19:57 - 01045576 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx45_Full_setup.exe 2016-03-09 19:29 - 2016-03-09 19:29 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool.zip 2016-03-09 19:29 - 2016-03-09 19:29 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (1).zip 2016-03-09 19:27 - 2016-03-09 19:27 - 00887896 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Client_setup.exe 2016-03-09 19:25 - 2016-03-09 19:25 - 00985600 _____ C:\Users\Lukas\Downloads\MicrosoftFixit50123.msi 2016-03-09 17:15 - 2016-03-11 14:23 - 00001866 _____ C:\Users\Lukas\Desktop\JRT.txt 2016-03-09 17:02 - 2016-03-09 17:02 - 00163419 _____ C:\Users\Lukas\Desktop\mbam.txt 2016-03-09 16:49 - 2016-02-12 19:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-09 16:49 - 2016-02-12 19:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-09 16:49 - 2016-02-12 19:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-09 16:49 - 2016-02-12 19:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2016-03-09 16:49 - 2016-02-12 19:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-03-09 16:49 - 2016-02-12 19:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-09 16:49 - 2016-02-12 19:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-09 16:49 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-09 16:49 - 2016-02-12 19:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2016-03-09 16:49 - 2016-02-12 19:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-03-09 16:49 - 2016-02-12 19:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-03-09 16:49 - 2016-02-12 19:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-03-09 16:49 - 2016-02-12 19:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2016-03-09 16:49 - 2016-02-09 07:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-03-09 16:49 - 2016-02-09 07:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-03-09 16:49 - 2016-02-08 22:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-09 16:49 - 2016-02-08 21:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-03-09 16:49 - 2016-02-08 21:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-03-09 16:49 - 2016-02-08 21:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-03-09 16:49 - 2016-02-08 21:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-03-09 16:49 - 2016-02-08 21:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-03-09 16:49 - 2016-02-08 21:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-03-09 16:49 - 2016-02-08 21:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-09 16:49 - 2016-02-08 21:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-03-09 16:49 - 2016-02-08 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-03-09 16:49 - 2016-02-08 21:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-03-09 16:49 - 2016-02-08 21:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-03-09 16:49 - 2016-02-08 21:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-03-09 16:49 - 2016-02-08 21:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-03-09 16:49 - 2016-02-08 21:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-03-09 16:49 - 2016-02-08 21:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-03-09 16:49 - 2016-02-08 21:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-03-09 16:49 - 2016-02-08 21:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-09 16:49 - 2016-02-08 21:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-03-09 16:49 - 2016-02-08 21:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-09 16:49 - 2016-02-08 21:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-03-09 16:49 - 2016-02-08 21:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-09 16:49 - 2016-02-08 21:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-03-09 16:49 - 2016-02-08 21:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-03-09 16:49 - 2016-02-08 21:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-03-09 16:49 - 2016-02-08 20:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-09 16:49 - 2016-02-08 20:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-09 16:49 - 2016-02-08 20:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-03-09 16:49 - 2016-02-08 19:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-03-09 16:49 - 2016-02-08 19:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-03-09 16:49 - 2016-02-08 19:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-09 16:49 - 2016-02-08 19:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-03-09 16:49 - 2016-02-08 19:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-03-09 16:49 - 2016-02-08 19:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-03-09 16:49 - 2016-02-08 19:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-03-09 16:49 - 2016-02-08 19:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-09 16:49 - 2016-02-08 19:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-03-09 16:49 - 2016-02-08 19:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-03-09 16:49 - 2016-02-08 19:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-03-09 16:49 - 2016-02-08 19:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-09 16:49 - 2016-02-08 19:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-03-09 16:49 - 2016-02-08 19:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-03-09 16:49 - 2016-02-08 19:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-03-09 16:49 - 2016-02-08 18:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-03-09 16:49 - 2016-02-08 18:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-03-09 16:49 - 2016-02-08 18:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-03-09 16:49 - 2016-02-08 18:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-09 16:49 - 2016-02-08 18:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-03-09 16:49 - 2016-02-08 18:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-03-09 16:49 - 2016-02-08 18:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-09 16:49 - 2016-02-08 18:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-03-09 16:49 - 2016-02-08 18:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-09 16:49 - 2016-02-08 18:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-09 16:49 - 2016-02-08 18:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-09 16:49 - 2016-02-08 18:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-03-09 16:49 - 2016-02-08 18:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-09 16:49 - 2016-02-08 18:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-09 16:49 - 2016-02-08 17:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-09 16:49 - 2016-02-04 18:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-03-09 16:49 - 2016-02-03 19:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2016-03-09 16:49 - 2016-02-03 19:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-09 16:49 - 2016-02-03 19:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2016-03-09 16:49 - 2016-02-03 19:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-09 16:49 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-09 16:49 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-03-09 16:49 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2016-03-09 16:46 - 2016-02-11 19:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-03-09 16:46 - 2016-02-11 19:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-03-09 16:46 - 2016-02-11 19:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-03-09 16:46 - 2016-02-11 19:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-03-09 16:45 - 2016-02-11 19:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-03-09 16:45 - 2016-02-11 19:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-03-09 16:45 - 2016-02-11 19:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-03-09 16:45 - 2016-02-11 19:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-03-09 16:45 - 2016-02-11 19:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-03-09 16:45 - 2016-02-11 19:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-03-09 16:45 - 2016-02-11 19:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-03-09 16:45 - 2016-02-11 19:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-03-09 16:45 - 2016-02-11 19:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-03-09 16:45 - 2016-02-11 18:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-03-09 16:45 - 2016-02-11 18:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-03-09 16:45 - 2016-02-11 18:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-03-09 16:45 - 2016-02-11 18:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-03-09 16:45 - 2016-02-11 18:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-03-09 16:45 - 2016-02-11 18:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-03-09 16:45 - 2016-02-11 18:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-03-09 16:45 - 2016-02-11 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-03-09 16:45 - 2016-02-11 18:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-03-09 16:45 - 2016-02-09 10:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-09 16:45 - 2016-02-09 10:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2016-03-09 16:45 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2016-03-09 16:45 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2016-03-09 16:45 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-09 16:45 - 2016-02-09 10:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2016-03-09 16:45 - 2016-02-09 10:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2016-03-09 16:45 - 2016-02-09 10:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-09 16:45 - 2016-02-09 10:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2016-03-09 16:45 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2016-03-09 16:45 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2016-03-09 16:45 - 2016-02-05 19:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-03-09 16:45 - 2016-02-05 19:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-03-09 16:45 - 2016-02-05 19:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-09 16:45 - 2016-02-05 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-03-09 16:45 - 2016-02-05 19:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-03-09 16:45 - 2016-02-05 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-03-09 16:45 - 2016-02-05 19:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-03-09 16:45 - 2016-02-05 18:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-09 16:45 - 2016-02-05 18:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-09 16:45 - 2016-02-05 18:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-09 16:45 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-09 16:45 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-09 16:44 - 2016-02-19 20:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-03-09 16:44 - 2016-02-19 19:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-09 16:44 - 2016-02-19 15:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-03-09 16:44 - 2016-02-11 15:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-03-09 16:09 - 2016-03-09 16:09 - 01609216 _____ (Malwarebytes) C:\Users\Lukas\Downloads\JRT.exe 2016-03-09 15:58 - 2016-03-09 15:59 - 22908888 _____ (Malwarebytes ) C:\Users\Lukas\Downloads\mbam-setup-2.2.0.1024.exe 2016-03-09 15:57 - 2016-03-11 13:26 - 00000000 ____D C:\Program Files (x86)\AdwCleaner 2016-03-09 15:57 - 2016-03-09 15:57 - 01524224 _____ C:\Users\Lukas\Downloads\AdwCleaner_5.101.exe 2016-03-08 15:26 - 2016-03-08 15:31 - 00230526 _____ C:\TDSSKiller.3.1.0.9_08.03.2016_15.26.46_log.txt 2016-03-08 15:09 - 2016-03-09 17:19 - 00082958 _____ C:\Users\Lukas\Downloads\Addition.txt 2016-03-08 15:04 - 2016-03-09 17:19 - 00071999 _____ C:\Users\Lukas\Downloads\FRST.txt 2016-03-08 15:04 - 2016-03-08 15:09 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Lukas\Downloads\tdsskiller.exe 2016-03-08 15:02 - 2016-03-08 15:04 - 02374144 _____ (Farbar) C:\Users\Lukas\Desktop\FRST64.exe 2016-03-07 19:21 - 2016-03-07 19:21 - 404231634 _____ C:\Users\Lukas\Downloads\Sony Vegas Pro 13 Setup + Crack (64-Bit).rar 2016-03-07 18:35 - 2016-03-07 18:36 - 00000038 _____ C:\Users\Lukas\Desktop\discord.txt 2016-03-07 18:33 - 2016-03-07 18:33 - 00000330 _____ C:\Users\Lukas\Desktop\Bunnyhop.txt 2016-03-07 18:23 - 2016-03-07 18:24 - 00006918 _____ C:\Users\Lukas\Downloads\Bunnyhop CSGO.zip 2016-03-07 17:59 - 2016-03-07 18:15 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\discord 2016-03-07 17:59 - 2016-03-07 17:59 - 00002168 _____ C:\Users\Lukas\Desktop\Discord.lnk 2016-03-07 17:59 - 2016-03-07 17:59 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc 2016-03-07 17:58 - 2016-03-10 16:06 - 00000000 ____D C:\Users\Lukas\AppData\Local\SquirrelTemp 2016-03-07 17:58 - 2016-03-07 17:59 - 00000000 ____D C:\Users\Lukas\AppData\Local\Discord 2016-03-07 17:47 - 2016-03-07 17:50 - 47718584 _____ (Hammer & Chisel, Inc.) C:\Users\Lukas\Downloads\DiscordSetup.exe 2016-03-07 15:36 - 2016-03-07 15:36 - 00001094 _____ C:\AdwCleaner[C3].txt 2016-03-07 15:31 - 2016-03-07 15:33 - 00000940 _____ C:\AdwCleaner[S3].txt 2016-03-07 14:51 - 2016-03-07 14:55 - 00000000 ____D C:\Users\Lukas\Desktop\RevoUninstallerPortable 2016-03-07 14:50 - 2016-03-07 14:45 - 02785665 ____N (PortableApps.com) C:\Users\Lukas\Desktop\RevoUninstallerPortable_1.95_Rev_2.paf.exe 2016-03-07 14:44 - 2016-03-07 14:44 - 00004771 _____ C:\AdwCleaner[C2].txt 2016-03-07 14:41 - 2016-03-07 14:42 - 00004263 _____ C:\AdwCleaner[S2].txt 2016-03-07 14:27 - 2016-03-12 20:21 - 00000000 ____D C:\FRST 2016-03-07 13:17 - 2016-03-07 13:17 - 00000000 ____D C:\Users\Lukas\AppData\Local\Unigraphics Solutions 2016-03-07 12:51 - 2016-03-07 12:51 - 00000000 __SHD C:\found.000 2016-03-05 14:35 - 2016-03-05 14:30 - 00985600 ____N C:\Users\Lukas\Desktop\MicrosoftFixit50123.msi 2016-03-02 17:25 - 2016-03-02 17:33 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\install 2016-03-02 17:24 - 2016-03-02 18:07 - 00000000 __SHD C:\Users\Lukas\Gu73246B57189 2016-03-02 17:24 - 2016-03-02 18:06 - 00000000 ____D C:\Users\Lukas\Ds78224R88177 2016-02-27 12:35 - 2016-02-27 12:35 - 00010250 _____ C:\Users\Lukas\AppData\Local\4BEEC7F234E54494BC31B63B5104251B.Dokument 2.fnf 2016-02-27 12:01 - 2016-02-27 12:01 - 00045901 _____ C:\Users\Lukas\Downloads\let-it-go-trumpet-clarinet-and-baritone-horn.pdf 2016-02-27 11:28 - 2016-02-27 11:28 - 00000000 ____D C:\Users\Lukas\Documents\Forte 2016-02-27 11:28 - 2016-02-27 11:28 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\FORTE 2016-02-27 11:26 - 2016-02-27 11:28 - 54695448 _____ (Lugert Verlag ) C:\Users\Lukas\Downloads\Setup_FORTE6PremiumT_de.exe 2016-02-27 11:25 - 2016-02-27 11:39 - 44101459 _____ (MakeMusic) C:\Users\Lukas\Downloads\nw_22918_finalenotepadexe.exe 2016-02-27 11:18 - 2016-02-27 11:24 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\MuseScore 2016-02-27 11:18 - 2016-02-27 11:18 - 00000000 ____D C:\Users\Lukas\Documents\MuseScore2 2016-02-27 11:18 - 2016-02-27 11:18 - 00000000 ____D C:\Users\Lukas\AppData\Local\MuseScore 2016-02-27 11:14 - 2016-02-27 11:17 - 55488512 _____ C:\Users\Lukas\Downloads\MuseScore-2.0.2.msi 2016-02-27 11:05 - 2016-03-07 15:19 - 00000000 ____D C:\Users\Lukas\Documents\PriMusFree 2016-02-27 11:05 - 2016-02-27 11:05 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Columbus Soft 2016-02-27 11:04 - 2016-02-27 11:04 - 03341128 _____ (Columbus Soft ) C:\Users\Lukas\Downloads\SetupPriMusFree.exe 2016-02-23 21:38 - 2016-02-23 20:59 - 449940993 ____N C:\Users\Lukas\Desktop\mi3.mp4 2016-02-21 12:54 - 2016-02-21 12:54 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2529834191_spectate.bat 2016-02-20 16:30 - 2016-02-20 16:30 - 02259195 _____ C:\Users\Lukas\Downloads\SkinPreview_2.4.0.0_US_BETA_updated-29-1-2016 (1).zip 2016-02-14 20:39 - 2016-02-14 20:39 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2521145290_spectate.bat 2016-02-14 17:54 - 2016-02-14 17:54 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520925620_spectate (1).bat 2016-02-14 17:53 - 2016-02-14 17:53 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520925620_spectate.bat 2016-02-14 14:02 - 2016-02-14 14:02 - 00000000 ____D C:\Users\Lukas\Documents\BnS 2016-02-14 14:02 - 2016-02-14 14:02 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Awesomium 2016-02-14 11:31 - 2016-02-14 11:31 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520117594_spectate.bat ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-12 20:21 - 2016-01-01 20:02 - 00000000 ____D C:\Users\Lukas\AppData\Local\Arma 3 Launcher 2016-03-12 20:19 - 2014-01-12 16:26 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Skype 2016-03-12 19:59 - 2015-08-17 17:26 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-03-12 19:26 - 2012-04-11 06:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-12 18:12 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-03-12 18:12 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-03-12 17:59 - 2015-08-17 17:26 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-12 16:42 - 2016-01-01 20:03 - 00000000 ____D C:\Users\Lukas\Documents\Arma 3 2016-03-12 16:42 - 2015-04-16 15:57 - 00000000 ____D C:\Program Files (x86)\Steam 2016-03-12 15:33 - 2014-09-28 11:06 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TS3Client 2016-03-12 11:17 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-11 20:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2016-03-11 17:09 - 2015-04-15 19:14 - 00000080 _____ C:\Users\Lukas\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 2016-03-11 16:00 - 2015-07-03 07:12 - 00000426 _____ C:\Windows\Tasks\One-Click Optimizer WO11.job 2016-03-11 13:35 - 2015-04-17 19:53 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-03-11 13:20 - 2015-10-19 17:07 - 00002184 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-03-11 13:20 - 2015-10-19 17:07 - 00000000 ___RD C:\Users\Lukas\OneDrive 2016-03-11 13:00 - 2009-07-14 05:45 - 05225896 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-10 21:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-03-10 21:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-03-10 20:26 - 2012-04-11 06:26 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-03-10 20:26 - 2012-04-11 06:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-03-10 20:26 - 2011-09-05 06:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-03-10 17:23 - 2015-07-27 14:41 - 00000000 ____D C:\Program Files\Common Files\AV 2016-03-10 15:38 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther 2016-03-10 15:11 - 2010-11-21 07:50 - 00783212 _____ C:\Windows\system32\perfh007.dat 2016-03-10 15:11 - 2010-11-21 07:50 - 00177422 _____ C:\Windows\system32\perfc007.dat 2016-03-10 15:11 - 2009-07-14 06:13 - 00006526 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-09 19:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2016-03-09 18:30 - 2014-01-12 14:50 - 00000000 ____D C:\Users\Lukas 2016-03-09 18:28 - 2015-04-17 19:47 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-03-09 18:28 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media 2016-03-09 18:15 - 2014-01-10 22:15 - 00000000 ____D C:\Windows\system32\MRT 2016-03-09 18:15 - 2011-09-18 07:24 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-03-09 18:14 - 2014-12-12 15:15 - 00000000 ____D C:\Windows\system32\appraiser 2016-03-09 17:01 - 2011-07-22 14:49 - 00000000 ____D C:\Users\FAE 2016-03-07 19:56 - 2015-04-28 16:09 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Sony 2016-03-07 16:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-03-07 15:50 - 2014-05-18 09:29 - 00000000 ____D C:\Users\Maximilian 2016-03-07 15:50 - 2014-04-23 07:57 - 00000000 ____D C:\Users\Hannah 2016-03-07 15:49 - 2014-01-02 13:11 - 00000000 ____D C:\Users\Michael 2016-03-07 15:49 - 2011-07-22 15:23 - 00000000 ____D C:\Users\PFrey 2016-03-04 16:44 - 2015-06-14 14:31 - 00423424 ___SH C:\Users\Lukas\Downloads\Thumbs.db 2016-03-03 16:05 - 2015-12-30 14:03 - 02904064 _____ (GamingOnSteroids) C:\Users\Lukas\Desktop\Loader (2).exe 2016-03-02 17:25 - 2014-01-12 14:50 - 00000000 ____D C:\Users\Lukas\AppData\Local\VirtualStore 2016-02-29 16:44 - 2014-01-12 14:54 - 00000000 ____D C:\Users\Lukas\Documents\Outlook-Dateien 2016-02-28 13:15 - 2011-02-11 18:45 - 01625094 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-02-28 09:37 - 2014-06-29 08:37 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-02-28 09:02 - 2014-01-12 14:50 - 00182344 _____ C:\Users\Lukas\AppData\Local\GDIPFONTCACHEV1.DAT 2016-02-26 22:33 - 2015-04-05 02:00 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2016-02-26 22:33 - 2015-04-05 02:00 - 00000000 ___SD C:\Windows\system32\GWX 2016-02-24 19:26 - 2014-11-30 13:54 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\OBS 2016-02-23 15:52 - 2011-07-15 23:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-02-21 08:43 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-02-20 15:00 - 2015-08-17 19:40 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-02-17 19:54 - 2015-12-30 14:03 - 02628096 _____ (GamingOnSteroids) C:\Users\Lukas\Desktop\Loader (2).oldupd 2016-02-15 21:49 - 2014-07-09 16:55 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Audacity 2016-02-12 19:00 - 2014-05-08 22:45 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-02-12 19:00 - 2010-11-21 08:01 - 00000000 ____D C:\Program Files\Windows Journal ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-11-23 13:08 - 2015-11-23 13:08 - 0187696 _____ () C:\Users\Lukas\AppData\Roaming\1.zip 2015-11-23 13:08 - 2015-11-23 13:08 - 0659742 _____ () C:\Users\Lukas\AppData\Roaming\2.txt 2015-12-01 07:31 - 2015-12-02 13:44 - 0000099 _____ () C:\Users\Lukas\AppData\Roaming\LauncherSettings_live.cfg 2015-12-02 13:06 - 2015-12-02 13:06 - 0000039 _____ () C:\Users\Lukas\AppData\Roaming\TheHunterSettings_steam_live.cfg 2016-02-27 12:35 - 2016-02-27 12:35 - 0010250 _____ () C:\Users\Lukas\AppData\Local\4BEEC7F234E54494BC31B63B5104251B.Dokument 2.fnf 2006-12-11 19:13 - 2006-12-11 19:13 - 0097336 _____ (Un4seen Developments) C:\Users\Lukas\AppData\Local\bass.dll 2006-12-11 19:13 - 2006-12-11 19:13 - 0013872 _____ (Un4seen Developments) C:\Users\Lukas\AppData\Local\basscd.dll 2007-08-13 17:46 - 2007-08-13 17:46 - 0102912 _____ (Albert L Faber) C:\Users\Lukas\AppData\Local\CDRip.dll 2014-05-25 16:00 - 2014-05-25 16:00 - 0000000 _____ () C:\Users\Lukas\AppData\Local\Input.xml 2007-08-13 17:46 - 2007-08-13 17:46 - 0155136 _____ () C:\Users\Lukas\AppData\Local\lame_enc.dll 2007-01-18 21:09 - 2007-01-18 21:09 - 0623616 _____ (Ivan Bischof ©2003 - 2005) C:\Users\Lukas\AppData\Local\No23 Recorder.exe 2005-08-23 22:34 - 2005-08-23 22:34 - 0029184 _____ () C:\Users\Lukas\AppData\Local\no23xwrapper.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0015872 _____ () C:\Users\Lukas\AppData\Local\ogg.dll 2015-11-13 18:40 - 2015-11-13 18:40 - 0001460 _____ () C:\Users\Lukas\AppData\Local\RecConfig.xml 2015-12-07 21:00 - 2015-12-07 21:00 - 0010072 _____ () C:\Users\Lukas\AppData\Local\recently-used.xbel 2015-10-04 12:31 - 2015-10-04 12:41 - 0007600 _____ () C:\Users\Lukas\AppData\Local\Resmon.ResmonCfg 2014-05-25 15:59 - 2014-05-25 15:59 - 0000000 _____ () C:\Users\Lukas\AppData\Local\Settings.xml 2006-10-26 01:06 - 2006-10-26 01:06 - 0143872 _____ () C:\Users\Lukas\AppData\Local\vorbis.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0064000 _____ () C:\Users\Lukas\AppData\Local\vorbisenc.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0019456 _____ () C:\Users\Lukas\AppData\Local\vorbisfile.dll Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\Users\Lukas\SimpleExtern.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-03-10 19:15 ==================== Ende von FRST.txt ============================ |
|
12.03.2016, 20:23
| #35 |
| | trojaner keine windows uodates mehrCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 durchgeführt von Lukas (Administrator) auf PC-LUKAS (12-03-2016 20:21:01) Gestartet von C:\Users\Lukas\Desktop Geladene Profile: Lukas (Verfügbare Profile: FAE & PFrey & Michael & Lukas & Hannah & Maximilian) Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\System32\PnkBstrA.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Windows\System32\rundll32.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor Corp.) C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Microsoft Corporation) C:\Windows\System32\taskmgr.exe (Hammer & Chisel, Inc.) C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\Discord.exe (Hammer & Chisel, Inc.) C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\Discord.exe (Hammer & Chisel, Inc.) C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\Discord.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Bohemia Interactive) K:\Lukas\Steam\steamapps\common\Arma 3\arma3launcher.exe (Ipswitch) C:\Program Files (x86)\Ipswitch\WS_FTP 12\WsftpCOMHelper.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe [2907240 2010-10-04] (Realtek Semiconductor Corp.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2728736 2014-07-02] () HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [815512 2012-04-04] (Adobe Systems Inc.) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [837640 2015-12-08] (DivX, LLC) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50605696 2016-02-02] (Skype Technologies S.A.) HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\MountPoints2: {576796b7-e342-11e3-94f0-782bcb99e3ce} - I:\LG_PC_Programs.exe HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHVE.EXE [241280 2014-01-20] (SEIKO EPSON CORPORATION) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2011-07-25] (Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2016-02-18] ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Hosts: Hosts Datei wurde nicht im Standardordner gefunden Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B5E208C6-BB9C-4F8E-8724-0786695ADEB6}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=de-de SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox SearchScopes: HKLM-x32 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {151F5FAD-352E-4BED-AF04-DABC47B2632C} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {48356623-4CDD-4A32-9251-CD12380A0FDE} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {802B7583-F36D-4AFC-A7C1-24395748F1BC} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {9C2FAA18-42D8-4412-BC5F-CCCBDAE73C42} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-02-05] (Microsoft Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-02-04] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-04] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default FF DefaultSearchEngine: Bing FF SelectedSearchEngine: Bing FF SearchEngineOrder.3: Bing FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q= FF Homepage: hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=de-de hxxps://www.malwarebytes.org/restorebrowser//?u=4ef09132d37415b6ea9b7cb45a0bfa6f&c=up1&src=hp&inst=1440087070 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-10] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Keine Datei] FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-07-15] (Sun Microsystems, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-10] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-12-02] (DivX, LLC) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Keine Datei] FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-14] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-04-14] (Oracle Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-08-22] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-08-22] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-08-22] () FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-04] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [Keine Datei] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2012-04-04] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3487997803-1532060654-1365074507-1003: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [Keine Datei] FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default\searchplugins\bing-.xml [2015-12-31] FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Bing Search - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default\Extensions\bingsearch.full@microsoft.com.xpi [2015-12-31] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-04-17] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com Chrome: ======= CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2016-03-07] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-03-07] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-07] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1300512 2016-01-16] () S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-12-21] (BitRaider, LLC) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2804976 2016-02-04] (Microsoft Corporation) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2015-10-03] (EasyAntiCheat Ltd) S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-05-06] (Freemake) [Datei ist nicht signiert] R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2498848 2013-12-19] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-25] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-12] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-09-12] () R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AX88178; C:\Windows\System32\DRIVERS\ax88178.sys [59392 2010-11-24] (ASIX Electronics Corp.) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-12-06] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2015-12-06] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [1980648 2010-10-04] (Realtek Semiconductor Corp.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [225976 2015-07-09] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [831672 2015-10-06] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39280 2015-07-09] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [39280 2015-07-09] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-07-09] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [190648 2015-10-06] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-03-11] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) R1 rsutils; C:\Windows\System32\DRIVERS\rsutils.sys [69336 2014-08-15] (Beijing Rising Information Technology Co., Ltd.) S3 Spyder5; C:\Windows\System32\DRIVERS\dccmtr.sys [15360 2014-12-19] (Datacolor) R0 sysmon; C:\Windows\System32\DRIVERS\sysmon.sys [119344 2014-09-10] (Beijing Rising Information Technology Co., Ltd.) S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2011-03-31] (C-Media Electronics Inc) R0 vidsflt61; C:\Windows\System32\DRIVERS\vsflt61.sys [142944 2012-03-28] (Acronis) U3 DfSdkS; kein ImagePath U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X] S3 SBFWIMCLMP; system32\DRIVERS\SBFWIM.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-12 11:15 - 2016-03-12 11:15 - 00852720 _____ C:\Users\Lukas\Downloads\SecurityCheck.exe 2016-03-12 11:14 - 2016-03-12 11:14 - 02870984 _____ (ESET) C:\Users\Lukas\Downloads\esetsmartinstaller_deu.exe 2016-03-11 17:21 - 2016-03-11 17:21 - 12924796 _____ C:\Users\Lukas\Downloads\a3beaf-B2A_Spirit.zip 2016-03-11 17:16 - 2016-03-11 17:16 - 10035437 _____ C:\Users\Lukas\Downloads\2d860a-XB70_Valkyrie.zip 2016-03-11 17:15 - 2016-03-11 17:15 - 04053135 _____ C:\Users\Lukas\Downloads\4c2f26-[Addon]Lockheed F-117 Nighthawk Black GTAV (1).rar 2016-03-11 15:47 - 2016-03-11 15:47 - 01199720 _____ (Uniblue Systems Limited ) C:\Users\Lukas\Downloads\pcmechanicpm.exe 2016-03-11 15:13 - 2016-03-11 15:13 - 04053135 _____ C:\Users\Lukas\Downloads\4c2f26-[Addon]Lockheed F-117 Nighthawk Black GTAV.rar 2016-03-11 15:04 - 2016-03-11 15:05 - 00459515 _____ C:\Users\Lukas\Downloads\eaf5ab-TruckingMissions.zip 2016-03-11 15:03 - 2016-03-11 15:04 - 00645613 _____ C:\Users\Lukas\Downloads\4ac205-MapEditor.zip 2016-03-11 14:50 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-03-11 14:50 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2016-03-11 14:50 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2016-03-11 14:50 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2016-03-11 14:50 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2016-03-11 14:16 - 2016-03-11 14:16 - 00001202 _____ C:\1.txt 2016-03-10 18:41 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2016-03-10 18:41 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2016-03-10 18:41 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2016-03-10 18:41 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2016-03-10 18:41 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2016-03-10 18:41 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2016-03-10 18:41 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2016-03-10 18:41 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2016-03-10 18:41 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2016-03-10 18:41 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2016-03-10 18:39 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2016-03-10 18:39 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2016-03-10 18:39 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2016-03-10 18:39 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2016-03-10 18:35 - 2015-12-16 19:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2016-03-10 18:35 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2016-03-10 18:35 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2016-03-10 18:35 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2016-03-10 18:35 - 2015-12-16 19:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll 2016-03-10 18:23 - 2016-03-11 14:26 - 00080615 _____ C:\Users\Lukas\Desktop\Addition.txt 2016-03-10 18:21 - 2016-03-12 20:21 - 00030941 _____ C:\Users\Lukas\Desktop\FRST.txt 2016-03-10 18:05 - 2016-03-12 11:16 - 00001800 _____ C:\Users\Lukas\Desktop\Fixlog.txt 2016-03-10 17:18 - 2016-03-10 17:18 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (3).exe 2016-03-10 17:13 - 2016-03-10 17:13 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking 2016-03-10 17:13 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe 2016-03-10 17:12 - 2016-03-10 17:23 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2016-03-10 16:58 - 2016-03-10 16:58 - 00286761 _____ C:\Users\Lukas\Downloads\getsysteminfo.de.exe 2016-03-10 16:57 - 2016-03-10 17:05 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Lukas\Downloads\spybot-2.4.exe 2016-03-10 16:55 - 2016-03-10 17:15 - 163116760 _____ (Kaspersky Lab) C:\Users\Lukas\Downloads\kis16.0.0.614de-de (1).exe 2016-03-10 16:33 - 2016-03-10 16:33 - 03901072 _____ (solvusoft Corporation ) C:\Users\Lukas\Downloads\WinThruster_2016_Setup.exe 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{FD404819-2B7F-4103-B8F7-1CD6EAE18EBF} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{B6250C77-5AB3-4C11-96BE-61314EE2E72F} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{AD3F3399-3AE7-4745-BCDA-A3A0700D2BE0} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{8F8A23AD-9F3C-45EC-AE7A-46917BEDC8F2} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{600C58C3-4CD4-4EFD-B9A1-E128C0871C49} 2016-03-10 16:03 - 2016-03-10 16:05 - 47718584 _____ (Hammer & Chisel, Inc.) C:\Users\Lukas\Downloads\DiscordSetup (1).exe 2016-03-10 15:35 - 2016-03-10 15:37 - 00000000 ___HD C:\$WINDOWS.~BT 2016-03-10 15:32 - 2016-03-10 15:36 - 70087104 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP451-KB2858728-x86-x64-AllOS-ENU.exe 2016-03-10 15:23 - 2016-03-10 15:25 - 24277024 _____ (Microsoft) C:\Users\Lukas\Downloads\dotnetfx.exe 2016-03-10 15:23 - 2016-03-10 15:24 - 10703680 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP1.1sp1-KB867460-X86.exe 2016-03-10 15:23 - 2016-03-10 15:24 - 02959376 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotnetfx35setup (1).exe 2016-03-10 15:22 - 2016-03-10 15:22 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (2).exe 2016-03-10 15:22 - 2016-03-10 15:22 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (3).zip 2016-03-10 15:15 - 2016-03-10 15:15 - 01733224 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP46-KB3127233-x64.exe 2016-03-10 14:52 - 2016-03-10 14:52 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (1).exe 2016-03-10 14:48 - 2016-03-10 14:48 - 00000000 ____D C:\23beeb6426fcffe7086cd457 2016-03-10 14:45 - 2016-03-10 14:51 - 00063828 _____ C:\Users\Lukas\Downloads\SystemLook.txt 2016-03-10 14:44 - 2016-03-10 14:44 - 00165376 _____ C:\Users\Lukas\Downloads\SystemLook_x64.exe 2016-03-10 14:43 - 2016-03-10 14:51 - 163116760 _____ (Kaspersky Lab) C:\Users\Lukas\Downloads\kis16.0.0.614de-de.exe 2016-03-09 21:38 - 2016-03-09 21:38 - 00003028 _____ C:\Windows\System32\Tasks\{2AE0AE68-F989-4438-A80F-CCCD7486EC32} 2016-03-09 21:38 - 2016-03-09 21:38 - 00003028 _____ C:\Windows\System32\Tasks\{028F3DEC-334E-4191-8600-B67A45E3280F} 2016-03-09 21:19 - 2016-03-09 21:19 - 00889416 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Full_setup (1).exe 2016-03-09 21:18 - 2016-03-09 21:18 - 01424328 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP461-KB3102438-Web (1).exe 2016-03-09 21:16 - 2016-03-09 21:16 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool.exe 2016-03-09 21:12 - 2016-03-09 21:12 - 01424328 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP461-KB3102438-Web.exe 2016-03-09 20:34 - 2016-03-09 20:57 - 18370440 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP46-KB3045557-x86-x64-AllOS-ENU.exe 2016-03-09 20:32 - 2016-03-09 20:32 - 00266910 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (2).zip 2016-03-09 20:01 - 2016-03-09 20:01 - 00889416 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Full_setup.exe 2016-03-09 19:58 - 2016-03-09 19:58 - 00063893 _____ C:\Users\Lukas\Downloads\NETFx4RTM.htm 2016-03-09 19:57 - 2016-03-09 19:57 - 01045576 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx45_Full_setup.exe 2016-03-09 19:29 - 2016-03-09 19:29 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool.zip 2016-03-09 19:29 - 2016-03-09 19:29 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (1).zip 2016-03-09 19:27 - 2016-03-09 19:27 - 00887896 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Client_setup.exe 2016-03-09 19:25 - 2016-03-09 19:25 - 00985600 _____ C:\Users\Lukas\Downloads\MicrosoftFixit50123.msi 2016-03-09 17:15 - 2016-03-11 14:23 - 00001866 _____ C:\Users\Lukas\Desktop\JRT.txt 2016-03-09 17:02 - 2016-03-09 17:02 - 00163419 _____ C:\Users\Lukas\Desktop\mbam.txt 2016-03-09 16:49 - 2016-02-12 19:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-09 16:49 - 2016-02-12 19:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-09 16:49 - 2016-02-12 19:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-09 16:49 - 2016-02-12 19:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2016-03-09 16:49 - 2016-02-12 19:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-03-09 16:49 - 2016-02-12 19:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-09 16:49 - 2016-02-12 19:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-09 16:49 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-09 16:49 - 2016-02-12 19:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2016-03-09 16:49 - 2016-02-12 19:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-03-09 16:49 - 2016-02-12 19:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-03-09 16:49 - 2016-02-12 19:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-03-09 16:49 - 2016-02-12 19:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2016-03-09 16:49 - 2016-02-09 07:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-03-09 16:49 - 2016-02-09 07:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-03-09 16:49 - 2016-02-08 22:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-09 16:49 - 2016-02-08 21:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-03-09 16:49 - 2016-02-08 21:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-03-09 16:49 - 2016-02-08 21:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-03-09 16:49 - 2016-02-08 21:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-03-09 16:49 - 2016-02-08 21:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-03-09 16:49 - 2016-02-08 21:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-03-09 16:49 - 2016-02-08 21:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-09 16:49 - 2016-02-08 21:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-03-09 16:49 - 2016-02-08 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-03-09 16:49 - 2016-02-08 21:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-03-09 16:49 - 2016-02-08 21:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-03-09 16:49 - 2016-02-08 21:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-03-09 16:49 - 2016-02-08 21:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-03-09 16:49 - 2016-02-08 21:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-03-09 16:49 - 2016-02-08 21:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-03-09 16:49 - 2016-02-08 21:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-03-09 16:49 - 2016-02-08 21:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-09 16:49 - 2016-02-08 21:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-03-09 16:49 - 2016-02-08 21:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-09 16:49 - 2016-02-08 21:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-03-09 16:49 - 2016-02-08 21:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-09 16:49 - 2016-02-08 21:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-03-09 16:49 - 2016-02-08 21:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-03-09 16:49 - 2016-02-08 21:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-03-09 16:49 - 2016-02-08 20:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-09 16:49 - 2016-02-08 20:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-09 16:49 - 2016-02-08 20:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-03-09 16:49 - 2016-02-08 19:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-03-09 16:49 - 2016-02-08 19:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-03-09 16:49 - 2016-02-08 19:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-09 16:49 - 2016-02-08 19:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-03-09 16:49 - 2016-02-08 19:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-03-09 16:49 - 2016-02-08 19:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-03-09 16:49 - 2016-02-08 19:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-03-09 16:49 - 2016-02-08 19:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-09 16:49 - 2016-02-08 19:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-03-09 16:49 - 2016-02-08 19:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-03-09 16:49 - 2016-02-08 19:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-03-09 16:49 - 2016-02-08 19:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-09 16:49 - 2016-02-08 19:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-03-09 16:49 - 2016-02-08 19:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-03-09 16:49 - 2016-02-08 19:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-03-09 16:49 - 2016-02-08 18:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-03-09 16:49 - 2016-02-08 18:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-03-09 16:49 - 2016-02-08 18:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-03-09 16:49 - 2016-02-08 18:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-09 16:49 - 2016-02-08 18:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-03-09 16:49 - 2016-02-08 18:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-03-09 16:49 - 2016-02-08 18:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-09 16:49 - 2016-02-08 18:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-03-09 16:49 - 2016-02-08 18:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-09 16:49 - 2016-02-08 18:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-09 16:49 - 2016-02-08 18:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-09 16:49 - 2016-02-08 18:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-03-09 16:49 - 2016-02-08 18:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-09 16:49 - 2016-02-08 18:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-09 16:49 - 2016-02-08 17:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-09 16:49 - 2016-02-04 18:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-03-09 16:49 - 2016-02-03 19:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2016-03-09 16:49 - 2016-02-03 19:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-09 16:49 - 2016-02-03 19:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2016-03-09 16:49 - 2016-02-03 19:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-09 16:49 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-09 16:49 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-03-09 16:49 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2016-03-09 16:46 - 2016-02-11 19:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-03-09 16:46 - 2016-02-11 19:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-03-09 16:46 - 2016-02-11 19:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-03-09 16:46 - 2016-02-11 19:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-03-09 16:45 - 2016-02-11 19:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-03-09 16:45 - 2016-02-11 19:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-03-09 16:45 - 2016-02-11 19:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-03-09 16:45 - 2016-02-11 19:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-03-09 16:45 - 2016-02-11 19:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-03-09 16:45 - 2016-02-11 19:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-03-09 16:45 - 2016-02-11 19:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-03-09 16:45 - 2016-02-11 19:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-03-09 16:45 - 2016-02-11 19:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-03-09 16:45 - 2016-02-11 18:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-03-09 16:45 - 2016-02-11 18:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-03-09 16:45 - 2016-02-11 18:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-03-09 16:45 - 2016-02-11 18:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-03-09 16:45 - 2016-02-11 18:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-03-09 16:45 - 2016-02-11 18:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-03-09 16:45 - 2016-02-11 18:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-03-09 16:45 - 2016-02-11 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-03-09 16:45 - 2016-02-11 18:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-03-09 16:45 - 2016-02-09 10:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-09 16:45 - 2016-02-09 10:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2016-03-09 16:45 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2016-03-09 16:45 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2016-03-09 16:45 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-09 16:45 - 2016-02-09 10:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2016-03-09 16:45 - 2016-02-09 10:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2016-03-09 16:45 - 2016-02-09 10:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-09 16:45 - 2016-02-09 10:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2016-03-09 16:45 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2016-03-09 16:45 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2016-03-09 16:45 - 2016-02-05 19:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-03-09 16:45 - 2016-02-05 19:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-03-09 16:45 - 2016-02-05 19:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-09 16:45 - 2016-02-05 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-03-09 16:45 - 2016-02-05 19:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-03-09 16:45 - 2016-02-05 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-03-09 16:45 - 2016-02-05 19:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-03-09 16:45 - 2016-02-05 18:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-09 16:45 - 2016-02-05 18:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-09 16:45 - 2016-02-05 18:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-09 16:45 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-09 16:45 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-09 16:44 - 2016-02-19 20:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-03-09 16:44 - 2016-02-19 19:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-09 16:44 - 2016-02-19 15:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-03-09 16:44 - 2016-02-11 15:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-03-09 16:09 - 2016-03-09 16:09 - 01609216 _____ (Malwarebytes) C:\Users\Lukas\Downloads\JRT.exe 2016-03-09 15:58 - 2016-03-09 15:59 - 22908888 _____ (Malwarebytes ) C:\Users\Lukas\Downloads\mbam-setup-2.2.0.1024.exe 2016-03-09 15:57 - 2016-03-11 13:26 - 00000000 ____D C:\Program Files (x86)\AdwCleaner 2016-03-09 15:57 - 2016-03-09 15:57 - 01524224 _____ C:\Users\Lukas\Downloads\AdwCleaner_5.101.exe 2016-03-08 15:26 - 2016-03-08 15:31 - 00230526 _____ C:\TDSSKiller.3.1.0.9_08.03.2016_15.26.46_log.txt 2016-03-08 15:09 - 2016-03-09 17:19 - 00082958 _____ C:\Users\Lukas\Downloads\Addition.txt 2016-03-08 15:04 - 2016-03-09 17:19 - 00071999 _____ C:\Users\Lukas\Downloads\FRST.txt 2016-03-08 15:04 - 2016-03-08 15:09 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Lukas\Downloads\tdsskiller.exe 2016-03-08 15:02 - 2016-03-08 15:04 - 02374144 _____ (Farbar) C:\Users\Lukas\Desktop\FRST64.exe 2016-03-07 19:21 - 2016-03-07 19:21 - 404231634 _____ C:\Users\Lukas\Downloads\Sony Vegas Pro 13 Setup + Crack (64-Bit).rar 2016-03-07 18:35 - 2016-03-07 18:36 - 00000038 _____ C:\Users\Lukas\Desktop\discord.txt 2016-03-07 18:33 - 2016-03-07 18:33 - 00000330 _____ C:\Users\Lukas\Desktop\Bunnyhop.txt 2016-03-07 18:23 - 2016-03-07 18:24 - 00006918 _____ C:\Users\Lukas\Downloads\Bunnyhop CSGO.zip 2016-03-07 17:59 - 2016-03-07 18:15 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\discord 2016-03-07 17:59 - 2016-03-07 17:59 - 00002168 _____ C:\Users\Lukas\Desktop\Discord.lnk 2016-03-07 17:59 - 2016-03-07 17:59 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc 2016-03-07 17:58 - 2016-03-10 16:06 - 00000000 ____D C:\Users\Lukas\AppData\Local\SquirrelTemp 2016-03-07 17:58 - 2016-03-07 17:59 - 00000000 ____D C:\Users\Lukas\AppData\Local\Discord 2016-03-07 17:47 - 2016-03-07 17:50 - 47718584 _____ (Hammer & Chisel, Inc.) C:\Users\Lukas\Downloads\DiscordSetup.exe 2016-03-07 15:36 - 2016-03-07 15:36 - 00001094 _____ C:\AdwCleaner[C3].txt 2016-03-07 15:31 - 2016-03-07 15:33 - 00000940 _____ C:\AdwCleaner[S3].txt 2016-03-07 14:51 - 2016-03-07 14:55 - 00000000 ____D C:\Users\Lukas\Desktop\RevoUninstallerPortable 2016-03-07 14:50 - 2016-03-07 14:45 - 02785665 ____N (PortableApps.com) C:\Users\Lukas\Desktop\RevoUninstallerPortable_1.95_Rev_2.paf.exe 2016-03-07 14:44 - 2016-03-07 14:44 - 00004771 _____ C:\AdwCleaner[C2].txt 2016-03-07 14:41 - 2016-03-07 14:42 - 00004263 _____ C:\AdwCleaner[S2].txt 2016-03-07 14:27 - 2016-03-12 20:21 - 00000000 ____D C:\FRST 2016-03-07 13:17 - 2016-03-07 13:17 - 00000000 ____D C:\Users\Lukas\AppData\Local\Unigraphics Solutions 2016-03-07 12:51 - 2016-03-07 12:51 - 00000000 __SHD C:\found.000 2016-03-05 14:35 - 2016-03-05 14:30 - 00985600 ____N C:\Users\Lukas\Desktop\MicrosoftFixit50123.msi 2016-03-02 17:25 - 2016-03-02 17:33 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\install 2016-03-02 17:24 - 2016-03-02 18:07 - 00000000 __SHD C:\Users\Lukas\Gu73246B57189 2016-03-02 17:24 - 2016-03-02 18:06 - 00000000 ____D C:\Users\Lukas\Ds78224R88177 2016-02-27 12:35 - 2016-02-27 12:35 - 00010250 _____ C:\Users\Lukas\AppData\Local\4BEEC7F234E54494BC31B63B5104251B.Dokument 2.fnf 2016-02-27 12:01 - 2016-02-27 12:01 - 00045901 _____ C:\Users\Lukas\Downloads\let-it-go-trumpet-clarinet-and-baritone-horn.pdf 2016-02-27 11:28 - 2016-02-27 11:28 - 00000000 ____D C:\Users\Lukas\Documents\Forte 2016-02-27 11:28 - 2016-02-27 11:28 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\FORTE 2016-02-27 11:26 - 2016-02-27 11:28 - 54695448 _____ (Lugert Verlag ) C:\Users\Lukas\Downloads\Setup_FORTE6PremiumT_de.exe 2016-02-27 11:25 - 2016-02-27 11:39 - 44101459 _____ (MakeMusic) C:\Users\Lukas\Downloads\nw_22918_finalenotepadexe.exe 2016-02-27 11:18 - 2016-02-27 11:24 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\MuseScore 2016-02-27 11:18 - 2016-02-27 11:18 - 00000000 ____D C:\Users\Lukas\Documents\MuseScore2 2016-02-27 11:18 - 2016-02-27 11:18 - 00000000 ____D C:\Users\Lukas\AppData\Local\MuseScore 2016-02-27 11:14 - 2016-02-27 11:17 - 55488512 _____ C:\Users\Lukas\Downloads\MuseScore-2.0.2.msi 2016-02-27 11:05 - 2016-03-07 15:19 - 00000000 ____D C:\Users\Lukas\Documents\PriMusFree 2016-02-27 11:05 - 2016-02-27 11:05 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Columbus Soft 2016-02-27 11:04 - 2016-02-27 11:04 - 03341128 _____ (Columbus Soft ) C:\Users\Lukas\Downloads\SetupPriMusFree.exe 2016-02-23 21:38 - 2016-02-23 20:59 - 449940993 ____N C:\Users\Lukas\Desktop\mi3.mp4 2016-02-21 12:54 - 2016-02-21 12:54 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2529834191_spectate.bat 2016-02-20 16:30 - 2016-02-20 16:30 - 02259195 _____ C:\Users\Lukas\Downloads\SkinPreview_2.4.0.0_US_BETA_updated-29-1-2016 (1).zip 2016-02-14 20:39 - 2016-02-14 20:39 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2521145290_spectate.bat 2016-02-14 17:54 - 2016-02-14 17:54 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520925620_spectate (1).bat 2016-02-14 17:53 - 2016-02-14 17:53 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520925620_spectate.bat 2016-02-14 14:02 - 2016-02-14 14:02 - 00000000 ____D C:\Users\Lukas\Documents\BnS 2016-02-14 14:02 - 2016-02-14 14:02 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Awesomium 2016-02-14 11:31 - 2016-02-14 11:31 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520117594_spectate.bat ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-12 20:21 - 2016-01-01 20:02 - 00000000 ____D C:\Users\Lukas\AppData\Local\Arma 3 Launcher 2016-03-12 20:19 - 2014-01-12 16:26 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Skype 2016-03-12 19:59 - 2015-08-17 17:26 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-03-12 19:26 - 2012-04-11 06:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-12 18:12 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-03-12 18:12 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-03-12 17:59 - 2015-08-17 17:26 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-12 16:42 - 2016-01-01 20:03 - 00000000 ____D C:\Users\Lukas\Documents\Arma 3 2016-03-12 16:42 - 2015-04-16 15:57 - 00000000 ____D C:\Program Files (x86)\Steam 2016-03-12 15:33 - 2014-09-28 11:06 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TS3Client 2016-03-12 11:17 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-11 20:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2016-03-11 17:09 - 2015-04-15 19:14 - 00000080 _____ C:\Users\Lukas\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 2016-03-11 16:00 - 2015-07-03 07:12 - 00000426 _____ C:\Windows\Tasks\One-Click Optimizer WO11.job 2016-03-11 13:35 - 2015-04-17 19:53 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-03-11 13:20 - 2015-10-19 17:07 - 00002184 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-03-11 13:20 - 2015-10-19 17:07 - 00000000 ___RD C:\Users\Lukas\OneDrive 2016-03-11 13:00 - 2009-07-14 05:45 - 05225896 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-10 21:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-03-10 21:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-03-10 20:26 - 2012-04-11 06:26 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-03-10 20:26 - 2012-04-11 06:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-03-10 20:26 - 2011-09-05 06:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-03-10 17:23 - 2015-07-27 14:41 - 00000000 ____D C:\Program Files\Common Files\AV 2016-03-10 15:38 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther 2016-03-10 15:11 - 2010-11-21 07:50 - 00783212 _____ C:\Windows\system32\perfh007.dat 2016-03-10 15:11 - 2010-11-21 07:50 - 00177422 _____ C:\Windows\system32\perfc007.dat 2016-03-10 15:11 - 2009-07-14 06:13 - 00006526 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-09 19:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2016-03-09 18:30 - 2014-01-12 14:50 - 00000000 ____D C:\Users\Lukas 2016-03-09 18:28 - 2015-04-17 19:47 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-03-09 18:28 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media 2016-03-09 18:15 - 2014-01-10 22:15 - 00000000 ____D C:\Windows\system32\MRT 2016-03-09 18:15 - 2011-09-18 07:24 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-03-09 18:14 - 2014-12-12 15:15 - 00000000 ____D C:\Windows\system32\appraiser 2016-03-09 17:01 - 2011-07-22 14:49 - 00000000 ____D C:\Users\FAE 2016-03-07 19:56 - 2015-04-28 16:09 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Sony 2016-03-07 16:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-03-07 15:50 - 2014-05-18 09:29 - 00000000 ____D C:\Users\Maximilian 2016-03-07 15:50 - 2014-04-23 07:57 - 00000000 ____D C:\Users\Hannah 2016-03-07 15:49 - 2014-01-02 13:11 - 00000000 ____D C:\Users\Michael 2016-03-07 15:49 - 2011-07-22 15:23 - 00000000 ____D C:\Users\PFrey 2016-03-04 16:44 - 2015-06-14 14:31 - 00423424 ___SH C:\Users\Lukas\Downloads\Thumbs.db 2016-03-03 16:05 - 2015-12-30 14:03 - 02904064 _____ (GamingOnSteroids) C:\Users\Lukas\Desktop\Loader (2).exe 2016-03-02 17:25 - 2014-01-12 14:50 - 00000000 ____D C:\Users\Lukas\AppData\Local\VirtualStore 2016-02-29 16:44 - 2014-01-12 14:54 - 00000000 ____D C:\Users\Lukas\Documents\Outlook-Dateien 2016-02-28 13:15 - 2011-02-11 18:45 - 01625094 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-02-28 09:37 - 2014-06-29 08:37 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-02-28 09:02 - 2014-01-12 14:50 - 00182344 _____ C:\Users\Lukas\AppData\Local\GDIPFONTCACHEV1.DAT 2016-02-26 22:33 - 2015-04-05 02:00 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2016-02-26 22:33 - 2015-04-05 02:00 - 00000000 ___SD C:\Windows\system32\GWX 2016-02-24 19:26 - 2014-11-30 13:54 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\OBS 2016-02-23 15:52 - 2011-07-15 23:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-02-21 08:43 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-02-20 15:00 - 2015-08-17 19:40 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-02-17 19:54 - 2015-12-30 14:03 - 02628096 _____ (GamingOnSteroids) C:\Users\Lukas\Desktop\Loader (2).oldupd 2016-02-15 21:49 - 2014-07-09 16:55 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Audacity 2016-02-12 19:00 - 2014-05-08 22:45 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-02-12 19:00 - 2010-11-21 08:01 - 00000000 ____D C:\Program Files\Windows Journal ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-11-23 13:08 - 2015-11-23 13:08 - 0187696 _____ () C:\Users\Lukas\AppData\Roaming\1.zip 2015-11-23 13:08 - 2015-11-23 13:08 - 0659742 _____ () C:\Users\Lukas\AppData\Roaming\2.txt 2015-12-01 07:31 - 2015-12-02 13:44 - 0000099 _____ () C:\Users\Lukas\AppData\Roaming\LauncherSettings_live.cfg 2015-12-02 13:06 - 2015-12-02 13:06 - 0000039 _____ () C:\Users\Lukas\AppData\Roaming\TheHunterSettings_steam_live.cfg 2016-02-27 12:35 - 2016-02-27 12:35 - 0010250 _____ () C:\Users\Lukas\AppData\Local\4BEEC7F234E54494BC31B63B5104251B.Dokument 2.fnf 2006-12-11 19:13 - 2006-12-11 19:13 - 0097336 _____ (Un4seen Developments) C:\Users\Lukas\AppData\Local\bass.dll 2006-12-11 19:13 - 2006-12-11 19:13 - 0013872 _____ (Un4seen Developments) C:\Users\Lukas\AppData\Local\basscd.dll 2007-08-13 17:46 - 2007-08-13 17:46 - 0102912 _____ (Albert L Faber) C:\Users\Lukas\AppData\Local\CDRip.dll 2014-05-25 16:00 - 2014-05-25 16:00 - 0000000 _____ () C:\Users\Lukas\AppData\Local\Input.xml 2007-08-13 17:46 - 2007-08-13 17:46 - 0155136 _____ () C:\Users\Lukas\AppData\Local\lame_enc.dll 2007-01-18 21:09 - 2007-01-18 21:09 - 0623616 _____ (Ivan Bischof ©2003 - 2005) C:\Users\Lukas\AppData\Local\No23 Recorder.exe 2005-08-23 22:34 - 2005-08-23 22:34 - 0029184 _____ () C:\Users\Lukas\AppData\Local\no23xwrapper.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0015872 _____ () C:\Users\Lukas\AppData\Local\ogg.dll 2015-11-13 18:40 - 2015-11-13 18:40 - 0001460 _____ () C:\Users\Lukas\AppData\Local\RecConfig.xml 2015-12-07 21:00 - 2015-12-07 21:00 - 0010072 _____ () C:\Users\Lukas\AppData\Local\recently-used.xbel 2015-10-04 12:31 - 2015-10-04 12:41 - 0007600 _____ () C:\Users\Lukas\AppData\Local\Resmon.ResmonCfg 2014-05-25 15:59 - 2014-05-25 15:59 - 0000000 _____ () C:\Users\Lukas\AppData\Local\Settings.xml 2006-10-26 01:06 - 2006-10-26 01:06 - 0143872 _____ () C:\Users\Lukas\AppData\Local\vorbis.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0064000 _____ () C:\Users\Lukas\AppData\Local\vorbisenc.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0019456 _____ () C:\Users\Lukas\AppData\Local\vorbisfile.dll Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\Users\Lukas\SimpleExtern.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-03-10 19:15 ==================== Ende von FRST.txt ============================ |
|
12.03.2016, 20:24
| #36 |
| | trojaner keine windows uodates mehrCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Lukas (2016-03-12 20:22:02)
Gestartet von C:\Users\Lukas\Desktop
Windows 7 Professional Service Pack 1 (X64) (2011-07-22 13:49:29)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3487997803-1532060654-1365074507-500 - Administrator - Disabled)
ASPNET (S-1-5-21-3487997803-1532060654-1365074507-1010 - Limited - Enabled)
FAE (S-1-5-21-3487997803-1532060654-1365074507-1000 - Administrator - Disabled) => C:\Users\FAE
Gast (S-1-5-21-3487997803-1532060654-1365074507-501 - Limited - Disabled)
Hannah (S-1-5-21-3487997803-1532060654-1365074507-1005 - Limited - Enabled) => C:\Users\Hannah
HomeGroupUser$ (S-1-5-21-3487997803-1532060654-1365074507-1008 - Limited - Enabled)
Lukas (S-1-5-21-3487997803-1532060654-1365074507-1003 - Administrator - Enabled) => C:\Users\Lukas
Maximilian (S-1-5-21-3487997803-1532060654-1365074507-1006 - Limited - Enabled) => C:\Users\Maximilian
Michael (S-1-5-21-3487997803-1532060654-1365074507-1002 - Administrator - Enabled) => C:\Users\Michael
PFrey (S-1-5-21-3487997803-1532060654-1365074507-1001 - Administrator - Disabled) => C:\Users\PFrey
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
3Dconnexion 3DxSoftware (x64 Edition) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 3.13.1 - 3Dconnexion)
3Dconnexion 3DxWare (x64) (Version: 6.13.0001 - 3Dconnexion) Hidden
3Dconnexion Add-In for AutoCAD 2007 - 2010 (Version: 4.5.1 - 3Dconnexion) Hidden
3Dconnexion Add-In for Inventor 11 - 2012 (Version: 1.8.0 - 3Dconnexion) Hidden
3Dconnexion Collage (x32 Version: 1.3.0 - 3Dconnexion) Hidden
3Dconnexion Plug-in for Acrobat 3D (x32 Version: 1.1.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for NX v3.0 - v8.0 (Version: 2.9.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Photoshop CS3 - CS5 (Version: 2.2.1 - 3Dconnexion) Hidden
3Dconnexion Trainer (x32 Version: 3.2.0 - 3Dconnexion) Hidden
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
A3Launcher version 0.0.1.9 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.1.9 - Maca134)
Adobe Acrobat X Standard - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-BA7E-000000000005}) (Version: 10.1.3 - Adobe Systems)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games)
Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)
aerosoft's - OMSI 2 - Drei Generationen (HKLM-x32\...\{C88376AA-BF64-40F4-9AD6-F8A18DA394F2}) (Version: 1.20 - aerosoft)
aerosoft's - OMSI 2 - Hamburg (HKLM-x32\...\{5BF6B590-F7F5-46B5-B5F4-B0CA93423AD6}) (Version: 2.00 - aerosoft)
aerosoft's - OMSI 2 - Stadtbus O305 (HKLM-x32\...\{AE36259F-2F4F-44FA-87B7-3D1792ADDCA2}) (Version: 1.10 - aerosoft)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
Akamai NetSession Interface (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Akamai) (Version: - Akamai Technologies, Inc)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version: - Reloaded Productions)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Ashampoo WinOptimizer 2015 v.11.00.50 (HKLM-x32\...\{4209F371-3276-A8F7-B851-845A83732AB4}_is1) (Version: 11.00.50 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoCAD Mechanical 2010 (HKLM\...\AutoCAD Mechanical 2010) (Version: 14.0.48.300 - Autodesk)
AutoCAD Mechanical 2010 (Version: 14.0.48.300 - Autodesk) Hidden
AutoCAD Mechanical 2010 Language Pack - Deutsch (Version: 14.0.48.300 - Autodesk) Hidden
AutoCAD Mechanical 2011 (HKLM\...\AutoCAD Mechanical 2011) (Version: 15.0.46.0 - Autodesk)
AutoCAD Mechanical 2011 (Version: 15.0.46.0 - Autodesk) Hidden
AutoCAD Mechanical 2011 Language Pack - Deutsch (Version: 15.0.46.0 - Autodesk) Hidden
Autodesk Design Review 2012 (HKLM-x32\...\Autodesk Design Review 2012) (Version: 12.0.0.93 - Autodesk, Inc.)
Autodesk Design Review 2012 (x32 Version: 12.0.0.93 - Autodesk, Inc.) Hidden
Autodesk Design Review Browser Add-on v1.2 (HKLM-x32\...\{CD49E43B-88B1-48AD-A3AF-43FAAAB41CB8}) (Version: 1.2.0 - Autodesk)
Autodesk Inventor 2010 (Version: 14.0.0000.22302 - Autodesk, Inc.) Hidden
Autodesk Inventor 2010 Deutsch (German) (HKLM\...\Autodesk Inventor 2010) (Version: 14.0.0000.22302 - Autodesk, Inc.)
Autodesk Inventor 2010 Language Pack - Deutsch (Version: 14.0.0000.22302 - Autodesk, Inc.) Hidden
Autodesk Inventor 2011 (Version: 15.1.0000.28200 - Autodesk) Hidden
Autodesk Inventor 2011 Deutsch (HKLM\...\Autodesk Inventor 2011) (Version: 15.1.0000.28200 - Autodesk)
Autodesk Inventor 2011 Language Pack - Deutsch (Version: 15.0.0000.23900 - Autodesk) Hidden
Autodesk Inventor 2011 SP1 (HKLM\...\Autodesk Inventor 2011 SP1) (Version: 15.1.0000.28200 - Autodesk)
Autodesk Inventor 2012 (Version: 16.0.16000.0000 - Autodesk) Hidden
Autodesk Inventor 2012 Deutsch (HKLM\...\Autodesk Inventor 2012) (Version: 16.0.16000.0000 - Autodesk)
Autodesk Inventor 2012 Language Pack - Deutsch (Version: 16.0.16000.0000 - Autodesk) Hidden
Autodesk Inventor Content Center Libraries 2010 (Desktop Content) (HKLM\...\{EF90F06A-3B2D-48E3-8C7A-1F2210200476}) (Version: 14.0.0000.22302 - Autodesk, Inc.)
Autodesk Inventor Content Center Libraries 2011 (Desktop Content) (HKLM\...\{7244B345-B413-408B-9D04-F55BE1CC93FA}) (Version: 15.0.0000.23900 - Autodesk, Inc.)
Autodesk Material Library 2011 (HKLM-x32\...\{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}) (Version: 2.0.0.49 - Autodesk)
Autodesk Material Library 2011 Base Image library (HKLM-x32\...\{CD1E078C-A6B9-47DA-B035-6365C85C7832}) (Version: 2.0.0.49 - Autodesk)
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2012 (HKLM-x32\...\{24FF088D-CDCF-480C-8A4B-98F14A54CAA8}) (Version: 2.5.0.8 - Autodesk)
Autodesk SketchBook Designer 2012 - Deutsch (HKLM\...\Autodesk SketchBook Designer 2012 - Deutsch) (Version: 2.00.0000 - Autodesk)
Autodesk SketchBook Designer 2012 - Deutsch (Version: 2.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer 2012 - German (Version: 2.00.0000 - Autodesk) Hidden
Autodesk Vault 2011 (Client) (HKLM-x32\...\Autodesk Vault 2011 (Client)) (Version: 15.0.58.0 - Autodesk, Inc.)
Autodesk Vault 2011 (Client) (Version: 15.0.58.0 - Autodesk, Inc.) Hidden
Autodesk Vault 2011 (Client) German Language Pack (Version: 15.0.58.0 - Autodesk) Hidden
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.1.731 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden
Bussim (HKLM\...\{c5d26244-657d-4856-9d35-b9557a3fdc9d}.sdb) (Version: - )
Bus-Simulator 2012 (HKLM-x32\...\Bus-Simulator 2012_is1) (Version: - astragon)
CCleaner (HKLM\...\CCleaner) (Version: 3.10 - Piriform)
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Construction-Simulator 2015 (HKLM-x32\...\Steam App 289950) (Version: - weltenbauer. Software Entwicklung GmbH)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.3225 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dell Backup and Recovery Manager (HKLM\...\{50B4B603-A4C6-4739-AE96-6C76A0F8A388}) (Version: 1.3.1 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden
Discord (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Discord) (Version: 0.0.286 - Hammer & Chisel, Inc.)
Disk Space Fan 4 Free 4.5.1.129 (HKLM-x32\...\Disk Space Fan 4 Free_is1) (Version: - Disk Space Fan Team)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.8.0.13 - DivX, LLC)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Druckerdeinstallation für EPSON BX635FWD Series (HKLM\...\EPSON BX635FWD Series) (Version: - SEIKO EPSON Corporation)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - Trendy Entertainment)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version: - Trendy Entertainment)
Dungeons & Dragons Online® (HKLM-x32\...\Steam App 206480) (Version: - Turbine, Inc)
DWG TrueView 2010 (HKLM\...\DWG TrueView 2010) (Version: 18.0.55.0 - Autodesk)
DWG TrueView 2010 (Version: 18.0.55.0 - Autodesk) Hidden
DWG TrueView 2011 (HKLM\...\DWG TrueView 2011) (Version: 18.1.49.0 - Autodesk)
DWG TrueView 2011 (Version: 18.1.49.0 - Autodesk) Hidden
DWG TrueView 2012 (HKLM\...\DWG TrueView 2012) (Version: 18.2.51.0 - Autodesk)
DWG TrueView 2012 (Version: 18.2.51.0 - Autodesk) Hidden
EA SPORTS FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.1.0.50515 - Electronic Arts, Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
F1 2011 (HKLM-x32\...\Steam App 44360) (Version: - Codemasters Birmingham)
Fanaleds (HKLM\...\{ef0363c7-3a85-4e93-ab0e-2df5fa1f16bd}.sdb) (Version: - )
FanaLEDs (HKLM-x32\...\FanaLEDs) (Version: 2.2 - Gerben bol & Dirk Teurlings)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Female Voice Pack (HKLM-x32\...\{71F8C486-8A13-468E-8B73-06051075556A}) (Version: 3.3.1 - Screaming Bee)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Furry Voices for Second Life (HKLM-x32\...\{0DB44859-4112-4946-BE5E-A4275B3FFB5E}) (Version: 1.3.0 - Screaming Bee)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Hitman Absolution (HKLM-x32\...\{95030349-3623-4920-89BF-8BEC5EF311C5}_is1) (Version: 1.0433.1 - Square Enix)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 15.7.176.1 (HKLM\...\PROSetDX) (Version: 15.7.176.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Ipswitch WS_FTP 12 (HKLM-x32\...\{AD88355B-A4E0-4DA1-BAC3-EA4FEA930691}) (Version: 12.3 - Ipswitch)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java(TM) 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle)
Java(TM) 6 Update 26 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.260 - Oracle)
Juniper Networks Network Connect 7.4.0 (HKLM-x32\...\Juniper Network Connect 7.4.0) (Version: 7.4.0.27757 - Juniper Networks)
Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.396 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.2.396 - Kaspersky Lab) Hidden
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.0.1.0 - Lightworks)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech)
Loksim3D (HKLM\...\Loksim3D_is1) (Version: 2.8.3 - Loksim3D)
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.9.22 - www.leaguereplays.com)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Marvel Heroes 2015 (HKLM-x32\...\Steam App 226320) (Version: - Gazillion Entertainment)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version: - BioWare)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version: - BioWare)
Mass Effect™ 3 Demo (HKLM-x32\...\{A1683CA7-4850-4A21-982B-C6D853C79AF7}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts)
MEDUSA NX USB 5.1 Gaming Headset (HKLM\...\C-Media CM106 Like Sound Driver) (Version: - )
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.6568.2025 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\OneDriveSetup.exe) (Version: 17.3.6302.0225 - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008) (Version: - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 (KB971118) (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008 (KB971118)) (Version: - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MK LOL (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\MK LOL) (Version: - )
MorphVOX Pro (HKLM-x32\...\{DE289787-7ECA-4BED-9D8C-99FAC407E3D6}) (Version: 4.3.13 - Screaming Bee)
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
msxml4 (HKLM-x32\...\{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}) (Version: 1.0.0 - Default Company Name)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
No23 Recorder (HKLM-x32\...\{22B0E143-2B0B-435B-9F56-136A3D16065F}) (Version: 2.1.0.3 - No23)
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5929 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA nView 141.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.24 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA WMI 2.15.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.15.0 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6528.1011 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6528.1011 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6528.1011 - Microsoft Corporation) Hidden
OMSI 2 (HKLM-x32\...\Steam App 252530) (Version: - MR-Software GbR)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenLibraries (HKLM-x32\...\OpenLibraries) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
PARTcommunity 3D Web Viewer (HKLM-x32\...\{F6C0D92C-7EBC-4CEE-A0DD-BCE6ADB50E22}) (Version: 1.0.36.11 - CADENAS)
Personality Voices (HKLM-x32\...\{29C042AB-059B-414C-840E-94775E3F24A8}) (Version: 1.0.0 - Screaming Bee)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden
PingPlotter 4.01.2 (HKLM-x32\...\{7C20D443-1352-49AB-90D8-71CC34C50917}) (Version: 4.1.2.14 - Pingman Tools, LLC)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Rapture3D 2.4.9 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5883 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (Version: 1.3.2 - Roxio) Hidden
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version: - Volition)
Sakura Clicker (HKLM-x32\...\Steam App 383080) (Version: - Winged Cloud)
Schnell-Deinstallations-Tool für Autodesk Product Design Suite 2012 (HKLM\...\{D28EFBA5-1664-4B79-946A-000BE950E8E2}) (Version: 16.0.16000.0000 - Autodesk)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.111 - Skype Technologies S.A.)
Sniper Elite 3 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Spyder5Pro (HKLM-x32\...\Spyder5Pro) (Version: - )
Star Wars - Battlefront II (HKLM-x32\...\Steam App 6060) (Version: - Pandemic Studios)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: - Bioware/EA)
Star Wars: The Force Unleashed II (HKLM-x32\...\Steam App 32500) (Version: - Aspyr Studios)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)
theHunter (HKLM-x32\...\Steam App 253710) (Version: - Expansive Worlds)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Tomb Raider: Underworld (HKLM-x32\...\Steam App 8140) (Version: - Crystal Dynamics)
TOSHIBA Netzwerk-Scannertreiber (HKLM-x32\...\ToshibaNetTWAIN) (Version: - Wordcraft International Limited)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
UGS NX 6.0 (HKLM\...\{A37D76E1-38C4-4A58-A597-BD7C765FB8CF}) (Version: 6.0.0.24 - UGS)
VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VBA (2701.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 11.0 (64-bit) (HKLM\...\{7E3B2D0F-029B-11E2-BD68-F04DA23A5C58}) (Version: 11.0.701 - Sony)
Vegas Pro 13.0 (64-bit) (HKLM\...\{787F5FA1-CCC3-11E4-ABD4-F04DA23A5C58}) (Version: 13.0.444 - Sony)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wooxy version 1.2 (HKLM-x32\...\{C183CD14-47D8-4F98-AF06-4744CB834C8E}_is1) (Version: 1.2 - Chewy)
World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version: - Noble Empire Corp.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {059E889B-4643-44AC-A8BA-3655412D3A3F} - System32\Tasks\{B6250C77-5AB3-4C11-96BE-61314EE2E72F} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {0B1EF88B-8DEF-414B-A3FD-06E8C599E67D} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3487997803-1532060654-1365074507-1000
Task: {16B06E03-DDC5-4892-9430-C51899A48095} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-17] (Google Inc.)
Task: {201FA5A7-E30F-4C55-9879-5043E16076F2} - System32\Tasks\{2AE0AE68-F989-4438-A80F-CCCD7486EC32} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {2C9ED333-0E4C-48CF-934A-4F0266878831} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-02-04] (Microsoft Corporation)
Task: {3D663E4E-93FD-433B-A2E8-AC6EAF9FC02C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-17] (Google Inc.)
Task: {4081A9E0-3239-49AD-8375-7A6F4E245110} - System32\Tasks\{AD3F3399-3AE7-4745-BCDA-A3A0700D2BE0} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {4226F76B-A41D-4879-BE18-FF68E2C1D8D5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {44FD3788-08AE-4C41-9FB2-F7FDEF34DB00} - System32\Tasks\One-Click Optimizer WO11 => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe [2015-01-05] (Ashampoo Development GmbH & Co. KG)
Task: {701583E9-F56F-46CE-8413-15680FE9A6F1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-02-23] (Microsoft Corporation)
Task: {7D4C1D38-3B65-486A-8AC0-370D520B1C60} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {8453474B-8B3E-49F8-859B-097AED1E0098} - System32\Tasks\{FD404819-2B7F-4103-B8F7-1CD6EAE18EBF} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {87036BB7-61DA-481E-BF4B-3566A799F759} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {915C7735-1D6D-4660-942F-401D2E375269} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {99371ABB-5D4E-4C3F-A20C-1F5C268DBBB9} - System32\Tasks\{600C58C3-4CD4-4EFD-B9A1-E128C0871C49} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {9AE044CF-CD14-4AF8-894B-FF00E91C93B8} - System32\Tasks\{8F8A23AD-9F3C-45EC-AE7A-46917BEDC8F2} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {9B23EDD0-913F-487D-81B1-3ED13513627D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-10] (Adobe Systems Incorporated)
Task: {B261EF36-3297-43AD-85FA-807DEEBCD314} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-02-04] (Microsoft Corporation)
Task: {BDA2F11F-F22F-44E3-AADE-5BB9B88F775A} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\DivXUpdate.exe [2015-11-30] (DivX, LLC)
Task: {D0BAD004-6A8B-4160-8A7E-126C65D158DC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {D24C25DB-A6EF-4E9D-A4EC-3E2EAFC6FCDB} - System32\Tasks\{BFA994B8-BE01-4CBD-877D-6C87F30B5454} => pcalua.exe -a "C:\Program Files (x86)\MKJogo\MK IM\Bin\uInst.exe"
Task: {DAA1F9A8-97A8-42E8-A51A-FE29117C69B7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {EA82B0E4-85A7-4085-B5F2-0130F9E25ECB} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03] (Adobe Systems Incorporated)
Task: {F6F741EF-61FF-455F-BFDD-5BA194E7EECE} - System32\Tasks\{028F3DEC-334E-4191-8600-B67A45E3280F} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\One-Click Optimizer WO11.job => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-01-19 15:57 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-19 16:29 - 2016-02-04 05:51 - 00173256 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-09-12 15:33 - 2015-09-12 15:33 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-05-01 15:13 - 2014-05-01 15:13 - 00470016 _____ () C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll
2011-09-26 13:20 - 2010-10-28 18:04 - 06619256 _____ () C:\Program Files\ipswitch\WS_FTP 12\res0407.dll
2011-09-02 10:24 - 2009-07-20 11:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2015-01-29 10:02 - 2015-03-10 23:00 - 07374950 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe
2011-09-02 10:24 - 2009-07-20 03:00 - 00077824 _____ () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2014-12-23 15:54 - 2014-12-23 15:54 - 01272616 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\kpcengine.2.3.dll
2016-03-10 17:12 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-03-10 17:12 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-03-10 17:12 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-03-10 17:12 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2016-03-10 17:12 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-09-12 14:02 - 2015-08-27 01:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-05-01 15:15 - 2014-05-01 15:15 - 00463360 _____ () C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll
2016-01-11 10:36 - 2016-01-11 10:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 01865216 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RBGUIFramework.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00096256 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Appearance Pak.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00090112 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RegEx.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 05340672 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RBScript.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00031744 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Shell.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00293376 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\XML.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00274432 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\CGamma.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00110592 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\CSensor.dll
2012-04-04 06:54 - 2012-04-04 06:54 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2016-02-12 19:29 - 2016-02-12 19:29 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5eb8f854950c428c64f668e63c5a0498\IsdiInterop.ni.dll
2011-07-15 23:41 - 2010-11-05 23:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2016-01-06 09:03 - 2016-03-05 09:27 - 00012288 _____ () C:\Program Files (x86)\Google\Chrome\Application\WTSAPI32.dll
2016-02-20 15:00 - 2016-02-18 05:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
2016-02-20 15:00 - 2016-02-18 05:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll
2015-04-16 16:01 - 2016-02-10 02:17 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-04-16 16:01 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-04-16 16:01 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-04-16 16:01 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-04-16 16:01 - 2016-03-10 20:02 - 02547792 _____ () C:\Program Files (x86)\Steam\video.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-04-16 16:01 - 2016-03-10 20:02 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 15:47 - 2016-02-17 23:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2015-04-16 16:01 - 2016-02-09 02:33 - 48400672 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-04-16 16:01 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-03-07 17:58 - 2016-03-04 20:31 - 02570240 _____ () C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\libdiscord.dll
2016-03-07 17:58 - 2016-03-04 20:31 - 00103936 _____ () \\?\C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\resources\node_modules\discord_overlay\discord_overlay.node
2016-03-07 17:58 - 2016-03-04 20:31 - 01684480 _____ () C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\libglesv2.dll
2016-03-07 17:58 - 2016-03-04 20:31 - 00012288 _____ () C:\Users\Lukas\AppData\Local\Discord\app-0.0.286\libegl.dll
2016-03-12 14:26 - 2016-03-12 14:26 - 00140800 _____ () \\?\C:\Users\Lukas\AppData\Local\Temp\7D3D.tmp.node
2011-09-26 13:20 - 2010-10-28 17:52 - 00948496 _____ () C:\Program Files (x86)\Ipswitch\WS_FTP 12\LIBEAY32.dll
2011-09-26 13:20 - 2010-10-28 17:52 - 00153360 _____ () C:\Program Files (x86)\Ipswitch\WS_FTP 12\SSLEAY32.dll
2011-09-26 13:20 - 2010-10-28 18:04 - 06620792 _____ () C:\Program Files (x86)\Ipswitch\WS_FTP 12\res0407.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Lukas:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Lukas\AppData\Local\Temporary Internet Files:T6aG7k2EloPGhg2A0BBgTuFVUlM [2208]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{5D452C63-9479-437C-B873-689F896B4282}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{89334483-4E9C-4746-BC75-E34A06CD610D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{B7435958-7927-4E78-BC57-FD4A3467B534}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{6080F99A-D3F9-4412-8A74-3CB375ED4B13}] => (Allow) LPort=2869
FirewallRules: [{F7BCD92D-1741-460A-B88D-6FA64D223A62}] => (Allow) LPort=1900
FirewallRules: [{201731A7-275A-46D1-ACD7-BE4BCF284823}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{F0A7AF7C-928F-4909-A4BA-3ED1AF297CC1}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{0ACEC0F8-27B5-4BDD-BE7A-7A32E99DF6AB}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [UDP Query User{E4138393-4553-44FF-86EF-A9258F622C7D}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [TCP Query User{E34515CC-0174-4104-B3BC-65EBCB83F0E8}C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe] => (Allow) C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe
FirewallRules: [UDP Query User{B94DA7C4-B4F3-4EAE-BC0F-17A234D0D404}C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe] => (Allow) C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe
FirewallRules: [{3D1B7EA9-2533-4626-A0F2-462B0BC4C2F4}] => (Allow) C:\Users\FAE\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [{5CCE4D07-496E-4167-AEAD-DC1D9FA7DEC1}] => (Allow) C:\Users\FAE\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [TCP Query User{60D8F60D-5ECA-414F-A40D-54912CF43901}C:\users\fae\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fae\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{7E733462-1B12-4C0C-91E3-B17DB79516AE}C:\users\fae\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fae\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{6F83511A-FED8-41A9-83B4-6877707AED5E}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [UDP Query User{E9753F16-FB62-454E-A6C1-B75BEA3F8F6B}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [TCP Query User{A40CEE67-7F1F-4A0F-8A3C-EF3BF599F3F5}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{7B703F50-D1CE-4E38-A3A4-11D75A739840}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [{459157BD-3D72-45B6-9739-C23845E52B13}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{C050BF05-8E33-4A08-B294-86A969F0C82E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{ECC70DDA-5DE1-45D7-8DB6-A5CEEC0E89EC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4D9A229-C842-4826-A797-17480083690A}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{49AEBCFF-4B75-4976-BCA2-BD8B00867456}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [TCP Query User{EFFA2F0B-7234-4A7E-86CC-652CC447EF59}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [UDP Query User{44A64C55-1C99-4C91-B87E-80D86A09939A}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [{69321F5D-8E74-49EB-8DD6-D03E1164574C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{971756FA-884D-4C62-9632-AEE3ECB5D492}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E8B385C3-E2B0-4C8B-A98E-6D25E518CB38}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{2D63412E-35C0-42A6-BA3B-663074F7A607}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{41B9A423-5AB0-476C-BAD9-FCF91AB0FB31}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [{7F44A231-5923-41A1-9283-BDA3600AE70F}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [TCP Query User{F93802D8-E3AB-4967-B132-8BC335C6430D}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe
FirewallRules: [UDP Query User{78A44ACD-E1ED-4203-B198-4863B49FE3CB}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe
FirewallRules: [TCP Query User{4369F8A9-331D-45F1-8C89-50458498939F}C:\games\counter-strike\hl.exe] => (Block) C:\games\counter-strike\hl.exe
FirewallRules: [UDP Query User{0A40D07B-F272-4C17-B0A8-5286CD74CA12}C:\games\counter-strike\hl.exe] => (Block) C:\games\counter-strike\hl.exe
FirewallRules: [{00B26B4E-FC40-4643-801C-0942993B8C37}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{4B764D12-CDE6-4CF5-AD45-6AE220C3CB8C}] => (Allow) C:\Program Files\Lightworks\Lightworks.exe
FirewallRules: [{E8690C5E-D090-408C-B810-96AF9C39A13B}] => (Allow) C:\Program Files\Lightworks\Lightworks.exe
FirewallRules: [{53C3AA17-8F31-45FC-815E-331A9AF3AB28}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{0C29D8C6-79B3-4544-BB80-9BAB5BA89D1C}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{13F98D77-53E7-47C0-829C-31EE7ACAFDD8}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{B6F37F3A-F1F4-4C81-A2EB-32EC69539359}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{84891022-D81A-4F85-830C-4A3F860BC085}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{8878B615-AF89-4C45-89F3-1E4281379E47}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [TCP Query User{6CB59B7C-8134-4C00-A752-C17583CC22CE}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{652FA8C2-AFCA-4FEB-99CD-699E6FE2A346}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{3F0DB2D7-B5A2-401F-8E1D-DE2499829A99}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{2A654092-FA4D-4B5E-A3D6-B6C3293607F3}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{36EBA1D3-A8CF-49EC-8BBF-209903FBCBCC}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{035F25D1-A6C6-482C-B256-25A475F0C088}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{87F9181B-CCEA-4064-9A7E-6D7B6B7C11B6}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{3ADBD301-D680-4D2B-9D65-ED586EAC233C}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [{8F126B0E-5EBF-4B84-9659-8379C8EE57AC}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{7855E9F4-F009-4FE8-AF3F-23A958147508}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{1C298228-8FA7-4456-806F-3F7A6378E39B}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{FAC6B656-F7EB-46AE-8DC6-E7D5BB543FDE}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{F7EB7C8A-9B1C-4213-8783-618F914B9699}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [{D8B1C1E1-BA01-4AAE-8B0F-96D50CDE15E0}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [TCP Query User{E3141E67-166B-4825-B2C2-9509FAA31162}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{88A0CBFB-C890-4636-8F15-800FC7C89E65}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F2E38334-7740-4908-883D-D0976D51787A}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{524DB623-6CA3-45BB-9AF3-72CBFAEEBE16}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{07C63611-CDF1-4DAE-BC32-670D644E6C1D}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{EE9CD36F-57DB-4F10-A3C8-B4DC9031660A}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{512895B2-8289-4690-9DEA-36D8FB5ACA2D}] => (Allow) K:\Lukas\Steam\steamapps\common\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{1E46B301-1A11-423B-9A8C-EE07446991F7}] => (Allow) K:\Lukas\Steam\steamapps\common\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{D4666E0C-91D5-4A8C-A304-50E8E614F5E5}] => (Allow) K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E1BC7A05-810C-4254-9DC0-D97DF0B817FD}] => (Allow) K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{83399DAC-2858-4F3A-80D5-915B9235B57A}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [UDP Query User{5DA9B07B-D913-4A90-8981-0D265923986B}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [{537EB141-94FD-4516-9924-E593760E4EFB}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{8271DFBA-CC0F-46A7-ADBB-2062A3BB2373}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{8B0295F0-2631-4EE2-A61D-5E4DA67E3C93}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{916C9A08-6960-4305-B529-7ACAEA5A0A69}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{82362B9F-13DB-4B78-8EDA-0B7762A011F0}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{A097C9E4-32EF-4C1E-B593-33C4B0B7648F}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{6A3ACEEF-7A5A-49FF-915E-6815383FD49C}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{CBFA2B4D-D396-4A9B-9B47-26F18C1D5093}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{CB124C83-BAFA-42CB-83FD-324AAE7513CE}] => (Allow) K:\Lukas\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{8256E539-A9A6-4EE3-8C90-B89BA68906E3}] => (Allow) K:\Lukas\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{0A08E891-2230-42B0-B12B-88C697DD20B3}] => (Allow) K:\Lukas\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{655A5F8D-C803-4FD7-B023-884A7C55F9C4}] => (Allow) K:\Lukas\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{C87B4C35-FC90-4D2C-8725-E577DC5A4D5B}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{5E9B6939-BC35-4B76-A986-3999059926D3}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{915CD9D7-5611-4924-B16F-80B686F320A7}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{C167CF2A-2B5A-45C2-84CD-D8F02E477DA8}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{CBA29815-E2FD-4CD4-A891-B86E0FB3C07A}] => (Allow) K:\Lukas\Steam\steamapps\common\Tomb Raider Underworld\tru.exe
FirewallRules: [{A8197DF4-8865-469A-AF56-BD053B472024}] => (Allow) K:\Lukas\Steam\steamapps\common\Tomb Raider Underworld\tru.exe
FirewallRules: [TCP Query User{3E4B8392-9CFB-4193-A58B-2051AEA92EEF}C:\program files (x86)\funcom\age of conan\conanpatcher.exe] => (Allow) C:\program files (x86)\funcom\age of conan\conanpatcher.exe
FirewallRules: [UDP Query User{1011140F-816B-455B-B70C-B4B327369A17}C:\program files (x86)\funcom\age of conan\conanpatcher.exe] => (Allow) C:\program files (x86)\funcom\age of conan\conanpatcher.exe
FirewallRules: [TCP Query User{BADF87F4-8225-46F6-B78D-571E3CC83DA9}C:\program files (x86)\funcom\age of conan\ageofconan.exe] => (Allow) C:\program files (x86)\funcom\age of conan\ageofconan.exe
FirewallRules: [UDP Query User{E5FB49E2-D863-42DA-8233-74F7E9C0F721}C:\program files (x86)\funcom\age of conan\ageofconan.exe] => (Allow) C:\program files (x86)\funcom\age of conan\ageofconan.exe
FirewallRules: [{A07F36B9-BE80-4B13-BED2-579E4D416BA1}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6A345780-8883-4B1B-80BD-B011D545CE01}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6695EE49-0FE9-48A1-9278-C2255AD18C88}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8FEC110B-0F27-40C7-A105-2C570BF1C08A}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D96FB8F4-04E6-4617-A399-186766772B68}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{71708B96-EC02-4D6C-AC9A-57BAED9A7780}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{87C8387D-2215-479C-A2BF-B9CC1F9A15EB}] => (Allow) C:\Program Files (x86)\Rising\RAV\ravmond.exe
FirewallRules: [{CC4707AF-DB85-4C28-834F-76027B37DF18}] => (Allow) C:\Program Files (x86)\Rising\RAV\ravmond.exe
FirewallRules: [{1B133D53-9ED1-4FF1-A3A2-2045C450A4A6}] => (Allow) K:\Lukas\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{7FC17907-2EC9-4A5E-A2B0-F5E242D85F57}] => (Allow) K:\Lukas\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{0655CD51-9FCE-45C4-A6EA-3F73A1C6AC02}] => (Allow) K:\Lukas\Steam\steamapps\common\Marvel Heroes\UnrealEngine3\Binaries\Win64\MarvelHeroes2015.exe
FirewallRules: [{947D3D58-536A-4AAC-B2E1-20C8D8D2EC59}] => (Allow) K:\Lukas\Steam\steamapps\common\Marvel Heroes\UnrealEngine3\Binaries\Win64\MarvelHeroes2015.exe
FirewallRules: [{8EB97C84-4979-468D-B46F-7717CD0A71CA}] => (Allow) K:\Lukas\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{60AF5B1D-8CBC-43DC-BB66-AFCC5056091E}] => (Allow) K:\Lukas\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{623C2EDD-522D-4C1A-AE0D-9596095BA29A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F30096B7-39A3-4D1A-8114-E23BB1589D80}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5E974484-2767-48E1-884D-A34A9E682126}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{202419E4-B13A-4C84-9C70-C549C7AFA2D4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AA77257F-2701-4E16-9BCE-5F295A0FC8C4}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A20E34A8-723F-48B5-A1ED-7C48BFD380D2}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A2DC1F7C-DFCB-474D-939E-1C8FE2C6D066}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1B772121-C76A-4107-88D4-7B6395FE7E6A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8B87CF59-AF10-4E76-8C6F-C13D86ED0250}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{74CD9A82-014E-4EE2-81FB-DDF10E2D7A5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{2BD620F3-809A-429B-9091-AB849E8F3275}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{7F4E454E-3218-4FB7-AC24-76930CB37BF1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{36FC2A01-D5F1-4312-A02E-E5292E30B325}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{528F95A8-59BF-4AA8-884A-12A8E7C64706}] => (Allow) K:\Lukas\Steam\steamapps\common\WOG\disasm.exe
FirewallRules: [{00B24C5A-7BA6-4E5E-9770-4C18ED725A87}] => (Allow) K:\Lukas\Steam\steamapps\common\WOG\disasm.exe
FirewallRules: [{2E15424C-B496-402B-A5FD-90A4F6BEB3A8}] => (Allow) K:\Lukas\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{B5209676-9FA8-4F7F-9AAC-40910F2DC04A}] => (Allow) K:\Lukas\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{FEB40698-5810-4846-8F89-8C154C88CD09}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{FE7399E8-5056-458A-9D3F-9EB3F31BC6ED}] => (Allow) C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{5A7DC731-120E-490D-9903-62C7073D805E}] => (Allow) K:\Lukas\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{8AA02C6C-DE81-458C-90B8-8468BB5C5AE4}] => (Allow) K:\Lukas\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{F1CB70D9-CC8F-40D2-861B-D9C07DE5C125}] => (Allow) K:\Lukas\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{DCBE4494-A4C1-4D34-9F4C-B26A01EDA384}] => (Allow) K:\Lukas\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{4CE1D774-51B1-4ABD-BBC0-ED2365F65294}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DB4B5B9F-7593-4D52-B6A5-D72031AE1E6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A20B8BE7-86C7-4538-B66E-4EDE5D4169F1}] => (Allow) K:\Lukas\Steam\steamapps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{AC94B8AE-0031-47F2-BC8A-4BAF860DF5A3}] => (Allow) K:\Lukas\Steam\steamapps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{9139C557-22FD-4B25-8765-1BA09FCDEF8D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{65B4B419-0E79-4A02-9EC8-9E70AAD40204}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BE969F7B-719F-44A1-89B2-5F9DFC371514}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5DEEC4B4-3681-45B5-B90D-860062AE90F7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3E09CF44-E044-4103-848B-ED96B705E7CA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{32D7E3A3-4C33-4840-8024-16FF9F49596F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{08CDC6F6-5078-4DE8-9837-8E395337E6C1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{ECD10E0A-79A3-4BCB-9141-2C838733352F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{AB377868-016B-42D9-AC55-68056E999DC4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8D72B61F-9523-4D87-AF7C-E37CD6420CF1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{98716E9A-EEBD-4DC8-84FE-40DAB613B599}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{637A00D9-F61E-4E9A-837D-46455B5BCBE7}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{672F8838-6EBA-45F9-BD3A-20ED55F1C28F}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9FA96360-CC54-4CC6-A43D-9B9AD7EB1B44}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BC63B4DF-92F1-446D-B978-FB8B4A9618B8}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{12A929A0-037C-4436-8E54-EAD41CA12D20}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{479DE1C2-93F2-46DE-8941-FF9CDF339951}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BF452F95-BA0E-4455-AAC6-5221851D5481}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7A424216-8AA3-42DC-BDD3-DCD23F4AC05B}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{30F405F5-25D6-4E10-A38C-8EA5EC0AD16E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7590582F-C827-4F23-ACA5-DC207F111F00}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5D044A92-3429-4AE7-8970-C4DE81CA72E1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{CB4FD172-0830-4295-88BD-A7AA55866C34}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{324FFD8D-9B7E-4C94-A823-99237671299D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E75FA339-094B-430A-85FD-CA738A72157F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{72533A4B-0DF1-4200-8081-2818E71388A1}] => (Allow) K:\Lukas\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{70204C53-9964-44B8-BF77-7EFB9E3CB048}] => (Allow) K:\Lukas\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{92FE9851-CC9D-4EB8-B1D8-2C0A4C8A26B2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B141B336-2513-48E9-A29F-648CB17AEAB7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{86B6B535-E4AD-4002-A494-E90DE871800E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{CC7F0FF5-E156-4393-A100-3CB3A7CCECEA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6CC943C6-9EAF-413B-9280-CAEF8ADCD6EA}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{06D965AB-26A6-46FB-8FEE-25DB9D7A46B6}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{FC143E78-1B9A-46D6-92A3-A80A4FDF5E12}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{349BFEA7-E980-41AD-8EB2-669168DF47AD}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{2387BEFA-BEAC-4A16-9E26-1F52CB4AE13C}] => (Allow) K:\Lukas\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{F41BEC0F-1D3E-4C34-84B5-6EEB08A9B999}] => (Allow) K:\Lukas\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{7A706620-9E39-4EFA-923A-4241AB6F5B1F}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{496DEAA5-1295-4FEF-8D53-BEE129788161}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{A65DA6B2-833E-40BF-A44F-7383FA2E3465}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{B1AD9D9A-0498-444D-80DC-52D293903565}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{181C06E3-8CB6-41ED-96C9-A71F651C6E88}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{1F1035CC-40EA-4006-BF5C-35F4B0E01A7A}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{9E60E22A-E3F6-4A4E-A3B5-B3D8743401A8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1B7B42CD-7A7A-40A4-B22E-674E581DC9D6}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{7ED87A30-EC41-46F7-B0B1-C71AB8E82758}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: PS/2 Mouse
Description: PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Logitech
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/12/2016 07:59:16 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/12/2016 02:12:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1144
Startzeit: 01d17c5acd4b276b
Endzeit: 128
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: 1401f2f6-e854-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 01:29:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: b24
Startzeit: 01d17c5489d1fe63
Endzeit: 0
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: 01479f14-e84e-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 12:44:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1e80
Startzeit: 01d17c53ebc1cbb5
Endzeit: 124
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: c38e643a-e847-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 12:40:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 137c
Startzeit: 01d17c53450d4082
Endzeit: 0
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: 05f89443-e847-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 11:27:42 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418220
Error: (03/12/2016 11:23:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/12/2016 11:23:17 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/12/2016 11:23:15 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/12/2016 11:23:13 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Systemfehler:
=============
Error: (03/12/2016 08:04:53 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
Error: (03/12/2016 12:16:06 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
Error: (03/12/2016 11:28:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (03/12/2016 11:28:51 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Lukas\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (03/12/2016 11:28:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (03/12/2016 11:28:51 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Lukas\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (03/12/2016 11:28:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (03/12/2016 11:28:51 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Lukas\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (03/12/2016 11:24:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (03/12/2016 11:24:17 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Lukas\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
CodeIntegrity:
===================================
Date: 2014-04-06 13:59:16.984
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-04-06 13:52:40.358
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 19:02:03.928
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 18:54:54.974
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 17:36:54.025
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 16:40:34.022
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 16:25:00.389
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-07 18:53:37.715
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-07 18:42:06.226
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-07 18:28:54.024
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Xeon(R) CPU E31245 @ 3.30GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 16340.9 MB
Verfügbarer physikalischer RAM: 10634.75 MB
Summe virtueller Speicher: 32980 MB
Verfügbarer virtueller Speicher: 26907.14 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:452.47 GB) (Free:82.88 GB) NTFS
Drive d: (BIG_BANG_THEORY_SEASON_2_DISC2) (CDROM) (Total:5.55 GB) (Free:0 GB) UDF
Drive k: (Data) (Fixed) (Total:465.75 GB) (Free:37.66 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: E670654A)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=13.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=465.8 GB) - (Type=OF Extended)
==================== Ende von Addition.txt ============================
|
|
13.03.2016, 13:42
| #37 |
| /// TB-Ausbilder | trojaner keine windows uodates mehr Servus, funktionen die windows updates wieder? Downloade dir bitte  Farbar Service Scanner
Poste bitte den Inhalt hier. |
|
13.03.2016, 14:22
| #38 |
| | trojaner keine windows uodates mehrCode:
ATTFilter Farbar Service Scanner Version: 27-01-2016
Ran by Lukas (administrator) on 13-03-2016 at 14:21:36
Running from "C:\Users\Lukas\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Windows Defender Disabled Policy:
==========================
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
|
|
14.03.2016, 06:59
| #39 |
| /// TB-Ausbilder | trojaner keine windows uodates mehr Servus, ein Windows-Dienst wurde durch die Schadsoftware gelöscht. Diesen Dienst stellen wir wieder her: Download dir windefend.reg auf deinen Desktop. Starte die Datei. Bestätige evtuelle Sicherheitsabfragen zum Ändern der Registrierungsdatenbank. Rechner neu starten Dann nochmal FSS. |
|
14.03.2016, 13:46
| #40 |
| | trojaner keine windows uodates mehrCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 durchgeführt von Lukas (Administrator) auf PC-LUKAS (14-03-2016 13:38:04) Gestartet von C:\Users\Lukas\Desktop Geladene Profile: Lukas (Verfügbare Profile: FAE & PFrey & Michael & Lukas & Hannah & Maximilian) Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\System32\PnkBstrA.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe (Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Realtek Semiconductor Corp.) C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Adobe Systems Incorporated.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodist.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe [2907240 2010-10-04] (Realtek Semiconductor Corp.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation) HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2728736 2014-07-02] () HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [815512 2012-04-04] (Adobe Systems Inc.) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [837640 2015-12-08] (DivX, LLC) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50605696 2016-02-02] (Skype Technologies S.A.) HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHVE.EXE [241280 2014-01-20] (SEIKO EPSON CORPORATION) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2011-07-25] (Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2016-02-18] ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Hosts: Hosts Datei wurde nicht im Standardordner gefunden Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B5E208C6-BB9C-4F8E-8724-0786695ADEB6}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=de-de SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLRDF8&pc=MDDR&src=IE-SearchBox SearchScopes: HKLM-x32 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {151F5FAD-352E-4BED-AF04-DABC47B2632C} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {48356623-4CDD-4A32-9251-CD12380A0FDE} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {802B7583-F36D-4AFC-A7C1-24395748F1BC} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 SearchScopes: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003 -> {9C2FAA18-42D8-4412-BC5F-CCCBDAE73C42} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8 BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-02-05] (Microsoft Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-02-04] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-02-04] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-02-04] (Microsoft Corporation) DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-02-04] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default FF DefaultSearchEngine: Bing FF SelectedSearchEngine: Bing FF SearchEngineOrder.3: Bing FF Keyword.URL: hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q= FF Homepage: hxxp://www.msn.com/?pc=U270&ocid=U270DHP&osmkt=de-de hxxps://www.malwarebytes.org/restorebrowser//?u=4ef09132d37415b6ea9b7cb45a0bfa6f&c=up1&src=hp&inst=1440087070 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_182.dll [2016-03-10] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Keine Datei] FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-07-15] (Sun Microsystems, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-10] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-12-02] (DivX, LLC) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Keine Datei] FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-14] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-04-14] (Oracle Corporation) FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-08-22] () FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-08-22] () FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-08-22] () FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-02-04] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation) FF Plugin-x32: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [Keine Datei] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2012-04-04] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3487997803-1532060654-1365074507-1003: @rising.com.cn/nprising -> C:\Program Files (x86)\Rising\RAV\nprising.dll [Keine Datei] FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default\searchplugins\bing-.xml [2015-12-31] FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-08-22] [ist nicht signiert] FF Extension: Bing Search - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\vm27u39a.default\Extensions\bingsearch.full@microsoft.com.xpi [2015-12-31] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-04-17] [ist nicht signiert] FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com Chrome: ======= CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2016-03-07] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-03-13] CHR Extension: (Web Store) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-03-07] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-07] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-07-09] (Kaspersky Lab ZAO) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1300512 2016-01-16] () S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-12-21] (BitRaider, LLC) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2804976 2016-02-04] (Microsoft Corporation) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2015-10-03] (EasyAntiCheat Ltd) S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-05-06] (Freemake) [Datei ist nicht signiert] R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation) R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2498848 2013-12-19] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-03-13] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-09-12] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-09-12] () R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert] S2 WinDefend; %ProgramFiles(x86)%\Windows Defender\mpsvc.dll [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AX88178; C:\Windows\System32\DRIVERS\ax88178.sys [59392 2010-11-24] (ASIX Electronics Corp.) R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-07-09] (Kaspersky Lab UK Ltd) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-12-06] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2015-12-06] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [1980648 2010-10-04] (Realtek Semiconductor Corp.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-07-09] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [64368 2015-07-09] (Kaspersky Lab ZAO) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [159960 2015-07-09] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [225976 2015-07-09] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [831672 2015-10-06] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [39280 2015-07-09] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [40304 2015-07-09] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [39280 2015-07-09] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-07-09] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-07-09] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [85360 2015-07-09] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [190648 2015-10-06] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-03-11] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) R1 rsutils; C:\Windows\System32\DRIVERS\rsutils.sys [69336 2014-08-15] (Beijing Rising Information Technology Co., Ltd.) S3 Spyder5; C:\Windows\System32\DRIVERS\dccmtr.sys [15360 2014-12-19] (Datacolor) R0 sysmon; C:\Windows\System32\DRIVERS\sysmon.sys [119344 2014-09-10] (Beijing Rising Information Technology Co., Ltd.) S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2011-03-31] (C-Media Electronics Inc) R0 vidsflt61; C:\Windows\System32\DRIVERS\vsflt61.sys [142944 2012-03-28] (Acronis) U3 DfSdkS; kein ImagePath U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X] S3 SBFWIMCLMP; system32\DRIVERS\SBFWIM.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-14 13:20 - 2016-03-14 13:20 - 00007586 _____ C:\Users\Lukas\Downloads\WinDefend.reg 2016-03-13 14:21 - 2016-03-13 14:21 - 00899584 _____ (Farbar) C:\Users\Lukas\Downloads\FSS.exe 2016-03-13 14:21 - 2016-03-13 14:21 - 00002981 _____ C:\Users\Lukas\Downloads\FSS.txt 2016-03-13 11:35 - 2016-03-13 11:35 - 04235264 _____ (New Technology Studio) C:\Users\Lukas\Downloads\ovisetup.exe 2016-03-12 11:15 - 2016-03-12 11:15 - 00852720 _____ C:\Users\Lukas\Downloads\SecurityCheck.exe 2016-03-12 11:14 - 2016-03-12 11:14 - 02870984 _____ (ESET) C:\Users\Lukas\Downloads\esetsmartinstaller_deu.exe 2016-03-11 17:21 - 2016-03-11 17:21 - 12924796 _____ C:\Users\Lukas\Downloads\a3beaf-B2A_Spirit.zip 2016-03-11 17:16 - 2016-03-11 17:16 - 10035437 _____ C:\Users\Lukas\Downloads\2d860a-XB70_Valkyrie.zip 2016-03-11 17:15 - 2016-03-11 17:15 - 04053135 _____ C:\Users\Lukas\Downloads\4c2f26-[Addon]Lockheed F-117 Nighthawk Black GTAV (1).rar 2016-03-11 15:47 - 2016-03-11 15:47 - 01199720 _____ (Uniblue Systems Limited ) C:\Users\Lukas\Downloads\pcmechanicpm.exe 2016-03-11 15:13 - 2016-03-11 15:13 - 04053135 _____ C:\Users\Lukas\Downloads\4c2f26-[Addon]Lockheed F-117 Nighthawk Black GTAV.rar 2016-03-11 15:04 - 2016-03-11 15:05 - 00459515 _____ C:\Users\Lukas\Downloads\eaf5ab-TruckingMissions.zip 2016-03-11 15:03 - 2016-03-11 15:04 - 00645613 _____ C:\Users\Lukas\Downloads\4ac205-MapEditor.zip 2016-03-11 14:50 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-03-11 14:50 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2016-03-11 14:50 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2016-03-11 14:50 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2016-03-11 14:50 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2016-03-11 14:50 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2016-03-11 14:50 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2016-03-11 14:16 - 2016-03-11 14:16 - 00001202 _____ C:\1.txt 2016-03-10 18:41 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2016-03-10 18:41 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2016-03-10 18:41 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2016-03-10 18:41 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll 2016-03-10 18:41 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll 2016-03-10 18:41 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2016-03-10 18:41 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll 2016-03-10 18:41 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll 2016-03-10 18:41 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2016-03-10 18:41 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2016-03-10 18:39 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys 2016-03-10 18:39 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys 2016-03-10 18:39 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll 2016-03-10 18:39 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll 2016-03-10 18:35 - 2015-12-16 19:55 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2016-03-10 18:35 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2016-03-10 18:35 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2016-03-10 18:35 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2016-03-10 18:35 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2016-03-10 18:35 - 2015-12-16 19:47 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll 2016-03-10 18:23 - 2016-03-12 20:22 - 00088202 _____ C:\Users\Lukas\Desktop\Addition.txt 2016-03-10 18:21 - 2016-03-14 13:40 - 00029103 _____ C:\Users\Lukas\Desktop\FRST.txt 2016-03-10 18:05 - 2016-03-12 11:16 - 00001800 _____ C:\Users\Lukas\Desktop\Fixlog.txt 2016-03-10 17:18 - 2016-03-10 17:18 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (3).exe 2016-03-10 17:13 - 2016-03-10 17:13 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking 2016-03-10 17:13 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe 2016-03-10 17:12 - 2016-03-10 17:23 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2016-03-10 16:58 - 2016-03-10 16:58 - 00286761 _____ C:\Users\Lukas\Downloads\getsysteminfo.de.exe 2016-03-10 16:57 - 2016-03-10 17:05 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Lukas\Downloads\spybot-2.4.exe 2016-03-10 16:55 - 2016-03-10 17:15 - 163116760 _____ (Kaspersky Lab) C:\Users\Lukas\Downloads\kis16.0.0.614de-de (1).exe 2016-03-10 16:33 - 2016-03-10 16:33 - 03901072 _____ (solvusoft Corporation ) C:\Users\Lukas\Downloads\WinThruster_2016_Setup.exe 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{FD404819-2B7F-4103-B8F7-1CD6EAE18EBF} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{B6250C77-5AB3-4C11-96BE-61314EE2E72F} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{AD3F3399-3AE7-4745-BCDA-A3A0700D2BE0} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{8F8A23AD-9F3C-45EC-AE7A-46917BEDC8F2} 2016-03-10 16:21 - 2016-03-10 16:21 - 00003028 _____ C:\Windows\System32\Tasks\{600C58C3-4CD4-4EFD-B9A1-E128C0871C49} 2016-03-10 16:03 - 2016-03-10 16:05 - 47718584 _____ (Hammer & Chisel, Inc.) C:\Users\Lukas\Downloads\DiscordSetup (1).exe 2016-03-10 15:35 - 2016-03-10 15:37 - 00000000 ___HD C:\$WINDOWS.~BT 2016-03-10 15:32 - 2016-03-10 15:36 - 70087104 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP451-KB2858728-x86-x64-AllOS-ENU.exe 2016-03-10 15:23 - 2016-03-10 15:25 - 24277024 _____ (Microsoft) C:\Users\Lukas\Downloads\dotnetfx.exe 2016-03-10 15:23 - 2016-03-10 15:24 - 10703680 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP1.1sp1-KB867460-X86.exe 2016-03-10 15:23 - 2016-03-10 15:24 - 02959376 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotnetfx35setup (1).exe 2016-03-10 15:22 - 2016-03-10 15:22 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (2).exe 2016-03-10 15:22 - 2016-03-10 15:22 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (3).zip 2016-03-10 15:15 - 2016-03-10 15:15 - 01733224 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP46-KB3127233-x64.exe 2016-03-10 14:52 - 2016-03-10 14:52 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool (1).exe 2016-03-10 14:48 - 2016-03-10 14:48 - 00000000 ____D C:\23beeb6426fcffe7086cd457 2016-03-10 14:45 - 2016-03-10 14:51 - 00063828 _____ C:\Users\Lukas\Downloads\SystemLook.txt 2016-03-10 14:44 - 2016-03-10 14:44 - 00165376 _____ C:\Users\Lukas\Downloads\SystemLook_x64.exe 2016-03-10 14:43 - 2016-03-10 14:51 - 163116760 _____ (Kaspersky Lab) C:\Users\Lukas\Downloads\kis16.0.0.614de-de.exe 2016-03-09 21:38 - 2016-03-09 21:38 - 00003028 _____ C:\Windows\System32\Tasks\{2AE0AE68-F989-4438-A80F-CCCD7486EC32} 2016-03-09 21:38 - 2016-03-09 21:38 - 00003028 _____ C:\Windows\System32\Tasks\{028F3DEC-334E-4191-8600-B67A45E3280F} 2016-03-09 21:19 - 2016-03-09 21:19 - 00889416 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Full_setup (1).exe 2016-03-09 21:18 - 2016-03-09 21:18 - 01424328 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP461-KB3102438-Web (1).exe 2016-03-09 21:16 - 2016-03-09 21:16 - 00879096 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NetFxRepairTool.exe 2016-03-09 21:12 - 2016-03-09 21:12 - 01424328 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP461-KB3102438-Web.exe 2016-03-09 20:34 - 2016-03-09 20:57 - 18370440 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\NDP46-KB3045557-x86-x64-AllOS-ENU.exe 2016-03-09 20:32 - 2016-03-09 20:32 - 00266910 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (2).zip 2016-03-09 20:01 - 2016-03-09 20:01 - 00889416 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Full_setup.exe 2016-03-09 19:58 - 2016-03-09 19:58 - 00063893 _____ C:\Users\Lukas\Downloads\NETFx4RTM.htm 2016-03-09 19:57 - 2016-03-09 19:57 - 01045576 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx45_Full_setup.exe 2016-03-09 19:29 - 2016-03-09 19:29 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool.zip 2016-03-09 19:29 - 2016-03-09 19:29 - 00267049 _____ C:\Users\Lukas\Downloads\dotnetfx_cleanup_tool (1).zip 2016-03-09 19:27 - 2016-03-09 19:27 - 00887896 _____ (Microsoft Corporation) C:\Users\Lukas\Downloads\dotNetFx40_Client_setup.exe 2016-03-09 19:25 - 2016-03-09 19:25 - 00985600 _____ C:\Users\Lukas\Downloads\MicrosoftFixit50123.msi 2016-03-09 17:15 - 2016-03-11 14:23 - 00001866 _____ C:\Users\Lukas\Desktop\JRT.txt 2016-03-09 17:02 - 2016-03-09 17:02 - 00163419 _____ C:\Users\Lukas\Desktop\mbam.txt 2016-03-09 16:49 - 2016-02-12 19:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-09 16:49 - 2016-02-12 19:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-09 16:49 - 2016-02-12 19:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-09 16:49 - 2016-02-12 19:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2016-03-09 16:49 - 2016-02-12 19:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-03-09 16:49 - 2016-02-12 19:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-09 16:49 - 2016-02-12 19:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-09 16:49 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-09 16:49 - 2016-02-12 19:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-03-09 16:49 - 2016-02-12 19:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2016-03-09 16:49 - 2016-02-12 19:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-03-09 16:49 - 2016-02-12 19:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-03-09 16:49 - 2016-02-12 19:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-03-09 16:49 - 2016-02-12 19:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2016-03-09 16:49 - 2016-02-09 07:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-03-09 16:49 - 2016-02-09 07:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-03-09 16:49 - 2016-02-08 22:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-09 16:49 - 2016-02-08 21:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-03-09 16:49 - 2016-02-08 21:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-03-09 16:49 - 2016-02-08 21:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-03-09 16:49 - 2016-02-08 21:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-03-09 16:49 - 2016-02-08 21:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-03-09 16:49 - 2016-02-08 21:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-03-09 16:49 - 2016-02-08 21:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-09 16:49 - 2016-02-08 21:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-03-09 16:49 - 2016-02-08 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-03-09 16:49 - 2016-02-08 21:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-03-09 16:49 - 2016-02-08 21:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-03-09 16:49 - 2016-02-08 21:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-03-09 16:49 - 2016-02-08 21:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-03-09 16:49 - 2016-02-08 21:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-03-09 16:49 - 2016-02-08 21:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-03-09 16:49 - 2016-02-08 21:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-03-09 16:49 - 2016-02-08 21:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-03-09 16:49 - 2016-02-08 21:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-09 16:49 - 2016-02-08 21:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-03-09 16:49 - 2016-02-08 21:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-09 16:49 - 2016-02-08 21:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-03-09 16:49 - 2016-02-08 21:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-09 16:49 - 2016-02-08 21:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-03-09 16:49 - 2016-02-08 21:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-03-09 16:49 - 2016-02-08 21:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-03-09 16:49 - 2016-02-08 20:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-09 16:49 - 2016-02-08 20:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-09 16:49 - 2016-02-08 20:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-03-09 16:49 - 2016-02-08 19:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-03-09 16:49 - 2016-02-08 19:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-03-09 16:49 - 2016-02-08 19:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-09 16:49 - 2016-02-08 19:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-03-09 16:49 - 2016-02-08 19:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-03-09 16:49 - 2016-02-08 19:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-03-09 16:49 - 2016-02-08 19:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-03-09 16:49 - 2016-02-08 19:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-03-09 16:49 - 2016-02-08 19:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-09 16:49 - 2016-02-08 19:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-03-09 16:49 - 2016-02-08 19:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-03-09 16:49 - 2016-02-08 19:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-03-09 16:49 - 2016-02-08 19:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-09 16:49 - 2016-02-08 19:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-03-09 16:49 - 2016-02-08 19:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-03-09 16:49 - 2016-02-08 19:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-03-09 16:49 - 2016-02-08 18:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-03-09 16:49 - 2016-02-08 18:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-03-09 16:49 - 2016-02-08 18:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-03-09 16:49 - 2016-02-08 18:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-09 16:49 - 2016-02-08 18:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-03-09 16:49 - 2016-02-08 18:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-03-09 16:49 - 2016-02-08 18:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-09 16:49 - 2016-02-08 18:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-03-09 16:49 - 2016-02-08 18:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-09 16:49 - 2016-02-08 18:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-09 16:49 - 2016-02-08 18:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-09 16:49 - 2016-02-08 18:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-03-09 16:49 - 2016-02-08 18:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-09 16:49 - 2016-02-08 18:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-09 16:49 - 2016-02-08 17:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-09 16:49 - 2016-02-04 18:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-03-09 16:49 - 2016-02-03 19:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2016-03-09 16:49 - 2016-02-03 19:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-09 16:49 - 2016-02-03 19:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2016-03-09 16:49 - 2016-02-03 19:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-09 16:49 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-09 16:49 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-03-09 16:49 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2016-03-09 16:49 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2016-03-09 16:46 - 2016-02-11 19:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-03-09 16:46 - 2016-02-11 19:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-03-09 16:46 - 2016-02-11 19:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-03-09 16:46 - 2016-02-11 19:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-03-09 16:45 - 2016-02-11 19:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-03-09 16:45 - 2016-02-11 19:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-03-09 16:45 - 2016-02-11 19:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-03-09 16:45 - 2016-02-11 19:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-03-09 16:45 - 2016-02-11 19:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-03-09 16:45 - 2016-02-11 19:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-03-09 16:45 - 2016-02-11 19:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-03-09 16:45 - 2016-02-11 19:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-03-09 16:45 - 2016-02-11 19:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-03-09 16:45 - 2016-02-11 19:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-03-09 16:45 - 2016-02-11 19:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-03-09 16:45 - 2016-02-11 19:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-03-09 16:45 - 2016-02-11 19:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-03-09 16:45 - 2016-02-11 19:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-03-09 16:45 - 2016-02-11 19:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-03-09 16:45 - 2016-02-11 19:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-03-09 16:45 - 2016-02-11 19:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-03-09 16:45 - 2016-02-11 18:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-03-09 16:45 - 2016-02-11 18:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-03-09 16:45 - 2016-02-11 18:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-03-09 16:45 - 2016-02-11 18:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-03-09 16:45 - 2016-02-11 18:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-03-09 16:45 - 2016-02-11 18:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-03-09 16:45 - 2016-02-11 18:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-03-09 16:45 - 2016-02-11 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-03-09 16:45 - 2016-02-11 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-03-09 16:45 - 2016-02-11 18:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-03-09 16:45 - 2016-02-11 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-03-09 16:45 - 2016-02-09 10:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-09 16:45 - 2016-02-09 10:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2016-03-09 16:45 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2016-03-09 16:45 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2016-03-09 16:45 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-09 16:45 - 2016-02-09 10:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2016-03-09 16:45 - 2016-02-09 10:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2016-03-09 16:45 - 2016-02-09 10:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-09 16:45 - 2016-02-09 10:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2016-03-09 16:45 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2016-03-09 16:45 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2016-03-09 16:45 - 2016-02-05 19:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-03-09 16:45 - 2016-02-05 19:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-03-09 16:45 - 2016-02-05 19:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-09 16:45 - 2016-02-05 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-03-09 16:45 - 2016-02-05 19:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-03-09 16:45 - 2016-02-05 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-03-09 16:45 - 2016-02-05 19:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-03-09 16:45 - 2016-02-05 18:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-09 16:45 - 2016-02-05 18:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-09 16:45 - 2016-02-05 18:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-09 16:45 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-09 16:45 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-09 16:44 - 2016-02-19 20:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-03-09 16:44 - 2016-02-19 19:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-09 16:44 - 2016-02-19 15:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-03-09 16:44 - 2016-02-11 15:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-09 16:44 - 2016-02-05 15:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-03-09 16:09 - 2016-03-09 16:09 - 01609216 _____ (Malwarebytes) C:\Users\Lukas\Downloads\JRT.exe 2016-03-09 15:58 - 2016-03-09 15:59 - 22908888 _____ (Malwarebytes ) C:\Users\Lukas\Downloads\mbam-setup-2.2.0.1024.exe 2016-03-09 15:57 - 2016-03-11 13:26 - 00000000 ____D C:\Program Files (x86)\AdwCleaner 2016-03-09 15:57 - 2016-03-09 15:57 - 01524224 _____ C:\Users\Lukas\Downloads\AdwCleaner_5.101.exe 2016-03-08 15:26 - 2016-03-08 15:31 - 00230526 _____ C:\TDSSKiller.3.1.0.9_08.03.2016_15.26.46_log.txt 2016-03-08 15:09 - 2016-03-09 17:19 - 00082958 _____ C:\Users\Lukas\Downloads\Addition.txt 2016-03-08 15:04 - 2016-03-09 17:19 - 00071999 _____ C:\Users\Lukas\Downloads\FRST.txt 2016-03-08 15:04 - 2016-03-08 15:09 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Lukas\Downloads\tdsskiller.exe 2016-03-08 15:02 - 2016-03-08 15:04 - 02374144 _____ (Farbar) C:\Users\Lukas\Desktop\FRST64.exe 2016-03-07 19:21 - 2016-03-07 19:21 - 404231634 _____ C:\Users\Lukas\Downloads\Sony Vegas Pro 13 Setup + Crack (64-Bit).rar 2016-03-07 18:35 - 2016-03-07 18:36 - 00000038 _____ C:\Users\Lukas\Desktop\discord.txt 2016-03-07 18:33 - 2016-03-07 18:33 - 00000330 _____ C:\Users\Lukas\Desktop\Bunnyhop.txt 2016-03-07 18:23 - 2016-03-07 18:24 - 00006918 _____ C:\Users\Lukas\Downloads\Bunnyhop CSGO.zip 2016-03-07 17:59 - 2016-03-07 18:15 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\discord 2016-03-07 17:59 - 2016-03-07 17:59 - 00002168 _____ C:\Users\Lukas\Desktop\Discord.lnk 2016-03-07 17:59 - 2016-03-07 17:59 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc 2016-03-07 17:58 - 2016-03-10 16:06 - 00000000 ____D C:\Users\Lukas\AppData\Local\SquirrelTemp 2016-03-07 17:58 - 2016-03-07 17:59 - 00000000 ____D C:\Users\Lukas\AppData\Local\Discord 2016-03-07 17:47 - 2016-03-07 17:50 - 47718584 _____ (Hammer & Chisel, Inc.) C:\Users\Lukas\Downloads\DiscordSetup.exe 2016-03-07 15:36 - 2016-03-07 15:36 - 00001094 _____ C:\AdwCleaner[C3].txt 2016-03-07 15:31 - 2016-03-07 15:33 - 00000940 _____ C:\AdwCleaner[S3].txt 2016-03-07 14:51 - 2016-03-07 14:55 - 00000000 ____D C:\Users\Lukas\Desktop\RevoUninstallerPortable 2016-03-07 14:50 - 2016-03-07 14:45 - 02785665 ____N (PortableApps.com) C:\Users\Lukas\Desktop\RevoUninstallerPortable_1.95_Rev_2.paf.exe 2016-03-07 14:44 - 2016-03-07 14:44 - 00004771 _____ C:\AdwCleaner[C2].txt 2016-03-07 14:41 - 2016-03-07 14:42 - 00004263 _____ C:\AdwCleaner[S2].txt 2016-03-07 14:27 - 2016-03-14 13:38 - 00000000 ____D C:\FRST 2016-03-07 13:17 - 2016-03-07 13:17 - 00000000 ____D C:\Users\Lukas\AppData\Local\Unigraphics Solutions 2016-03-07 12:51 - 2016-03-07 12:51 - 00000000 __SHD C:\found.000 2016-03-05 14:35 - 2016-03-05 14:30 - 00985600 ____N C:\Users\Lukas\Desktop\MicrosoftFixit50123.msi 2016-03-02 17:25 - 2016-03-02 17:33 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\install 2016-03-02 17:24 - 2016-03-02 18:07 - 00000000 __SHD C:\Users\Lukas\Gu73246B57189 2016-03-02 17:24 - 2016-03-02 18:06 - 00000000 ____D C:\Users\Lukas\Ds78224R88177 2016-02-27 12:35 - 2016-02-27 12:35 - 00010250 _____ C:\Users\Lukas\AppData\Local\4BEEC7F234E54494BC31B63B5104251B.Dokument 2.fnf 2016-02-27 12:01 - 2016-02-27 12:01 - 00045901 _____ C:\Users\Lukas\Downloads\let-it-go-trumpet-clarinet-and-baritone-horn.pdf 2016-02-27 11:28 - 2016-02-27 11:28 - 00000000 ____D C:\Users\Lukas\Documents\Forte 2016-02-27 11:28 - 2016-02-27 11:28 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\FORTE 2016-02-27 11:26 - 2016-02-27 11:28 - 54695448 _____ (Lugert Verlag ) C:\Users\Lukas\Downloads\Setup_FORTE6PremiumT_de.exe 2016-02-27 11:25 - 2016-02-27 11:39 - 44101459 _____ (MakeMusic) C:\Users\Lukas\Downloads\nw_22918_finalenotepadexe.exe 2016-02-27 11:18 - 2016-02-27 11:24 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\MuseScore 2016-02-27 11:18 - 2016-02-27 11:18 - 00000000 ____D C:\Users\Lukas\Documents\MuseScore2 2016-02-27 11:18 - 2016-02-27 11:18 - 00000000 ____D C:\Users\Lukas\AppData\Local\MuseScore 2016-02-27 11:14 - 2016-02-27 11:17 - 55488512 _____ C:\Users\Lukas\Downloads\MuseScore-2.0.2.msi 2016-02-27 11:05 - 2016-03-07 15:19 - 00000000 ____D C:\Users\Lukas\Documents\PriMusFree 2016-02-27 11:05 - 2016-02-27 11:05 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Columbus Soft 2016-02-27 11:04 - 2016-02-27 11:04 - 03341128 _____ (Columbus Soft ) C:\Users\Lukas\Downloads\SetupPriMusFree.exe 2016-02-23 21:38 - 2016-02-23 20:59 - 449940993 ____N C:\Users\Lukas\Desktop\mi3.mp4 2016-02-21 12:54 - 2016-02-21 12:54 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2529834191_spectate.bat 2016-02-20 16:30 - 2016-02-20 16:30 - 02259195 _____ C:\Users\Lukas\Downloads\SkinPreview_2.4.0.0_US_BETA_updated-29-1-2016 (1).zip 2016-02-14 20:39 - 2016-02-14 20:39 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2521145290_spectate.bat 2016-02-14 17:54 - 2016-02-14 17:54 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520925620_spectate (1).bat 2016-02-14 17:53 - 2016-02-14 17:53 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520925620_spectate.bat 2016-02-14 14:02 - 2016-02-14 14:02 - 00000000 ____D C:\Users\Lukas\Documents\BnS 2016-02-14 14:02 - 2016-02-14 14:02 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Awesomium 2016-02-14 11:31 - 2016-02-14 11:31 - 00005912 _____ C:\Users\Lukas\Downloads\LOL_OPGG_Observer_2520117594_spectate.bat ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-03-14 13:38 - 2015-04-16 15:57 - 00000000 ____D C:\Program Files (x86)\Steam 2016-03-14 13:38 - 2014-01-12 16:26 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Skype 2016-03-14 13:36 - 2015-08-17 17:26 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-14 13:35 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-14 13:26 - 2012-04-11 06:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-14 13:21 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-03-14 13:21 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-03-13 20:59 - 2015-08-17 17:26 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-03-13 20:00 - 2014-09-28 11:06 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\TS3Client 2016-03-13 18:28 - 2014-01-12 14:54 - 00000000 ____D C:\Users\Lukas\Documents\Outlook-Dateien 2016-03-13 10:37 - 2014-01-15 16:24 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2016-03-13 10:37 - 2014-01-15 16:24 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2016-03-13 10:03 - 2014-01-14 17:10 - 00000000 ____D C:\Program Files (x86)\Origin 2016-03-12 20:21 - 2016-01-01 20:02 - 00000000 ____D C:\Users\Lukas\AppData\Local\Arma 3 Launcher 2016-03-12 16:42 - 2016-01-01 20:03 - 00000000 ____D C:\Users\Lukas\Documents\Arma 3 2016-03-11 20:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2016-03-11 17:09 - 2015-04-15 19:14 - 00000080 _____ C:\Users\Lukas\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 2016-03-11 16:00 - 2015-07-03 07:12 - 00000426 _____ C:\Windows\Tasks\One-Click Optimizer WO11.job 2016-03-11 13:35 - 2015-04-17 19:53 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-03-11 13:20 - 2015-10-19 17:07 - 00002184 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-03-11 13:20 - 2015-10-19 17:07 - 00000000 ___RD C:\Users\Lukas\OneDrive 2016-03-11 13:00 - 2009-07-14 05:45 - 05225896 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-10 21:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-03-10 21:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-03-10 20:26 - 2012-04-11 06:26 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-03-10 20:26 - 2012-04-11 06:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-03-10 20:26 - 2011-09-05 06:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-03-10 17:23 - 2015-07-27 14:41 - 00000000 ____D C:\Program Files\Common Files\AV 2016-03-10 15:38 - 2011-02-11 18:36 - 00000000 ____D C:\Windows\panther 2016-03-10 15:11 - 2010-11-21 07:50 - 00783212 _____ C:\Windows\system32\perfh007.dat 2016-03-10 15:11 - 2010-11-21 07:50 - 00177422 _____ C:\Windows\system32\perfc007.dat 2016-03-10 15:11 - 2009-07-14 06:13 - 00006526 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-09 19:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2016-03-09 18:30 - 2014-01-12 14:50 - 00000000 ____D C:\Users\Lukas 2016-03-09 18:28 - 2015-04-17 19:47 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-03-09 18:28 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media 2016-03-09 18:15 - 2014-01-10 22:15 - 00000000 ____D C:\Windows\system32\MRT 2016-03-09 18:15 - 2011-09-18 07:24 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-03-09 18:14 - 2014-12-12 15:15 - 00000000 ____D C:\Windows\system32\appraiser 2016-03-09 17:01 - 2011-07-22 14:49 - 00000000 ____D C:\Users\FAE 2016-03-07 19:56 - 2015-04-28 16:09 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Sony 2016-03-07 16:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-03-07 15:50 - 2014-05-18 09:29 - 00000000 ____D C:\Users\Maximilian 2016-03-07 15:50 - 2014-04-23 07:57 - 00000000 ____D C:\Users\Hannah 2016-03-07 15:49 - 2014-01-02 13:11 - 00000000 ____D C:\Users\Michael 2016-03-07 15:49 - 2011-07-22 15:23 - 00000000 ____D C:\Users\PFrey 2016-03-04 16:44 - 2015-06-14 14:31 - 00423424 ___SH C:\Users\Lukas\Downloads\Thumbs.db 2016-03-03 16:05 - 2015-12-30 14:03 - 02904064 _____ (GamingOnSteroids) C:\Users\Lukas\Desktop\Loader (2).exe 2016-03-02 17:25 - 2014-01-12 14:50 - 00000000 ____D C:\Users\Lukas\AppData\Local\VirtualStore 2016-02-28 13:15 - 2011-02-11 18:45 - 01625094 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-02-28 09:37 - 2014-06-29 08:37 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-02-28 09:02 - 2014-01-12 14:50 - 00182344 _____ C:\Users\Lukas\AppData\Local\GDIPFONTCACHEV1.DAT 2016-02-26 22:33 - 2015-04-05 02:00 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2016-02-26 22:33 - 2015-04-05 02:00 - 00000000 ___SD C:\Windows\system32\GWX 2016-02-24 19:26 - 2014-11-30 13:54 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\OBS 2016-02-23 15:52 - 2011-07-15 23:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-02-21 08:43 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-02-20 15:00 - 2015-08-17 19:40 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-02-17 19:54 - 2015-12-30 14:03 - 02628096 _____ (GamingOnSteroids) C:\Users\Lukas\Desktop\Loader (2).oldupd 2016-02-15 21:49 - 2014-07-09 16:55 - 00000000 ____D C:\Users\Lukas\AppData\Roaming\Audacity ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-11-23 13:08 - 2015-11-23 13:08 - 0187696 _____ () C:\Users\Lukas\AppData\Roaming\1.zip 2015-11-23 13:08 - 2015-11-23 13:08 - 0659742 _____ () C:\Users\Lukas\AppData\Roaming\2.txt 2015-12-01 07:31 - 2015-12-02 13:44 - 0000099 _____ () C:\Users\Lukas\AppData\Roaming\LauncherSettings_live.cfg 2015-12-02 13:06 - 2015-12-02 13:06 - 0000039 _____ () C:\Users\Lukas\AppData\Roaming\TheHunterSettings_steam_live.cfg 2016-02-27 12:35 - 2016-02-27 12:35 - 0010250 _____ () C:\Users\Lukas\AppData\Local\4BEEC7F234E54494BC31B63B5104251B.Dokument 2.fnf 2006-12-11 19:13 - 2006-12-11 19:13 - 0097336 _____ (Un4seen Developments) C:\Users\Lukas\AppData\Local\bass.dll 2006-12-11 19:13 - 2006-12-11 19:13 - 0013872 _____ (Un4seen Developments) C:\Users\Lukas\AppData\Local\basscd.dll 2007-08-13 17:46 - 2007-08-13 17:46 - 0102912 _____ (Albert L Faber) C:\Users\Lukas\AppData\Local\CDRip.dll 2014-05-25 16:00 - 2014-05-25 16:00 - 0000000 _____ () C:\Users\Lukas\AppData\Local\Input.xml 2007-08-13 17:46 - 2007-08-13 17:46 - 0155136 _____ () C:\Users\Lukas\AppData\Local\lame_enc.dll 2007-01-18 21:09 - 2007-01-18 21:09 - 0623616 _____ (Ivan Bischof ©2003 - 2005) C:\Users\Lukas\AppData\Local\No23 Recorder.exe 2005-08-23 22:34 - 2005-08-23 22:34 - 0029184 _____ () C:\Users\Lukas\AppData\Local\no23xwrapper.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0015872 _____ () C:\Users\Lukas\AppData\Local\ogg.dll 2015-11-13 18:40 - 2015-11-13 18:40 - 0001460 _____ () C:\Users\Lukas\AppData\Local\RecConfig.xml 2015-12-07 21:00 - 2015-12-07 21:00 - 0010072 _____ () C:\Users\Lukas\AppData\Local\recently-used.xbel 2015-10-04 12:31 - 2015-10-04 12:41 - 0007600 _____ () C:\Users\Lukas\AppData\Local\Resmon.ResmonCfg 2014-05-25 15:59 - 2014-05-25 15:59 - 0000000 _____ () C:\Users\Lukas\AppData\Local\Settings.xml 2006-10-26 01:06 - 2006-10-26 01:06 - 0143872 _____ () C:\Users\Lukas\AppData\Local\vorbis.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0064000 _____ () C:\Users\Lukas\AppData\Local\vorbisenc.dll 2006-10-26 01:06 - 2006-10-26 01:06 - 0019456 _____ () C:\Users\Lukas\AppData\Local\vorbisfile.dll Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\Users\Lukas\SimpleExtern.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-03-10 19:15 ==================== Ende von FRST.txt ============================ |
|
14.03.2016, 14:12
| #41 |
| /// TB-Ausbilder | trojaner keine windows uodates mehr Servus, nicht FRST, sondern FSS. |
|
14.03.2016, 14:23
| #42 |
| | trojaner keine windows uodates mehrCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Lukas (2016-03-14 13:42:31)
Gestartet von C:\Users\Lukas\Desktop
Windows 7 Professional Service Pack 1 (X64) (2011-07-22 13:49:29)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3487997803-1532060654-1365074507-500 - Administrator - Disabled)
ASPNET (S-1-5-21-3487997803-1532060654-1365074507-1010 - Limited - Enabled)
FAE (S-1-5-21-3487997803-1532060654-1365074507-1000 - Administrator - Disabled) => C:\Users\FAE
Gast (S-1-5-21-3487997803-1532060654-1365074507-501 - Limited - Disabled)
Hannah (S-1-5-21-3487997803-1532060654-1365074507-1005 - Limited - Enabled) => C:\Users\Hannah
HomeGroupUser$ (S-1-5-21-3487997803-1532060654-1365074507-1008 - Limited - Enabled)
Lukas (S-1-5-21-3487997803-1532060654-1365074507-1003 - Administrator - Enabled) => C:\Users\Lukas
Maximilian (S-1-5-21-3487997803-1532060654-1365074507-1006 - Limited - Enabled) => C:\Users\Maximilian
Michael (S-1-5-21-3487997803-1532060654-1365074507-1002 - Administrator - Enabled) => C:\Users\Michael
PFrey (S-1-5-21-3487997803-1532060654-1365074507-1001 - Administrator - Disabled) => C:\Users\PFrey
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
3Dconnexion 3DxSoftware (x64 Edition) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 3.13.1 - 3Dconnexion)
3Dconnexion 3DxWare (x64) (Version: 6.13.0001 - 3Dconnexion) Hidden
3Dconnexion Add-In for AutoCAD 2007 - 2010 (Version: 4.5.1 - 3Dconnexion) Hidden
3Dconnexion Add-In for Inventor 11 - 2012 (Version: 1.8.0 - 3Dconnexion) Hidden
3Dconnexion Collage (x32 Version: 1.3.0 - 3Dconnexion) Hidden
3Dconnexion Plug-in for Acrobat 3D (x32 Version: 1.1.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for NX v3.0 - v8.0 (Version: 2.9.0 - 3Dconnexion) Hidden
3Dconnexion Plug-In for Photoshop CS3 - CS5 (Version: 2.2.1 - 3Dconnexion) Hidden
3Dconnexion Trainer (x32 Version: 3.2.0 - 3Dconnexion) Hidden
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
A3Launcher version 0.0.1.9 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.1.9 - Maca134)
Adobe Acrobat X Standard - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-BA7E-000000000005}) (Version: 10.1.3 - Adobe Systems)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games)
Aerosoft's - Aerosoft Launcher (HKLM-x32\...\{EE11CFFC-898C-4875-8A63-8B732A9AD43B}) (Version: 1.2.0.3 - Aerosoft)
aerosoft's - OMSI 2 - Drei Generationen (HKLM-x32\...\{C88376AA-BF64-40F4-9AD6-F8A18DA394F2}) (Version: 1.20 - aerosoft)
aerosoft's - OMSI 2 - Hamburg (HKLM-x32\...\{5BF6B590-F7F5-46B5-B5F4-B0CA93423AD6}) (Version: 2.00 - aerosoft)
aerosoft's - OMSI 2 - Stadtbus O305 (HKLM-x32\...\{AE36259F-2F4F-44FA-87B7-3D1792ADDCA2}) (Version: 1.10 - aerosoft)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
Akamai NetSession Interface (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Akamai) (Version: - Akamai Technologies, Inc)
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version: - Reloaded Productions)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Ashampoo WinOptimizer 2015 v.11.00.50 (HKLM-x32\...\{4209F371-3276-A8F7-B851-845A83732AB4}_is1) (Version: 11.00.50 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoCAD Mechanical 2010 (HKLM\...\AutoCAD Mechanical 2010) (Version: 14.0.48.300 - Autodesk)
AutoCAD Mechanical 2010 (Version: 14.0.48.300 - Autodesk) Hidden
AutoCAD Mechanical 2010 Language Pack - Deutsch (Version: 14.0.48.300 - Autodesk) Hidden
AutoCAD Mechanical 2011 (HKLM\...\AutoCAD Mechanical 2011) (Version: 15.0.46.0 - Autodesk)
AutoCAD Mechanical 2011 (Version: 15.0.46.0 - Autodesk) Hidden
AutoCAD Mechanical 2011 Language Pack - Deutsch (Version: 15.0.46.0 - Autodesk) Hidden
Autodesk Design Review 2012 (HKLM-x32\...\Autodesk Design Review 2012) (Version: 12.0.0.93 - Autodesk, Inc.)
Autodesk Design Review 2012 (x32 Version: 12.0.0.93 - Autodesk, Inc.) Hidden
Autodesk Design Review Browser Add-on v1.2 (HKLM-x32\...\{CD49E43B-88B1-48AD-A3AF-43FAAAB41CB8}) (Version: 1.2.0 - Autodesk)
Autodesk Inventor 2010 (Version: 14.0.0000.22302 - Autodesk, Inc.) Hidden
Autodesk Inventor 2010 Deutsch (German) (HKLM\...\Autodesk Inventor 2010) (Version: 14.0.0000.22302 - Autodesk, Inc.)
Autodesk Inventor 2010 Language Pack - Deutsch (Version: 14.0.0000.22302 - Autodesk, Inc.) Hidden
Autodesk Inventor 2011 (Version: 15.1.0000.28200 - Autodesk) Hidden
Autodesk Inventor 2011 Deutsch (HKLM\...\Autodesk Inventor 2011) (Version: 15.1.0000.28200 - Autodesk)
Autodesk Inventor 2011 Language Pack - Deutsch (Version: 15.0.0000.23900 - Autodesk) Hidden
Autodesk Inventor 2011 SP1 (HKLM\...\Autodesk Inventor 2011 SP1) (Version: 15.1.0000.28200 - Autodesk)
Autodesk Inventor 2012 (Version: 16.0.16000.0000 - Autodesk) Hidden
Autodesk Inventor 2012 Deutsch (HKLM\...\Autodesk Inventor 2012) (Version: 16.0.16000.0000 - Autodesk)
Autodesk Inventor 2012 Language Pack - Deutsch (Version: 16.0.16000.0000 - Autodesk) Hidden
Autodesk Inventor Content Center Libraries 2010 (Desktop Content) (HKLM\...\{EF90F06A-3B2D-48E3-8C7A-1F2210200476}) (Version: 14.0.0000.22302 - Autodesk, Inc.)
Autodesk Inventor Content Center Libraries 2011 (Desktop Content) (HKLM\...\{7244B345-B413-408B-9D04-F55BE1CC93FA}) (Version: 15.0.0000.23900 - Autodesk, Inc.)
Autodesk Material Library 2011 (HKLM-x32\...\{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}) (Version: 2.0.0.49 - Autodesk)
Autodesk Material Library 2011 Base Image library (HKLM-x32\...\{CD1E078C-A6B9-47DA-B035-6365C85C7832}) (Version: 2.0.0.49 - Autodesk)
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2012 (HKLM-x32\...\{24FF088D-CDCF-480C-8A4B-98F14A54CAA8}) (Version: 2.5.0.8 - Autodesk)
Autodesk SketchBook Designer 2012 - Deutsch (HKLM\...\Autodesk SketchBook Designer 2012 - Deutsch) (Version: 2.00.0000 - Autodesk)
Autodesk SketchBook Designer 2012 - Deutsch (Version: 2.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer 2012 - German (Version: 2.00.0000 - Autodesk) Hidden
Autodesk Vault 2011 (Client) (HKLM-x32\...\Autodesk Vault 2011 (Client)) (Version: 15.0.58.0 - Autodesk, Inc.)
Autodesk Vault 2011 (Client) (Version: 15.0.58.0 - Autodesk, Inc.) Hidden
Autodesk Vault 2011 (Client) German Language Pack (Version: 15.0.58.0 - Autodesk) Hidden
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.1.731 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden
Bussim (HKLM\...\{c5d26244-657d-4856-9d35-b9557a3fdc9d}.sdb) (Version: - )
Bus-Simulator 2012 (HKLM-x32\...\Bus-Simulator 2012_is1) (Version: - astragon)
CCleaner (HKLM\...\CCleaner) (Version: 3.10 - Piriform)
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Construction-Simulator 2015 (HKLM-x32\...\Steam App 289950) (Version: - weltenbauer. Software Entwicklung GmbH)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink PowerDVD 9.5 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.5.1.3225 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dell Backup and Recovery Manager (HKLM\...\{50B4B603-A4C6-4739-AE96-6C76A0F8A388}) (Version: 1.3.1 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden
Discord (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\Discord) (Version: 0.0.286 - Hammer & Chisel, Inc.)
Disk Space Fan 4 Free 4.5.1.129 (HKLM-x32\...\Disk Space Fan 4 Free_is1) (Version: - Disk Space Fan Team)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.8.0.13 - DivX, LLC)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Druckerdeinstallation für EPSON BX635FWD Series (HKLM\...\EPSON BX635FWD Series) (Version: - SEIKO EPSON Corporation)
Dungeon Defenders (HKLM-x32\...\Steam App 65800) (Version: - Trendy Entertainment)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version: - Trendy Entertainment)
Dungeons & Dragons Online® (HKLM-x32\...\Steam App 206480) (Version: - Turbine, Inc)
DWG TrueView 2010 (HKLM\...\DWG TrueView 2010) (Version: 18.0.55.0 - Autodesk)
DWG TrueView 2010 (Version: 18.0.55.0 - Autodesk) Hidden
DWG TrueView 2011 (HKLM\...\DWG TrueView 2011) (Version: 18.1.49.0 - Autodesk)
DWG TrueView 2011 (Version: 18.1.49.0 - Autodesk) Hidden
DWG TrueView 2012 (HKLM\...\DWG TrueView 2012) (Version: 18.2.51.0 - Autodesk)
DWG TrueView 2012 (Version: 18.2.51.0 - Autodesk) Hidden
EA SPORTS FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.1.0.50515 - Electronic Arts, Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
erLT (x32 Version: 1.20.0137 - Logitech, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
F1 2011 (HKLM-x32\...\Steam App 44360) (Version: - Codemasters Birmingham)
Fanaleds (HKLM\...\{ef0363c7-3a85-4e93-ab0e-2df5fa1f16bd}.sdb) (Version: - )
FanaLEDs (HKLM-x32\...\FanaLEDs) (Version: 2.2 - Gerben bol & Dirk Teurlings)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Female Voice Pack (HKLM-x32\...\{71F8C486-8A13-468E-8B73-06051075556A}) (Version: 3.3.1 - Screaming Bee)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Furry Voices for Second Life (HKLM-x32\...\{0DB44859-4112-4946-BE5E-A4275B3FFB5E}) (Version: 1.3.0 - Screaming Bee)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto)
Hitman Absolution (HKLM-x32\...\{95030349-3623-4920-89BF-8BEC5EF311C5}_is1) (Version: 1.0433.1 - Square Enix)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 15.7.176.1 (HKLM\...\PROSetDX) (Version: 15.7.176.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Ipswitch WS_FTP 12 (HKLM-x32\...\{AD88355B-A4E0-4DA1-BAC3-EA4FEA930691}) (Version: 12.3 - Ipswitch)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java(TM) 6 Update 24 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416024FF}) (Version: 6.0.240 - Oracle)
Java(TM) 6 Update 26 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216024FF}) (Version: 6.0.260 - Oracle)
Juniper Networks Network Connect 7.4.0 (HKLM-x32\...\Juniper Network Connect 7.4.0) (Version: 7.4.0.27757 - Juniper Networks)
Juniper Networks, Inc. Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{02FECEE0-16B2-43DB-BC3B-C844477FC142}) (Version: 15.0.2.396 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.2.396 - Kaspersky Lab) Hidden
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.0.1.0 - Lightworks)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech)
Loksim3D (HKLM\...\Loksim3D_is1) (Version: 2.8.3 - Loksim3D)
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.9.22 - www.leaguereplays.com)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Marvel Heroes 2015 (HKLM-x32\...\Steam App 226320) (Version: - Gazillion Entertainment)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version: - BioWare)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version: - BioWare)
Mass Effect™ 3 Demo (HKLM-x32\...\{A1683CA7-4850-4A21-982B-C6D853C79AF7}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts)
MEDUSA NX USB 5.1 Gaming Headset (HKLM\...\C-Media CM106 Like Sound Driver) (Version: - )
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.6568.2025 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\OneDriveSetup.exe) (Version: 17.3.6302.0225 - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008) (Version: - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 (KB971118) (HKLM-x32\...\Microsoft Report Viewer Redistributable 2008 (KB971118)) (Version: - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MK LOL (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\MK LOL) (Version: - )
MorphVOX Pro (HKLM-x32\...\{DE289787-7ECA-4BED-9D8C-99FAC407E3D6}) (Version: 4.3.13 - Screaming Bee)
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
msxml4 (HKLM-x32\...\{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}) (Version: 1.0.0 - Default Company Name)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
No23 Recorder (HKLM-x32\...\{22B0E143-2B0B-435B-9F56-136A3D16065F}) (Version: 2.1.0.3 - No23)
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5929 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA nView 141.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.24 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA WMI 2.15.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.15.0 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.11.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6528.1011 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6528.1011 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6528.1011 - Microsoft Corporation) Hidden
OMSI 2 (HKLM-x32\...\Steam App 252530) (Version: - MR-Software GbR)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenLibraries (HKLM-x32\...\OpenLibraries) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
PARTcommunity 3D Web Viewer (HKLM-x32\...\{F6C0D92C-7EBC-4CEE-A0DD-BCE6ADB50E22}) (Version: 1.0.36.11 - CADENAS)
Personality Voices (HKLM-x32\...\{29C042AB-059B-414C-840E-94775E3F24A8}) (Version: 1.0.0 - Screaming Bee)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden
PingPlotter 4.01.2 (HKLM-x32\...\{7C20D443-1352-49AB-90D8-71CC34C50917}) (Version: 4.1.2.14 - Pingman Tools, LLC)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Rapture3D 2.4.9 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5883 - Realtek Semiconductor Corp.)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.2 - Rockstar Games)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (Version: 1.3.2 - Roxio) Hidden
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version: - Volition)
Sakura Clicker (HKLM-x32\...\Steam App 383080) (Version: - Winged Cloud)
Schnell-Deinstallations-Tool für Autodesk Product Design Suite 2012 (HKLM\...\{D28EFBA5-1664-4B79-946A-000BE950E8E2}) (Version: 16.0.16000.0000 - Autodesk)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.111 - Skype Technologies S.A.)
Sniper Elite 3 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Spyder5Pro (HKLM-x32\...\Spyder5Pro) (Version: - )
Star Wars - Battlefront II (HKLM-x32\...\Steam App 6060) (Version: - Pandemic Studios)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: - Bioware/EA)
Star Wars: The Force Unleashed II (HKLM-x32\...\Steam App 32500) (Version: - Aspyr Studios)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)
theHunter (HKLM-x32\...\Steam App 253710) (Version: - Expansive Worlds)
Theme Hospital (HKLM-x32\...\{5118A4C2-C8A4-4CE5-AC37-F3E51C25402F}) (Version: 3.0.0.2 - Electronic Arts)
Tomb Raider: Underworld (HKLM-x32\...\Steam App 8140) (Version: - Crystal Dynamics)
TOSHIBA Netzwerk-Scannertreiber (HKLM-x32\...\ToshibaNetTWAIN) (Version: - Wordcraft International Limited)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.353 - TuneUp Software) Hidden
UGS NX 6.0 (HKLM\...\{A37D76E1-38C4-4A58-A597-BD7C765FB8CF}) (Version: 6.0.0.24 - UGS)
VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VBA (2701.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 11.0 (64-bit) (HKLM\...\{7E3B2D0F-029B-11E2-BD68-F04DA23A5C58}) (Version: 11.0.701 - Sony)
Vegas Pro 13.0 (64-bit) (HKLM\...\{787F5FA1-CCC3-11E4-ABD4-F04DA23A5C58}) (Version: 13.0.444 - Sony)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wooxy version 1.2 (HKLM-x32\...\{C183CD14-47D8-4F98-AF06-4744CB834C8E}_is1) (Version: 1.2 - Chewy)
World of Guns: Gun Disassembly (HKLM-x32\...\Steam App 262410) (Version: - Noble Empire Corp.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-3487997803-1532060654-1365074507-1003_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {059E889B-4643-44AC-A8BA-3655412D3A3F} - System32\Tasks\{B6250C77-5AB3-4C11-96BE-61314EE2E72F} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {0B1EF88B-8DEF-414B-A3FD-06E8C599E67D} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3487997803-1532060654-1365074507-1000
Task: {16B06E03-DDC5-4892-9430-C51899A48095} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-17] (Google Inc.)
Task: {201FA5A7-E30F-4C55-9879-5043E16076F2} - System32\Tasks\{2AE0AE68-F989-4438-A80F-CCCD7486EC32} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {2BAB892D-AF03-40F2-BFC7-99E957056E64} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-02-23] (Microsoft Corporation)
Task: {2C9ED333-0E4C-48CF-934A-4F0266878831} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-02-04] (Microsoft Corporation)
Task: {3D663E4E-93FD-433B-A2E8-AC6EAF9FC02C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-17] (Google Inc.)
Task: {4081A9E0-3239-49AD-8375-7A6F4E245110} - System32\Tasks\{AD3F3399-3AE7-4745-BCDA-A3A0700D2BE0} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {4226F76B-A41D-4879-BE18-FF68E2C1D8D5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {44FD3788-08AE-4C41-9FB2-F7FDEF34DB00} - System32\Tasks\One-Click Optimizer WO11 => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe [2015-01-05] (Ashampoo Development GmbH & Co. KG)
Task: {7D4C1D38-3B65-486A-8AC0-370D520B1C60} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {8453474B-8B3E-49F8-859B-097AED1E0098} - System32\Tasks\{FD404819-2B7F-4103-B8F7-1CD6EAE18EBF} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {87036BB7-61DA-481E-BF4B-3566A799F759} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {915C7735-1D6D-4660-942F-401D2E375269} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {99371ABB-5D4E-4C3F-A20C-1F5C268DBBB9} - System32\Tasks\{600C58C3-4CD4-4EFD-B9A1-E128C0871C49} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {9AE044CF-CD14-4AF8-894B-FF00E91C93B8} - System32\Tasks\{8F8A23AD-9F3C-45EC-AE7A-46917BEDC8F2} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
Task: {9B23EDD0-913F-487D-81B1-3ED13513627D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-10] (Adobe Systems Incorporated)
Task: {B261EF36-3297-43AD-85FA-807DEEBCD314} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-02-04] (Microsoft Corporation)
Task: {BDA2F11F-F22F-44E3-AADE-5BB9B88F775A} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\DivXUpdate.exe [2015-11-30] (DivX, LLC)
Task: {D0BAD004-6A8B-4160-8A7E-126C65D158DC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {D24C25DB-A6EF-4E9D-A4EC-3E2EAFC6FCDB} - System32\Tasks\{BFA994B8-BE01-4CBD-877D-6C87F30B5454} => pcalua.exe -a "C:\Program Files (x86)\MKJogo\MK IM\Bin\uInst.exe"
Task: {DAA1F9A8-97A8-42E8-A51A-FE29117C69B7} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {EA82B0E4-85A7-4085-B5F2-0130F9E25ECB} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03] (Adobe Systems Incorporated)
Task: {F6F741EF-61FF-455F-BFDD-5BA194E7EECE} - System32\Tasks\{028F3DEC-334E-4191-8600-B67A45E3280F} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe [2015-07-09] (Kaspersky Lab ZAO)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\One-Click Optimizer WO11.job => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2015\WO2015.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-01-19 15:57 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-19 16:29 - 2016-02-04 05:51 - 00173256 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-09-12 15:33 - 2015-09-12 15:33 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-05-01 15:13 - 2014-05-01 15:13 - 00470016 _____ () C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX64.dll
2011-09-02 10:24 - 2009-07-20 11:35 - 00018960 _____ () C:\Program Files\Logitech\SetPoint\khalwrapper.dll
2015-01-29 10:02 - 2015-03-10 23:00 - 07374950 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility.exe
2011-09-02 10:24 - 2009-07-20 03:00 - 00077824 _____ () C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
2016-03-10 17:12 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-03-10 17:12 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-03-10 17:12 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-03-10 17:12 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2016-03-10 17:12 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-09-12 14:02 - 2015-08-27 01:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-05-01 15:15 - 2014-05-01 15:15 - 00463360 _____ () C:\Users\Lukas\AppData\Local\MEGAsync\ShellExtX32.dll
2016-01-11 10:36 - 2016-01-11 10:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 01865216 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RBGUIFramework.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00096256 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Appearance Pak.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00090112 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RegEx.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 05340672 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\RBScript.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00031744 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\Shell.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00293376 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\XML.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00274432 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\CGamma.dll
2015-03-10 22:57 - 2015-03-10 22:36 - 00110592 _____ () C:\Program Files (x86)\Datacolor\Spyder5Pro\Utility\SpyderUtility Libs\CSensor.dll
2012-04-04 06:54 - 2012-04-04 06:54 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2016-02-12 19:29 - 2016-02-12 19:29 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5eb8f854950c428c64f668e63c5a0498\IsdiInterop.ni.dll
2011-07-15 23:41 - 2010-11-05 23:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-04-16 16:01 - 2016-02-10 02:17 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-04-16 16:01 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-04-16 16:01 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-04-16 16:01 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-04-16 16:01 - 2016-03-10 20:02 - 02547792 _____ () C:\Program Files (x86)\Steam\video.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-04-16 16:01 - 2016-02-09 00:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-04-16 16:01 - 2016-03-10 20:02 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 15:47 - 2016-02-17 23:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-03-14 13:40 - 2016-03-14 13:40 - 00155232 ___HT () C:\Users\Lukas\AppData\Local\Temp\~1747.tmp
2015-04-16 16:01 - 2016-02-09 02:33 - 48400672 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-04-16 16:01 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2015-06-12 13:15 - 2015-12-10 10:19 - 00103424 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
2015-06-12 13:14 - 2016-03-03 13:50 - 00198144 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\bin\launcher.dll
2015-06-12 13:12 - 2015-12-10 10:19 - 00317952 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\bin\tier0.dll
2015-06-12 13:15 - 2016-02-19 15:15 - 00203776 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\bin\vstdlib.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 00390656 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\bin\filesystem_stdio.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 06931456 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\engine.dll
2015-06-12 13:14 - 2016-03-03 13:50 - 00166912 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\inputsystem.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 01174016 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\vphysics.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 01242112 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\materialsystem.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 00355840 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\datacache.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 00610816 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\studiorender.dll
2015-06-12 13:14 - 2016-03-03 13:50 - 00164864 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\soundemittersystem.dll
2015-06-12 13:12 - 2016-02-19 15:16 - 00708096 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\vscript.dll
2015-06-12 13:15 - 2016-03-03 13:50 - 00134656 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\valve_avi.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 01336320 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\vguimatsurface.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 00395264 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\vgui2.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 03276288 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\scaleformui.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 01769984 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\bin\shaderapidx9.dll
2015-06-12 13:14 - 2016-03-03 13:50 - 00143360 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\localize.dll
2015-06-12 13:14 - 2016-02-19 15:16 - 00230912 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\stdshader_dbg.dll
2015-06-12 13:12 - 2016-02-27 10:10 - 01016832 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\stdshader_dx9.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 00585216 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\csgo\bin\matchmaking.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 12678144 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\csgo\bin\client.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 10238976 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\csgo\bin\server.dll
2015-06-12 13:15 - 2016-02-19 15:16 - 00094208 _____ () K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\bin\scenefilecache.dll
2015-06-12 13:14 - 2016-02-27 10:10 - 00084992 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\vaudio_miles.dll
2015-06-12 13:14 - 2015-06-12 13:14 - 00071680 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\mssmp3.asi
2015-06-12 13:14 - 2015-06-12 13:14 - 00012800 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\mssds3d.flt
2015-06-12 13:14 - 2015-06-12 13:14 - 00055808 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\msseax.flt
2015-06-12 13:14 - 2016-02-19 15:16 - 00173568 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\vaudio_celt.dll
2015-06-12 13:12 - 2016-03-03 13:50 - 00974336 _____ () k:\lukas\steam\steamapps\common\counter-strike global offensive\bin\serverbrowser.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Lukas:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Lukas\AppData\Local\Temporary Internet Files:T6aG7k2EloPGhg2A0BBgTuFVUlM [2208]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3487997803-1532060654-1365074507-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{5D452C63-9479-437C-B873-689F896B4282}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{89334483-4E9C-4746-BC75-E34A06CD610D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{B7435958-7927-4E78-BC57-FD4A3467B534}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{6080F99A-D3F9-4412-8A74-3CB375ED4B13}] => (Allow) LPort=2869
FirewallRules: [{F7BCD92D-1741-460A-B88D-6FA64D223A62}] => (Allow) LPort=1900
FirewallRules: [{201731A7-275A-46D1-ACD7-BE4BCF284823}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{F0A7AF7C-928F-4909-A4BA-3ED1AF297CC1}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{0ACEC0F8-27B5-4BDD-BE7A-7A32E99DF6AB}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [UDP Query User{E4138393-4553-44FF-86EF-A9258F622C7D}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [TCP Query User{E34515CC-0174-4104-B3BC-65EBCB83F0E8}C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe] => (Allow) C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe
FirewallRules: [UDP Query User{B94DA7C4-B4F3-4EAE-BC0F-17A234D0D404}C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe] => (Allow) C:\program files (x86)\ipswitch\ws_ftp 12\wsftpgui.exe
FirewallRules: [{3D1B7EA9-2533-4626-A0F2-462B0BC4C2F4}] => (Allow) C:\Users\FAE\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [{5CCE4D07-496E-4167-AEAD-DC1D9FA7DEC1}] => (Allow) C:\Users\FAE\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [TCP Query User{60D8F60D-5ECA-414F-A40D-54912CF43901}C:\users\fae\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fae\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{7E733462-1B12-4C0C-91E3-B17DB79516AE}C:\users\fae\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\fae\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{6F83511A-FED8-41A9-83B4-6877707AED5E}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [UDP Query User{E9753F16-FB62-454E-A6C1-B75BEA3F8F6B}C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe] => (Allow) C:\programdata\heidelberg\plm\ugnx664\ugii\ugraf.exe
FirewallRules: [TCP Query User{A40CEE67-7F1F-4A0F-8A3C-EF3BF599F3F5}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{7B703F50-D1CE-4E38-A3A4-11D75A739840}C:\program files\java\jre6\bin\javaw.exe] => (Allow) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [{459157BD-3D72-45B6-9739-C23845E52B13}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{C050BF05-8E33-4A08-B294-86A969F0C82E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{ECC70DDA-5DE1-45D7-8DB6-A5CEEC0E89EC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C4D9A229-C842-4826-A797-17480083690A}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{49AEBCFF-4B75-4976-BCA2-BD8B00867456}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [TCP Query User{EFFA2F0B-7234-4A7E-86CC-652CC447EF59}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [UDP Query User{44A64C55-1C99-4C91-B87E-80D86A09939A}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [{69321F5D-8E74-49EB-8DD6-D03E1164574C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{971756FA-884D-4C62-9632-AEE3ECB5D492}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E8B385C3-E2B0-4C8B-A98E-6D25E518CB38}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{2D63412E-35C0-42A6-BA3B-663074F7A607}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
FirewallRules: [{41B9A423-5AB0-476C-BAD9-FCF91AB0FB31}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [{7F44A231-5923-41A1-9283-BDA3600AE70F}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [TCP Query User{F93802D8-E3AB-4967-B132-8BC335C6430D}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe
FirewallRules: [UDP Query User{78A44ACD-E1ED-4203-B198-4863B49FE3CB}C:\games\counter-strike\hl.exe] => (Allow) C:\games\counter-strike\hl.exe
FirewallRules: [TCP Query User{4369F8A9-331D-45F1-8C89-50458498939F}C:\games\counter-strike\hl.exe] => (Block) C:\games\counter-strike\hl.exe
FirewallRules: [UDP Query User{0A40D07B-F272-4C17-B0A8-5286CD74CA12}C:\games\counter-strike\hl.exe] => (Block) C:\games\counter-strike\hl.exe
FirewallRules: [{00B26B4E-FC40-4643-801C-0942993B8C37}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{4B764D12-CDE6-4CF5-AD45-6AE220C3CB8C}] => (Allow) C:\Program Files\Lightworks\Lightworks.exe
FirewallRules: [{E8690C5E-D090-408C-B810-96AF9C39A13B}] => (Allow) C:\Program Files\Lightworks\Lightworks.exe
FirewallRules: [{53C3AA17-8F31-45FC-815E-331A9AF3AB28}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{0C29D8C6-79B3-4544-BB80-9BAB5BA89D1C}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{13F98D77-53E7-47C0-829C-31EE7ACAFDD8}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{B6F37F3A-F1F4-4C81-A2EB-32EC69539359}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{84891022-D81A-4F85-830C-4A3F860BC085}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{8878B615-AF89-4C45-89F3-1E4281379E47}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [TCP Query User{6CB59B7C-8134-4C00-A752-C17583CC22CE}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{652FA8C2-AFCA-4FEB-99CD-699E6FE2A346}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{3F0DB2D7-B5A2-401F-8E1D-DE2499829A99}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{2A654092-FA4D-4B5E-A3D6-B6C3293607F3}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{36EBA1D3-A8CF-49EC-8BBF-209903FBCBCC}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{035F25D1-A6C6-482C-B256-25A475F0C088}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{87F9181B-CCEA-4064-9A7E-6D7B6B7C11B6}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{3ADBD301-D680-4D2B-9D65-ED586EAC233C}C:\users\lukas\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\lukas\appdata\local\akamai\netsession_win.exe
FirewallRules: [{8F126B0E-5EBF-4B84-9659-8379C8EE57AC}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{7855E9F4-F009-4FE8-AF3F-23A958147508}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{1C298228-8FA7-4456-806F-3F7A6378E39B}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{FAC6B656-F7EB-46AE-8DC6-E7D5BB543FDE}] => (Allow) C:\Program Files (x86)\Origin Games\Theme Hospital\data\Game\DOSBox\LAUNCHER.exe
FirewallRules: [{F7EB7C8A-9B1C-4213-8783-618F914B9699}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [{D8B1C1E1-BA01-4AAE-8B0F-96D50CDE15E0}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3 Demo\Binaries\Win32\MassEffect3Demo.exe
FirewallRules: [TCP Query User{E3141E67-166B-4825-B2C2-9509FAA31162}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{88A0CBFB-C890-4636-8F15-800FC7C89E65}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F2E38334-7740-4908-883D-D0976D51787A}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{524DB623-6CA3-45BB-9AF3-72CBFAEEBE16}] => (Allow) K:\Lukas\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{07C63611-CDF1-4DAE-BC32-670D644E6C1D}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{EE9CD36F-57DB-4F10-A3C8-B4DC9031660A}K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) K:\lukas\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{512895B2-8289-4690-9DEA-36D8FB5ACA2D}] => (Allow) K:\Lukas\Steam\steamapps\common\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{1E46B301-1A11-423B-9A8C-EE07446991F7}] => (Allow) K:\Lukas\Steam\steamapps\common\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{D4666E0C-91D5-4A8C-A304-50E8E614F5E5}] => (Allow) K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E1BC7A05-810C-4254-9DC0-D97DF0B817FD}] => (Allow) K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{83399DAC-2858-4F3A-80D5-915B9235B57A}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [UDP Query User{5DA9B07B-D913-4A90-8981-0D265923986B}C:\program files (x86)\city car driving home edition\bin\win32\starter.exe] => (Allow) C:\program files (x86)\city car driving home edition\bin\win32\starter.exe
FirewallRules: [{537EB141-94FD-4516-9924-E593760E4EFB}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{8271DFBA-CC0F-46A7-ADBB-2062A3BB2373}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{8B0295F0-2631-4EE2-A61D-5E4DA67E3C93}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{916C9A08-6960-4305-B529-7ACAEA5A0A69}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{82362B9F-13DB-4B78-8EDA-0B7762A011F0}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{A097C9E4-32EF-4C1E-B593-33C4B0B7648F}] => (Allow) K:\Lukas\Steam\steamapps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{6A3ACEEF-7A5A-49FF-915E-6815383FD49C}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{CBFA2B4D-D396-4A9B-9B47-26F18C1D5093}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{CB124C83-BAFA-42CB-83FD-324AAE7513CE}] => (Allow) K:\Lukas\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{8256E539-A9A6-4EE3-8C90-B89BA68906E3}] => (Allow) K:\Lukas\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{0A08E891-2230-42B0-B12B-88C697DD20B3}] => (Allow) K:\Lukas\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{655A5F8D-C803-4FD7-B023-884A7C55F9C4}] => (Allow) K:\Lukas\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{C87B4C35-FC90-4D2C-8725-E577DC5A4D5B}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{5E9B6939-BC35-4B76-A986-3999059926D3}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{915CD9D7-5611-4924-B16F-80B686F320A7}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{C167CF2A-2B5A-45C2-84CD-D8F02E477DA8}] => (Allow) K:\Lukas\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{CBA29815-E2FD-4CD4-A891-B86E0FB3C07A}] => (Allow) K:\Lukas\Steam\steamapps\common\Tomb Raider Underworld\tru.exe
FirewallRules: [{A8197DF4-8865-469A-AF56-BD053B472024}] => (Allow) K:\Lukas\Steam\steamapps\common\Tomb Raider Underworld\tru.exe
FirewallRules: [TCP Query User{3E4B8392-9CFB-4193-A58B-2051AEA92EEF}C:\program files (x86)\funcom\age of conan\conanpatcher.exe] => (Allow) C:\program files (x86)\funcom\age of conan\conanpatcher.exe
FirewallRules: [UDP Query User{1011140F-816B-455B-B70C-B4B327369A17}C:\program files (x86)\funcom\age of conan\conanpatcher.exe] => (Allow) C:\program files (x86)\funcom\age of conan\conanpatcher.exe
FirewallRules: [TCP Query User{BADF87F4-8225-46F6-B78D-571E3CC83DA9}C:\program files (x86)\funcom\age of conan\ageofconan.exe] => (Allow) C:\program files (x86)\funcom\age of conan\ageofconan.exe
FirewallRules: [UDP Query User{E5FB49E2-D863-42DA-8233-74F7E9C0F721}C:\program files (x86)\funcom\age of conan\ageofconan.exe] => (Allow) C:\program files (x86)\funcom\age of conan\ageofconan.exe
FirewallRules: [{A07F36B9-BE80-4B13-BED2-579E4D416BA1}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6A345780-8883-4B1B-80BD-B011D545CE01}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6695EE49-0FE9-48A1-9278-C2255AD18C88}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8FEC110B-0F27-40C7-A105-2C570BF1C08A}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D96FB8F4-04E6-4617-A399-186766772B68}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{71708B96-EC02-4D6C-AC9A-57BAED9A7780}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{87C8387D-2215-479C-A2BF-B9CC1F9A15EB}] => (Allow) C:\Program Files (x86)\Rising\RAV\ravmond.exe
FirewallRules: [{CC4707AF-DB85-4C28-834F-76027B37DF18}] => (Allow) C:\Program Files (x86)\Rising\RAV\ravmond.exe
FirewallRules: [{1B133D53-9ED1-4FF1-A3A2-2045C450A4A6}] => (Allow) K:\Lukas\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{7FC17907-2EC9-4A5E-A2B0-F5E242D85F57}] => (Allow) K:\Lukas\Steam\steamapps\common\OMSI 2\Omsi.exe
FirewallRules: [{0655CD51-9FCE-45C4-A6EA-3F73A1C6AC02}] => (Allow) K:\Lukas\Steam\steamapps\common\Marvel Heroes\UnrealEngine3\Binaries\Win64\MarvelHeroes2015.exe
FirewallRules: [{947D3D58-536A-4AAC-B2E1-20C8D8D2EC59}] => (Allow) K:\Lukas\Steam\steamapps\common\Marvel Heroes\UnrealEngine3\Binaries\Win64\MarvelHeroes2015.exe
FirewallRules: [{8EB97C84-4979-468D-B46F-7717CD0A71CA}] => (Allow) K:\Lukas\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{60AF5B1D-8CBC-43DC-BB66-AFCC5056091E}] => (Allow) K:\Lukas\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{623C2EDD-522D-4C1A-AE0D-9596095BA29A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F30096B7-39A3-4D1A-8114-E23BB1589D80}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5E974484-2767-48E1-884D-A34A9E682126}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{202419E4-B13A-4C84-9C70-C549C7AFA2D4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{AA77257F-2701-4E16-9BCE-5F295A0FC8C4}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A20E34A8-723F-48B5-A1ED-7C48BFD380D2}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A2DC1F7C-DFCB-474D-939E-1C8FE2C6D066}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1B772121-C76A-4107-88D4-7B6395FE7E6A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8B87CF59-AF10-4E76-8C6F-C13D86ED0250}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{74CD9A82-014E-4EE2-81FB-DDF10E2D7A5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{2BD620F3-809A-429B-9091-AB849E8F3275}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{7F4E454E-3218-4FB7-AC24-76930CB37BF1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{36FC2A01-D5F1-4312-A02E-E5292E30B325}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{528F95A8-59BF-4AA8-884A-12A8E7C64706}] => (Allow) K:\Lukas\Steam\steamapps\common\WOG\disasm.exe
FirewallRules: [{00B24C5A-7BA6-4E5E-9770-4C18ED725A87}] => (Allow) K:\Lukas\Steam\steamapps\common\WOG\disasm.exe
FirewallRules: [{2E15424C-B496-402B-A5FD-90A4F6BEB3A8}] => (Allow) K:\Lukas\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{B5209676-9FA8-4F7F-9AAC-40910F2DC04A}] => (Allow) K:\Lukas\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{FEB40698-5810-4846-8F89-8C154C88CD09}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{FE7399E8-5056-458A-9D3F-9EB3F31BC6ED}] => (Allow) C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{5A7DC731-120E-490D-9903-62C7073D805E}] => (Allow) K:\Lukas\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{8AA02C6C-DE81-458C-90B8-8468BB5C5AE4}] => (Allow) K:\Lukas\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{F1CB70D9-CC8F-40D2-861B-D9C07DE5C125}] => (Allow) K:\Lukas\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{DCBE4494-A4C1-4D34-9F4C-B26A01EDA384}] => (Allow) K:\Lukas\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{4CE1D774-51B1-4ABD-BBC0-ED2365F65294}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DB4B5B9F-7593-4D52-B6A5-D72031AE1E6C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A20B8BE7-86C7-4538-B66E-4EDE5D4169F1}] => (Allow) K:\Lukas\Steam\steamapps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{AC94B8AE-0031-47F2-BC8A-4BAF860DF5A3}] => (Allow) K:\Lukas\Steam\steamapps\common\Sakura Clicker\Sakura Clicker.exe
FirewallRules: [{9139C557-22FD-4B25-8765-1BA09FCDEF8D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{65B4B419-0E79-4A02-9EC8-9E70AAD40204}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BE969F7B-719F-44A1-89B2-5F9DFC371514}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5DEEC4B4-3681-45B5-B90D-860062AE90F7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{3E09CF44-E044-4103-848B-ED96B705E7CA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{32D7E3A3-4C33-4840-8024-16FF9F49596F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{08CDC6F6-5078-4DE8-9837-8E395337E6C1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{ECD10E0A-79A3-4BCB-9141-2C838733352F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{AB377868-016B-42D9-AC55-68056E999DC4}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{8D72B61F-9523-4D87-AF7C-E37CD6420CF1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{98716E9A-EEBD-4DC8-84FE-40DAB613B599}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{637A00D9-F61E-4E9A-837D-46455B5BCBE7}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{672F8838-6EBA-45F9-BD3A-20ED55F1C28F}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{9FA96360-CC54-4CC6-A43D-9B9AD7EB1B44}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BC63B4DF-92F1-446D-B978-FB8B4A9618B8}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{12A929A0-037C-4436-8E54-EAD41CA12D20}] => (Allow) K:\Lukas\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{479DE1C2-93F2-46DE-8941-FF9CDF339951}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{BF452F95-BA0E-4455-AAC6-5221851D5481}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7A424216-8AA3-42DC-BDD3-DCD23F4AC05B}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{30F405F5-25D6-4E10-A38C-8EA5EC0AD16E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{7590582F-C827-4F23-ACA5-DC207F111F00}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{5D044A92-3429-4AE7-8970-C4DE81CA72E1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{CB4FD172-0830-4295-88BD-A7AA55866C34}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{324FFD8D-9B7E-4C94-A823-99237671299D}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{E75FA339-094B-430A-85FD-CA738A72157F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{72533A4B-0DF1-4200-8081-2818E71388A1}] => (Allow) K:\Lukas\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{70204C53-9964-44B8-BF77-7EFB9E3CB048}] => (Allow) K:\Lukas\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{92FE9851-CC9D-4EB8-B1D8-2C0A4C8A26B2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{B141B336-2513-48E9-A29F-648CB17AEAB7}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{86B6B535-E4AD-4002-A494-E90DE871800E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{CC7F0FF5-E156-4393-A100-3CB3A7CCECEA}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{6CC943C6-9EAF-413B-9280-CAEF8ADCD6EA}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{06D965AB-26A6-46FB-8FEE-25DB9D7A46B6}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{FC143E78-1B9A-46D6-92A3-A80A4FDF5E12}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{349BFEA7-E980-41AD-8EB2-669168DF47AD}] => (Allow) K:\Lukas\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{2387BEFA-BEAC-4A16-9E26-1F52CB4AE13C}] => (Allow) K:\Lukas\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{F41BEC0F-1D3E-4C34-84B5-6EEB08A9B999}] => (Allow) K:\Lukas\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{7A706620-9E39-4EFA-923A-4241AB6F5B1F}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{496DEAA5-1295-4FEF-8D53-BEE129788161}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{A65DA6B2-833E-40BF-A44F-7383FA2E3465}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{B1AD9D9A-0498-444D-80DC-52D293903565}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{181C06E3-8CB6-41ED-96C9-A71F651C6E88}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{1F1035CC-40EA-4006-BF5C-35F4B0E01A7A}] => (Allow) K:\Lukas\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{9E60E22A-E3F6-4A4E-A3B5-B3D8743401A8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{1B7B42CD-7A7A-40A4-B22E-674E581DC9D6}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{7ED87A30-EC41-46F7-B0B1-C71AB8E82758}] => (Allow) K:\Lukas\Steam\steamapps\common\theHunter\launcher\launcher.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: PS/2 Mouse
Description: PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Logitech
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/14/2016 01:17:02 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418220
Error: (03/13/2016 07:00:01 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "H:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"
Error: (03/13/2016 09:35:03 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418220
Error: (03/13/2016 09:33:17 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/12/2016 07:59:16 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Error: (03/12/2016 02:12:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1144
Startzeit: 01d17c5acd4b276b
Endzeit: 128
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: 1401f2f6-e854-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 01:29:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: b24
Startzeit: 01d17c5489d1fe63
Endzeit: 0
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: 01479f14-e84e-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 12:44:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1e80
Startzeit: 01d17c53ebc1cbb5
Endzeit: 124
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: c38e643a-e847-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 12:40:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm csgo.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 137c
Startzeit: 01d17c53450d4082
Endzeit: 0
Anwendungspfad: K:\Lukas\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Berichts-ID: 05f89443-e847-11e5-a58f-782bcb99e3ce
Error: (03/12/2016 11:27:42 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418220
Systemfehler:
=============
Error: (03/14/2016 01:38:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Defender" wurde mit folgendem Fehler beendet:
%%126
Error: (03/14/2016 01:37:10 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (03/14/2016 01:35:46 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.
Error: (03/14/2016 01:34:38 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AD3EDBCA-0901-415B-82E9-C16D3B65E38C}
Error: (03/14/2016 01:07:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (03/14/2016 01:07:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (60000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.
Error: (03/14/2016 01:07:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (03/14/2016 01:06:50 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.
Error: (03/13/2016 07:38:08 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
Error: (03/13/2016 05:04:55 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.
CodeIntegrity:
===================================
Date: 2014-04-06 13:59:16.984
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-04-06 13:52:40.358
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 19:02:03.928
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 18:54:54.974
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 17:36:54.025
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 16:40:34.022
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-16 16:25:00.389
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-07 18:53:37.715
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-07 18:42:06.226
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-07 18:28:54.024
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Xeon(R) CPU E31245 @ 3.30GHz
Prozentuale Nutzung des RAM: 24%
Installierter physikalischer RAM: 16340.9 MB
Verfügbarer physikalischer RAM: 12361.11 MB
Summe virtueller Speicher: 32980 MB
Verfügbarer virtueller Speicher: 28532.15 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:452.47 GB) (Free:82.82 GB) NTFS
Drive d: (BIG_BANG_THEORY_SEASON_2_DISC3) (CDROM) (Total:5.55 GB) (Free:0 GB) UDF
Drive k: (Data) (Fixed) (Total:465.75 GB) (Free:36.81 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: E670654A)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=13.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=452.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=465.8 GB) - (Type=OF Extended)
==================== Ende von Addition.txt ============================
Code:
ATTFilter Farbar Service Scanner Version: 27-01-2016
Ran by Lukas (administrator) on 14-03-2016 at 14:22:44
Running from "C:\Users\Lukas\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".
Windows Defender Disabled Policy:
==========================
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
|
|
14.03.2016, 16:53
| #43 |
| /// TB-Ausbilder | trojaner keine windows uodates mehr Servus, wir versuchen noch, den Dienst zu starten: Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CMD: sc start windefend
CMD: sc config WinDefend start= auto
Reboot:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Nach dem Neustart nochmal FSS ausführen bitte. |
|
14.03.2016, 17:23
| #44 |
| | trojaner keine windows uodates mehrCode:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Lukas (2016-03-14 17:15:43) Run:3
Gestartet von C:\Users\Lukas\Desktop
Geladene Profile: Lukas (Verfügbare Profile: FAE & PFrey & Michael & Lukas & Hannah & Maximilian)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
CMD: sc start windefend
CMD: sc config WinDefend start= auto
Reboot:
end
*****************
========= sc start windefend =========
SERVICE_NAME: windefend
TYPE : 20 WIN32_SHARE_PROCESS
STATE : 2 START_PENDING
(NOT_STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE : 0 (0x0)
SERVICE_EXIT_CODE : 0 (0x0)
CHECKPOINT : 0x0
WAIT_HINT : 0x7d0
PID : 7736
FLAGS :
========= Ende von CMD: =========
========= sc config WinDefend start= auto =========
[SC] ChangeServiceConfig ERFOLG
========= Ende von CMD: =========
Das System musste neu gestartet werden.
==== Ende von Fixlog 17:15:43 ====
Code:
ATTFilter Farbar Service Scanner Version: 27-01-2016
Ran by Lukas (administrator) on 14-03-2016 at 17:22:45
Running from "C:\Users\Lukas\Downloads"
Microsoft Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Policy:
========================
Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".
Windows Defender Disabled Policy:
==========================
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
**** End of log ****
|
|
14.03.2016, 17:40
| #45 |
| /// TB-Ausbilder | trojaner keine windows uodates mehr Servus, Reste entfernen Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CloseProcesses:
Hosts:
EmptyTemp:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Die Fixlog von FRST gleich posten, da diese sonst mit DelFix (siehe weiter unten) automatisch entfernt wird! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.  Cleanup: Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.  Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional:  Adblock Plus Kann Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren. NoScript Verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.Lade Software von einem sauberen Portal wie  .Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner . Abschließend noch ein paar grundsätzliche Bemerkungen:
Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
| Themen zu trojaner keine windows uodates mehr |
| anti, anti malware, bricht, entdeck, gelöscht, helft, kaspersky, malwarebytes, probleme, router, schutz, stürzt, troja, trojaner, updates, virenschutz, windows, windows updates |
Linear-Darstellung
