Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: MPC Cleaner

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 27.03.2016, 21:08   #1
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Hallo,

da ich mal wieder nach Jahren ein Spiel spielen wollte und dieses unter Win7 nicht mehr lief hab ich dummerweise versucht einen no-cd crack zu installieren. Ich bekam sofort von Avira und dem windows defender warnungen und hab alles gelöscht was mir gesagt wurde. Dazu hat sich das Programm MPC-Cleaner installiert.Es steht unter Programme in der Systemsteuerung nicht drin und manuell lässt es sich auch nicht löschen (ich muss adminstratorrechte vergeben um löschen zu können). Hab dann über chip.de den adwcleaner runtergeladen und ausgeführt. Er hat es gefunden und versucht zu löschen es ist aber immernoch da. Anbei mal die Reports von adwcleaner und avira

adwcleaner:AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v5.106 - Bericht erstellt am 27/03/2016 um 19:31:24
# Aktualisiert am 27/03/2016 von Xplode
# Datenbank : 2016-03-27.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Patrick - PATRICK-PC
# Gestartet von : C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****

[-] Dienst Gelöscht : BCUService
[-] Dienst Gelöscht : MPCProtectService
[-] Dienst Gelöscht : MPCKpt
[-] Dienst Gelöscht : ggbugreport
[-] Dienst Gelöscht : Winsere

***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\DeviceVM
[#] Ordner Gelöscht : C:\Program Files (x86)\MPC Cleaner
[-] Ordner Gelöscht : C:\Program Files (x86)\Yahoo!\Companion
[-] Ordner Gelöscht : C:\Program Files (x86)\SearchesToYesbnd
[-] Ordner Gelöscht : C:\Program Files (x86)\Winsere
[-] Ordner Gelöscht : C:\Program Files (x86)\WinTaske
[-] Ordner Gelöscht : C:\Program Files (x86)\1E005C80-1459095401-4300-B060-BCAEC5783ADB
[-] Ordner Gelöscht : C:\Program Files (x86)\win_en_77
[-] Ordner Gelöscht : C:\ProgramData\apn
[-] Ordner Gelöscht : C:\ProgramData\DeviceVM
[-] Ordner Gelöscht : C:\ProgramData\Yahoo! Companion
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Local\YSearchUtil
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Local\Temp\MPC
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Roaming\DeviceVM
[-] Ordner Gelöscht : C:\Users\Patrick\AppData\Roaming\Yahoo!\Companion
[-] Ordner Gelöscht : C:\Windows\SysWOW64\config\systemprofile\AppData\Local\YSearchUtil

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\END
[-] Datei Gelöscht : C:\Users\Patrick\AppData\Local\Temp\ziengine.ini.log
[-] Datei Gelöscht : C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\dd1b66d4.xml
[-] Datei Gelöscht : C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\searchplugins\smod.xml
[-] Datei Gelöscht : C:\Users\Public\Desktop\MPC Cleaner.lnk
[#] Datei Gelöscht : C:\Windows\SysNative\drivers\MPCKpt.sys

***** [ DLLs ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****

[-] Geplante Aufgabe Gelöscht : WinTaske

***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ICQ Service.exe
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\YMERemote.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\com.apn.native_messaging_host_aaaaacalgebmfelllfiaoknifldpngjh
[-] Schlüssel Gelöscht : HKCU\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\{EB52F1AB-3C2B-424F-9794-833C687025CF}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AddressBarSearch.SearchHook.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YBrowserToolbar.YBrowserToolbar.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{5D723752-5899-47E8-99B4-62C824EF9E13}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8233093C-178B-484B-979E-3C6B5B147DBC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{884189CF-7C10-41E8-A014-F7B2BE40AADB}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{77AA6435-2488-4A94-9FE5-49519DD2ED9B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{B722ED8B-0B38-408E-BB89-260C73BCF3D4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8233093C-178B-484B-979E-3C6B5B147DBC}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
[-] Schlüssel Gelöscht : HKCU\Software\ICQ\ICQToolbar
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Softonic
[-] Schlüssel Gelöscht : HKCU\Software\Yahoo\Companion
[-] Schlüssel Gelöscht : HKCU\Software\Yahoo\YFriendsBar
[-] Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\adawarebp
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Yahoo\Companion
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\MPC
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Yahoo\Companion
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\yessearchesSoftware
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\WIN
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Companion
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Daten Wiederhergestellt : HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Daten Wiederhergestellt : HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1B23FE29-A6EE-4CAF-9C06-B129A164640B}
[#] Wert Gelöscht : HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\SearchScopes [DoNotAskAgain]
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\search.mpc.am
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.com
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.com
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\icq.com
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [BCU]

***** [ Internetbrowser ] *****

[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.newtab.url", "hxxp://www-mysearch.com/?site=shyosffdefault&prd=set_ff&s=G3RzFTPTN095001,e7f35c52-e9f9-4274-92b8-ebc79df6f465,");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.defaultenginename", "yessearches");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.searchengine.hp", "hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffsengext");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.searchengine.sp", "hxxp://www.yessearches.com/chrome.php?mode=ffsengext&ptid=wak&q={searchTerms}&ts=AHEpCH0tBH8tA0..&uid=EC8FF4E0E140795FEB32448B33C8D3C1&v=20160323");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.searchengine.url", "hxxp://www.yessearches.com/chrome.php?mode=ffsengext&ptid=wak&q={searchTerms}&ts=AHEpCH0tBH8tA0..&uid=EC8FF4E0E140795FEB32448B33C8D3C1&v=20160323");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.search.selectedEngine", "yessearches");
[-] [C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js] [Preference] Gelöscht : user_pref("browser.startup.homepage", "hxxp://www-mysearch.com/?site=shyosffdefault&prd=set_ff&s=G3RzFTPTN095001,e7f35c52-e9f9-4274-92b8-ebc79df6f465,");

*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [14514 Bytes] - [27/03/2016 19:31:24]
C:\AdwCleaner\AdwCleaner[S1].txt - [15308 Bytes] - [27/03/2016 19:29:32]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [14662 Bytes] ##########
         
--- --- ---


avira:
Free Antivirus
Erstellungsdatum der Reportdatei: Sonntag, 27. März 2016 19:43


Das Programm läuft als uneingeschränkte Vollversion.
Online-Dienste stehen zur Verfügung.

Lizenznehmer : Free
Seriennummer : 0000149996-AVHOE-0000001
Plattform : Windows 7 Home Premium
Windowsversion : (Service Pack 1) [6.1.7601]
Boot Modus : Normal gebootet
Benutzername : Patrick
Computername : PATRICK-PC

Versionsinformationen:
build.dat : 15.0.16.282 92460 Bytes 22.02.2016 16:45:00
AVSCAN.EXE : 15.0.16.276 1235360 Bytes 09.03.2016 21:19:26
AVSCANRC.DLL : 15.0.16.269 65256 Bytes 09.03.2016 21:19:26
LUKE.DLL : 15.0.16.273 67840 Bytes 09.03.2016 21:19:47
AVSCPLR.DLL : 15.0.16.280 130712 Bytes 09.03.2016 21:19:26
REPAIR.DLL : 15.0.16.251 596760 Bytes 09.03.2016 21:19:23
repair.rdf : 1.0.15.92 1439582 Bytes 26.03.2016 08:55:33
AVREG.DLL : 15.0.16.273 350584 Bytes 09.03.2016 21:19:23
avlode.dll : 15.0.16.276 721384 Bytes 09.03.2016 21:19:21
avlode.rdf : 14.0.5.36 94056 Bytes 01.03.2016 15:49:06
XBV00007.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00008.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00009.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00010.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00011.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00012.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00013.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00014.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00015.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00016.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00017.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00018.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00019.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00020.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00021.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00022.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00023.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00024.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00025.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:45
XBV00026.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00027.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00028.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00029.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00030.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00031.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00032.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00033.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00034.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00035.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00036.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00037.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00038.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00039.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00040.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00041.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:22:46
XBV00111.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28
XBV00112.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28
XBV00113.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28
XBV00114.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:28
XBV00115.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00116.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00117.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00118.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00119.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00120.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00121.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00122.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00123.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00124.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00125.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00126.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00127.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00128.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00129.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00130.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00131.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00132.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00133.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00134.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00135.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:29
XBV00136.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00137.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00138.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00139.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00140.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00141.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00142.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00143.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00144.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00145.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00146.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00147.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00148.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00149.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00150.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00151.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00152.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00153.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00154.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00155.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00156.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00157.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00158.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00159.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:30
XBV00160.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00161.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00162.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00163.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00164.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00165.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00166.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00167.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00168.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00169.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00170.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00171.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00172.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00173.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00174.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00175.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00176.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00177.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00178.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00179.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00180.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00181.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00182.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00183.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:31
XBV00184.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00185.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00186.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00187.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00188.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00189.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00190.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00191.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00192.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00193.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00194.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00195.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00196.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00197.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00198.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00199.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00200.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00201.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00202.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00203.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00204.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00205.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00206.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00207.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:32
XBV00208.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00209.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00210.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00211.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00212.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00213.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00214.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00215.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00216.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00217.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00218.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00219.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00220.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00221.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00222.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00223.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00224.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00225.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00226.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00227.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00228.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00229.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00230.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00231.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:33
XBV00232.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00233.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00234.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00235.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00236.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00237.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00238.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00239.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00240.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00241.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00242.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00243.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00244.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00245.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00246.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00247.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:34
XBV00248.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00249.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00250.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00251.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00252.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00253.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00254.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00255.VDF : 8.12.71.186 2048 Bytes 19.03.2016 17:33:35
XBV00000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 11:01:19
XBV00001.VDF : 7.11.237.0 48041984 Bytes 02.06.2015 15:22:23
XBV00002.VDF : 7.12.37.36 16452096 Bytes 17.12.2015 15:22:45
XBV00003.VDF : 8.12.44.142 3948032 Bytes 09.01.2016 15:41:30
XBV00004.VDF : 8.12.52.208 4036096 Bytes 02.02.2016 15:05:37
XBV00005.VDF : 8.12.62.184 2779136 Bytes 26.02.2016 20:10:18
XBV00006.VDF : 8.12.71.186 2191360 Bytes 19.03.2016 17:33:25
XBV00042.VDF : 8.12.71.214 53248 Bytes 20.03.2016 09:46:52
XBV00043.VDF : 8.12.71.242 6656 Bytes 20.03.2016 16:36:58
XBV00044.VDF : 8.12.72.14 13312 Bytes 20.03.2016 16:36:58
XBV00045.VDF : 8.12.72.90 2048 Bytes 20.03.2016 16:36:58
XBV00046.VDF : 8.12.72.146 54272 Bytes 21.03.2016 15:03:19
XBV00047.VDF : 8.12.72.174 10240 Bytes 21.03.2016 15:03:19
XBV00048.VDF : 8.12.72.202 7680 Bytes 21.03.2016 15:03:19
XBV00049.VDF : 8.12.72.204 22528 Bytes 21.03.2016 15:03:20
XBV00050.VDF : 8.12.72.206 8704 Bytes 21.03.2016 15:03:20
XBV00051.VDF : 8.12.72.210 17408 Bytes 21.03.2016 19:03:17
XBV00052.VDF : 8.12.72.230 2048 Bytes 21.03.2016 19:03:17
XBV00053.VDF : 8.12.72.250 26112 Bytes 21.03.2016 21:03:18
XBV00054.VDF : 8.12.72.254 2048 Bytes 21.03.2016 21:03:18
XBV00055.VDF : 8.12.73.18 9728 Bytes 21.03.2016 15:06:36
XBV00056.VDF : 8.12.73.38 5120 Bytes 21.03.2016 15:06:36
XBV00057.VDF : 8.12.73.58 8704 Bytes 21.03.2016 15:06:36
XBV00058.VDF : 8.12.73.80 27136 Bytes 22.03.2016 15:06:36
XBV00059.VDF : 8.12.73.82 14848 Bytes 22.03.2016 15:06:37
XBV00060.VDF : 8.12.73.102 15872 Bytes 22.03.2016 15:06:37
XBV00061.VDF : 8.12.73.120 10752 Bytes 22.03.2016 15:06:37
XBV00062.VDF : 8.12.73.172 95232 Bytes 22.03.2016 15:06:37
XBV00063.VDF : 8.12.73.190 11264 Bytes 22.03.2016 15:06:37
XBV00064.VDF : 8.12.73.212 18432 Bytes 22.03.2016 19:06:35
XBV00065.VDF : 8.12.73.232 9216 Bytes 22.03.2016 19:06:35
XBV00066.VDF : 8.12.73.250 7680 Bytes 22.03.2016 19:06:35
XBV00067.VDF : 8.12.74.12 12800 Bytes 22.03.2016 21:06:36
XBV00068.VDF : 8.12.74.30 9728 Bytes 22.03.2016 15:27:29
XBV00069.VDF : 8.12.74.32 12288 Bytes 22.03.2016 15:27:29
XBV00070.VDF : 8.12.74.52 25600 Bytes 23.03.2016 15:27:30
XBV00071.VDF : 8.12.74.68 15872 Bytes 23.03.2016 15:27:30
XBV00072.VDF : 8.12.74.84 57856 Bytes 23.03.2016 17:27:28
XBV00073.VDF : 8.12.74.100 2048 Bytes 23.03.2016 17:27:28
XBV00074.VDF : 8.12.74.118 21504 Bytes 23.03.2016 19:27:27
XBV00075.VDF : 8.12.74.120 9728 Bytes 23.03.2016 19:27:27
XBV00076.VDF : 8.12.74.122 9728 Bytes 23.03.2016 15:10:12
XBV00077.VDF : 8.12.74.124 10240 Bytes 23.03.2016 15:10:12
XBV00078.VDF : 8.12.74.126 8704 Bytes 23.03.2016 15:10:12
XBV00079.VDF : 8.12.74.144 39936 Bytes 24.03.2016 15:10:12
XBV00080.VDF : 8.12.74.160 2048 Bytes 24.03.2016 15:10:12
XBV00081.VDF : 8.12.74.176 19456 Bytes 24.03.2016 15:10:13
XBV00082.VDF : 8.12.74.192 4096 Bytes 24.03.2016 15:10:13
XBV00083.VDF : 8.12.74.208 14336 Bytes 24.03.2016 15:10:13
XBV00084.VDF : 8.12.74.210 10240 Bytes 24.03.2016 15:10:13
XBV00085.VDF : 8.12.74.212 16896 Bytes 24.03.2016 15:10:13
XBV00086.VDF : 8.12.74.214 10752 Bytes 24.03.2016 15:10:13
XBV00087.VDF : 8.12.74.216 8192 Bytes 24.03.2016 17:09:44
XBV00088.VDF : 8.12.74.218 9728 Bytes 24.03.2016 19:09:45
XBV00089.VDF : 8.12.74.220 2048 Bytes 24.03.2016 19:09:45
XBV00090.VDF : 8.12.74.222 13312 Bytes 24.03.2016 21:09:42
XBV00091.VDF : 8.12.74.224 9216 Bytes 24.03.2016 21:09:42
XBV00092.VDF : 8.12.74.226 8704 Bytes 24.03.2016 08:21:59
XBV00093.VDF : 8.12.74.228 6656 Bytes 24.03.2016 08:21:59
XBV00094.VDF : 8.12.74.234 27136 Bytes 25.03.2016 08:22:00
XBV00095.VDF : 8.12.74.236 2560 Bytes 25.03.2016 08:22:00
XBV00096.VDF : 8.12.74.238 2560 Bytes 25.03.2016 10:21:58
XBV00097.VDF : 8.12.74.240 14848 Bytes 25.03.2016 13:20:18
XBV00098.VDF : 8.12.74.242 14848 Bytes 25.03.2016 13:20:18
XBV00099.VDF : 8.12.74.244 18432 Bytes 25.03.2016 13:20:18
XBV00100.VDF : 8.12.74.250 41472 Bytes 25.03.2016 17:20:18
XBV00101.VDF : 8.12.74.252 6656 Bytes 25.03.2016 17:20:18
XBV00102.VDF : 8.12.75.12 89600 Bytes 26.03.2016 12:24:43
XBV00103.VDF : 8.12.75.26 2048 Bytes 26.03.2016 12:24:43
XBV00104.VDF : 8.12.75.40 41472 Bytes 26.03.2016 16:24:43
XBV00105.VDF : 8.12.75.54 2048 Bytes 26.03.2016 16:24:43
XBV00106.VDF : 8.12.75.68 99840 Bytes 27.03.2016 11:57:01
XBV00107.VDF : 8.12.75.94 20992 Bytes 27.03.2016 11:57:01
XBV00108.VDF : 8.12.75.108 11776 Bytes 27.03.2016 11:57:01
XBV00109.VDF : 8.12.75.122 12288 Bytes 27.03.2016 13:57:01
XBV00110.VDF : 8.12.75.136 9728 Bytes 27.03.2016 13:57:01
LOCAL001.VDF : 8.12.75.136 147047936 Bytes 27.03.2016 13:57:25
Engineversion : 8.3.38.2
AEBB.DLL : 8.1.3.0 59296 Bytes 19.11.2015 15:33:34
AECORE.DLL : 8.3.12.4 247720 Bytes 21.03.2016 15:03:18
AEDROID.DLL : 8.4.3.348 1800104 Bytes 06.11.2015 13:43:16
AEEMU.DLL : 8.1.3.8 404328 Bytes 18.03.2016 14:16:25
AEEXP.DLL : 8.4.2.152 293744 Bytes 11.03.2016 13:33:21
AEGEN.DLL : 8.1.8.64 519016 Bytes 23.03.2016 15:27:29
AEHELP.DLL : 8.3.2.10 284584 Bytes 15.02.2016 13:29:24
AEHEUR.DLL : 8.1.4.2222 10169200 Bytes 17.03.2016 14:38:53
AEMOBILE.DLL : 8.1.8.10 301936 Bytes 26.11.2015 15:03:11
AEOFFICE.DLL : 8.3.3.22 456616 Bytes 21.03.2016 15:03:19
AEPACK.DLL : 8.4.2.12 805744 Bytes 15.03.2016 13:47:20
AERDL.DLL : 8.2.1.42 813928 Bytes 18.03.2016 14:16:26
AESBX.DLL : 8.2.21.4 1629032 Bytes 16.03.2016 13:51:00
AESCN.DLL : 8.3.4.4 142456 Bytes 11.03.2016 13:33:21
AESCRIPT.DLL : 8.3.0.80 588656 Bytes 21.03.2016 15:03:19
AEVDF.DLL : 8.3.3.4 142184 Bytes 21.03.2016 15:03:19
AVWINLL.DLL : 15.0.16.227 27680 Bytes 09.03.2016 21:19:18
AVPREF.DLL : 15.0.16.227 53944 Bytes 09.03.2016 21:19:23
AVREP.DLL : 15.0.16.227 223400 Bytes 09.03.2016 21:19:23
AVARKT.DLL : 15.0.16.227 230080 Bytes 09.03.2016 21:19:18
AVEVTLOG.DLL : 15.0.16.251 200192 Bytes 09.03.2016 21:19:20
SQLITE3.DLL : 15.0.16.227 459752 Bytes 09.03.2016 21:19:50
AVSMTP.DLL : 15.0.16.227 80200 Bytes 09.03.2016 21:19:27
NETNT.DLL : 15.0.16.227 16880 Bytes 09.03.2016 21:19:47
CommonImageRc.dll: 15.0.16.222 4307832 Bytes 09.03.2016 21:19:18
CommonTextRc.dll: 15.0.16.222 68864 Bytes 09.03.2016 21:19:18

Konfiguration für den aktuellen Suchlauf:
Job Name..............................: Schnelle Systemprüfung
Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\quicksysscan.avp
Protokollierung.......................: standard
Primäre Aktion........................: Interaktiv
Sekundäre Aktion......................: Ignorieren
Durchsuche Masterbootsektoren.........: ein
Durchsuche Bootsektoren...............: ein
Durchsuche aktive Programme...........: ein
Durchsuche Registrierung..............: ein
Suche nach Rootkits...................: aus
Integritätsprüfung von Systemdateien..: aus
Prüfe alle Dateien....................: Intelligente Dateiauswahl
Durchsuche Archive....................: ein
Rekursionstiefe einschränken..........: 20
Archiv Smart Extensions...............: ein
Makrovirenheuristik...................: ein
Dateiheuristik........................: erweitert
Auszulassende Dateien.................:

Beginn des Suchlaufs: Sonntag, 27. März 2016 19:43

Der Suchlauf über die Bootsektoren wird begonnen:

Der Suchlauf über gestartete Prozesse wird begonnen:
Durchsuche Prozess 'svchost.exe' - '60' Modul(e) wurden durchsucht
Durchsuche Prozess 'nvvsvc.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'nvSCPAPISvr.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '98' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '103' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '90' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '151' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '75' Modul(e) wurden durchsucht
Durchsuche Prozess 'spoolsv.exe' - '83' Modul(e) wurden durchsucht
Durchsuche Prozess 'nvxdsync.exe' - '54' Modul(e) wurden durchsucht
Durchsuche Prozess 'nvvsvc.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'sched.exe' - '82' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskhost.exe' - '70' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'armsvc.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'ipoint.exe' - '64' Modul(e) wurden durchsucht
Durchsuche Prozess 'itype.exe' - '66' Modul(e) wurden durchsucht
Durchsuche Prozess 'avguard.exe' - '106' Modul(e) wurden durchsucht
Durchsuche Prozess 'FourEngine.exe' - '52' Modul(e) wurden durchsucht
Durchsuche Prozess 'Dwm.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'Explorer.EXE' - '184' Modul(e) wurden durchsucht
Durchsuche Prozess 'SkypeC2CAutoUpdateSvc.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'SkypeC2CPNRSvc.exe' - '25' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '50' Modul(e) wurden durchsucht
Durchsuche Prozess 'MPCProtectService.exe' - '72' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'PnkBstrA.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'MPCTray.exe' - '111' Modul(e) wurden durchsucht
Durchsuche Prozess 'MPCTray64.exe' - '13' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '38' Modul(e) wurden durchsucht
Durchsuche Prozess 'viakaraokesrv.exe' - '24' Modul(e) wurden durchsucht
Durchsuche Prozess 'GWX.exe' - '38' Modul(e) wurden durchsucht
Durchsuche Prozess 'WLIDSVC.EXE' - '75' Modul(e) wurden durchsucht
Durchsuche Prozess 'Avira.ServiceHost.exe' - '131' Modul(e) wurden durchsucht
Durchsuche Prozess 'WLIDSvcM.exe' - '17' Modul(e) wurden durchsucht
Durchsuche Prozess 'avshadow.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '42' Modul(e) wurden durchsucht
Durchsuche Prozess 'sppsvc.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'NvBackend.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'AmazonMP3DownloaderHelper.exe' - '45' Modul(e) wurden durchsucht
Durchsuche Prozess 'hpqtra08.exe' - '85' Modul(e) wurden durchsucht
Durchsuche Prozess 'NOTEPAD.EXE' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'VDeck.exe' - '59' Modul(e) wurden durchsucht
Durchsuche Prozess 'DevDetect.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'avgnt.exe' - '118' Modul(e) wurden durchsucht
Durchsuche Prozess 'DivXUpdate.exe' - '84' Modul(e) wurden durchsucht
Durchsuche Prozess 'hpwuSchd2.exe' - '25' Modul(e) wurden durchsucht
Durchsuche Prozess 'Avira.Systray.exe' - '150' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchIndexer.exe' - '65' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmpnetwk.exe' - '117' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'hpqSTE08.exe' - '66' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '59' Modul(e) wurden durchsucht
Durchsuche Prozess 'hpqbam08.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'hpqgpc01.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmiprvse.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'DllHost.exe' - '45' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '62' Modul(e) wurden durchsucht
Durchsuche Prozess 'opera.exe' - '90' Modul(e) wurden durchsucht
Durchsuche Prozess 'TrustedInstaller.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'Skype.exe' - '173' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '92' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '116' Modul(e) wurden durchsucht
Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht
Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '18' Modul(e) wurden durchsucht
Durchsuche Prozess 'services.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'winlogon.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsass.exe' - '69' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht

Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen:
Die Datei wurde im Zwischenspeicher in 'D:\vallen\jpegger\jpegger.exe' gefunden; der Scan Cloud-Sicherheit wurde übersprungen. SHA256 = 6AC87D4078939D59C07F9BFBA5E806F1C862FFC9DB8C75C7F7315AFF944E72C9
Die Datei wurde im Zwischenspeicher in 'D:\Program Files (x86)\EA Games\Command & Conquer Die ersten 10 Jahre\support\EReg.exe' gefunden; der Scan Cloud-Sicherheit wurde übersprungen. SHA256 = 4DE007B026FC290FD48FC7E5FAB9E5942738CDF5705D6C5804C650C7855BEB38
Die Registry wurde durchsucht ( '2437' Dateien ).



Ende des Suchlaufs: Sonntag, 27. März 2016 19:44
Benötigte Zeit: 00:35 Minute(n)

Der Suchlauf wurde vollständig durchgeführt.

0 Verzeichnisse wurden überprüft
3397 Dateien wurden geprüft
0 Viren bzw. unerwünschte Programme wurden gefunden
0 Dateien wurden als verdächtig eingestuft
0 Dateien wurden gelöscht
0 Viren bzw. unerwünschte Programme wurden repariert
0 Dateien wurden in die Quarantäne verschoben
0 Dateien wurden umbenannt
0 Dateien konnten nicht durchsucht werden
3397 Dateien ohne Befall
41 Archive wurden durchsucht
0 Warnungen
0 Hinweise

Von Avira war es der letzte Report.Hab drei von heute mit Funden.

Ich hoffe ihr könnt mir helfen!

Gruss
Patrick

Kleine Erfolgsmeldung. Habe im Verzeichnis vom MPC Cleaner die deinstallation gefunden und das Programm deinstalliert. Allerdings öffnen sich beim starten der Browser unterschiedliche Startseiten. bei Mozilla öffnet sich search.mpc.am . Bei Opera und dem internet explorer öffnet sich mysearch.com

Da sich mit Sicherheit auch sonst noch Spuren auf dem Rechner befinden wäre ich für weitere Hilfe immernoch sehr dankbar

Geändert von Patrick123 (27.03.2016 um 21:40 Uhr)

Alt 27.03.2016, 23:53   #2
M-K-D-B
/// TB-Ausbilder
 
MPC Cleaner - Standard

MPC Cleaner






Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort als Administrator zu starten!



Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!




Der MPC Cleaner schützt sich durch diverse Hooks vor dem Löschen. Bitte nichts mehr selber versuchen. Ich helfe dir bei der Bereinigung.


Zur ersten Analyse bitte FRST und TDSS-Killer ausführen:



Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)






Schritt 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.







Bitte poste mit deiner nächsten Antwort
  • die Logdatei von TDSS-Killer,
  • die beiden neuen Logdateien von FRST.
__________________

__________________

Alt 28.03.2016, 09:26   #3
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Hi,

danke für deine Hilfe. Das Startseitenproblem hab ich gelöst. Habe mal Cookies,Browsercache gelöscht. Da ich noch Antimalewarebytes drauf hatte hab ich das gestern Abend auch mal laufen lassen. Falls du davon noch was sehen möchtest einfach sagen.

Hier die logdateien:

TDSSKiller

Code:
ATTFilter
09:16:48.0873 0x0e50  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
09:16:52.0190 0x0e50  ============================================================
09:16:52.0190 0x0e50  Current date / time: 2016/03/28 09:16:52.0190
09:16:52.0190 0x0e50  SystemInfo:
09:16:52.0190 0x0e50  
09:16:52.0190 0x0e50  OS Version: 6.1.7601 ServicePack: 1.0
09:16:52.0190 0x0e50  Product type: Workstation
09:16:52.0190 0x0e50  ComputerName: PATRICK-PC
09:16:52.0190 0x0e50  UserName: Patrick
09:16:52.0190 0x0e50  Windows directory: C:\Windows
09:16:52.0190 0x0e50  System windows directory: C:\Windows
09:16:52.0190 0x0e50  Running under WOW64
09:16:52.0190 0x0e50  Processor architecture: Intel x64
09:16:52.0190 0x0e50  Number of processors: 4
09:16:52.0190 0x0e50  Page size: 0x1000
09:16:52.0190 0x0e50  Boot type: Normal boot
09:16:52.0190 0x0e50  ============================================================
09:16:55.0497 0x0e50  KLMD registered as C:\Windows\system32\drivers\97587045.sys
09:16:57.0008 0x0e50  System UUID: {F09684BB-32ED-E035-2F54-E4774EBFBC65}
09:16:57.0334 0x0e50  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:16:57.0350 0x0e50  ============================================================
09:16:57.0350 0x0e50  \Device\Harddisk0\DR0:
09:16:57.0350 0x0e50  MBR partitions:
09:16:57.0350 0x0e50  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x32F8E
09:16:57.0350 0x0e50  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x190029BD
09:16:57.0350 0x0e50  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1903598A, BlocksNum 0x5B6D0037
09:16:57.0350 0x0e50  ============================================================
09:16:57.0370 0x0e50  C: <-> \Device\Harddisk0\DR0\Partition2
09:16:57.0396 0x0e50  D: <-> \Device\Harddisk0\DR0\Partition3
09:16:57.0396 0x0e50  ============================================================
09:16:57.0396 0x0e50  Initialize success
09:16:57.0396 0x0e50  ============================================================
09:17:00.0210 0x0ca0  ============================================================
09:17:00.0210 0x0ca0  Scan started
09:17:00.0210 0x0ca0  Mode: Manual; 
09:17:00.0210 0x0ca0  ============================================================
09:17:00.0210 0x0ca0  KSN ping started
09:17:02.0917 0x0ca0  KSN ping finished: true
09:17:04.0399 0x0ca0  ================ Scan system memory ========================
09:17:04.0399 0x0ca0  System memory - ok
09:17:04.0399 0x0ca0  ================ Scan services =============================
09:17:04.0546 0x0ca0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
09:17:04.0546 0x0ca0  1394ohci - ok
09:17:04.0600 0x0ca0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
09:17:04.0600 0x0ca0  ACPI - ok
09:17:04.0616 0x0ca0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
09:17:04.0616 0x0ca0  AcpiPmi - ok
09:17:04.0753 0x0ca0  [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:17:04.0758 0x0ca0  AdobeARMservice - ok
09:17:04.0840 0x0ca0  [ A9D55370A0CBADD1E1E2B4796ACD26DF, 9FD0C2B1206321B34D97FF3D01C5C811022DA76DA667DB6ECCF2746437A706A2 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:17:04.0856 0x0ca0  AdobeFlashPlayerUpdateSvc - ok
09:17:04.0892 0x0ca0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
09:17:04.0908 0x0ca0  adp94xx - ok
09:17:04.0926 0x0ca0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
09:17:04.0926 0x0ca0  adpahci - ok
09:17:04.0947 0x0ca0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
09:17:04.0947 0x0ca0  adpu320 - ok
09:17:04.0962 0x0ca0  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
09:17:04.0962 0x0ca0  AeLookupSvc - ok
09:17:05.0014 0x0ca0  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
09:17:05.0030 0x0ca0  AFD - ok
09:17:05.0045 0x0ca0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
09:17:05.0045 0x0ca0  agp440 - ok
09:17:05.0063 0x0ca0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
09:17:05.0063 0x0ca0  ALG - ok
09:17:05.0089 0x0ca0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
09:17:05.0089 0x0ca0  aliide - ok
09:17:05.0114 0x0ca0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
09:17:05.0114 0x0ca0  amdide - ok
09:17:05.0117 0x0ca0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
09:17:05.0117 0x0ca0  AmdK8 - ok
09:17:05.0133 0x0ca0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
09:17:05.0133 0x0ca0  AmdPPM - ok
09:17:05.0164 0x0ca0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
09:17:05.0166 0x0ca0  amdsata - ok
09:17:05.0194 0x0ca0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
09:17:05.0194 0x0ca0  amdsbs - ok
09:17:05.0210 0x0ca0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
09:17:05.0210 0x0ca0  amdxata - ok
09:17:05.0329 0x0ca0  [ 37CD9EB03B36D8329F96BA921470DB54, 0CD3BFBA51F84D83E3B208D2BED7CE8E91B447B2037014663EC7CB8E5A925201 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
09:17:05.0331 0x0ca0  AntiVirMailService - ok
09:17:05.0383 0x0ca0  [ 98C06275DB53A1E70AB8CB94013B20D4, 5DE48C829A66B0F4C8119E75D985D63C1020FA318696BD19E44E0A07CD6F1ED0 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
09:17:05.0398 0x0ca0  AntiVirSchedulerService - ok
09:17:05.0445 0x0ca0  [ 98C06275DB53A1E70AB8CB94013B20D4, 5DE48C829A66B0F4C8119E75D985D63C1020FA318696BD19E44E0A07CD6F1ED0 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
09:17:05.0460 0x0ca0  AntiVirService - ok
09:17:05.0543 0x0ca0  [ 1F5CC3C23E10290A3FF9CAA74AA30D07, A4F1F3465A5E0A914EE5A4FEF4A6B639956BA04B7145EF68820BC2A15DEE4162 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
09:17:05.0571 0x0ca0  AntiVirWebService - ok
09:17:05.0602 0x0ca0  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
09:17:05.0602 0x0ca0  AppID - ok
09:17:05.0623 0x0ca0  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
09:17:05.0623 0x0ca0  AppIDSvc - ok
09:17:05.0659 0x0ca0  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
09:17:05.0674 0x0ca0  Appinfo - ok
09:17:05.0679 0x0ca0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
09:17:05.0679 0x0ca0  arc - ok
09:17:05.0695 0x0ca0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
09:17:05.0695 0x0ca0  arcsas - ok
09:17:05.0744 0x0ca0  [ A82C01606DC27D05D9D3BFB6BB807E32, CE231637422709D927FB6FA0C4F2215B9C0E3EBBD951FB2FA97B8E64DA479B96 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
09:17:05.0744 0x0ca0  AsIO - ok
09:17:05.0822 0x0ca0  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:17:05.0822 0x0ca0  aspnet_state - ok
09:17:05.0858 0x0ca0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
09:17:05.0858 0x0ca0  AsyncMac - ok
09:17:05.0889 0x0ca0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
09:17:05.0889 0x0ca0  atapi - ok
09:17:05.0938 0x0ca0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:17:05.0974 0x0ca0  AudioEndpointBuilder - ok
09:17:05.0995 0x0ca0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
09:17:06.0010 0x0ca0  AudioSrv - ok
09:17:06.0064 0x0ca0  [ 742D578C28F6F58B8B576F91A1D8EB4E, 6C49EC198E67CE40728F0C19CB2BDCB59310BA59324F58E4D456DA2C8CC28BA6 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
09:17:06.0064 0x0ca0  avgntflt - ok
09:17:06.0098 0x0ca0  [ FBC2483AD62FBC8BD76A4254C50874BA, 04398AB0221535DD5D0A1AF6CA107F815CD607E668E2E7887D061FCED7373728 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
09:17:06.0098 0x0ca0  avipbb - ok
09:17:06.0217 0x0ca0  [ 98BB62ABFD17F284C3C5DE40F8266F3C, CD08C737BE9FC32FF98252FCFFCAE779EC6FAB76BF80F0835ACE71F1E155D70D ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
09:17:06.0233 0x0ca0  Avira.ServiceHost - ok
09:17:06.0256 0x0ca0  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
09:17:06.0256 0x0ca0  avkmgr - ok
09:17:06.0292 0x0ca0  [ 7FDC860B34BDFFDFCE98622F81F24FA9, 3EF774A7F2EB741633611400161B6D4F642F9357BF6E957E14E70D1645BE6466 ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
09:17:06.0295 0x0ca0  avnetflt - ok
09:17:06.0328 0x0ca0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
09:17:06.0328 0x0ca0  AxInstSV - ok
09:17:06.0367 0x0ca0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
09:17:06.0393 0x0ca0  b06bdrv - ok
09:17:06.0426 0x0ca0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
09:17:06.0426 0x0ca0  b57nd60a - ok
09:17:06.0447 0x0ca0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
09:17:06.0463 0x0ca0  BDESVC - ok
09:17:06.0463 0x0ca0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
09:17:06.0463 0x0ca0  Beep - ok
09:17:06.0535 0x0ca0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
09:17:06.0540 0x0ca0  BFE - ok
09:17:06.0581 0x0ca0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
09:17:06.0597 0x0ca0  BITS - ok
09:17:06.0617 0x0ca0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
09:17:06.0617 0x0ca0  blbdrive - ok
09:17:06.0649 0x0ca0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
09:17:06.0651 0x0ca0  bowser - ok
09:17:06.0708 0x0ca0  BRDriver64 - ok
09:17:06.0739 0x0ca0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:17:06.0739 0x0ca0  BrFiltLo - ok
09:17:06.0757 0x0ca0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:17:06.0757 0x0ca0  BrFiltUp - ok
09:17:06.0806 0x0ca0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
09:17:06.0806 0x0ca0  Browser - ok
09:17:06.0842 0x0ca0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
09:17:06.0850 0x0ca0  Brserid - ok
09:17:06.0855 0x0ca0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
09:17:06.0855 0x0ca0  BrSerWdm - ok
09:17:06.0898 0x0ca0  [ 10813741F5DED490D989602E8EAFD305, 599ACC097E11A65524DA98A2FF36E212664A5EB7C7AB8BC2586A957EDF4BC4AC ] BRSptSvc        C:\ProgramData\BitRaider\BRSptSvc.exe
09:17:06.0914 0x0ca0  BRSptSvc - ok
09:17:06.0914 0x0ca0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
09:17:06.0914 0x0ca0  BrUsbMdm - ok
09:17:06.0930 0x0ca0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
09:17:06.0930 0x0ca0  BrUsbSer - ok
09:17:06.0950 0x0ca0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
09:17:06.0950 0x0ca0  BTHMODEM - ok
09:17:06.0966 0x0ca0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
09:17:06.0966 0x0ca0  bthserv - ok
09:17:07.0097 0x0ca0  [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
09:17:07.0129 0x0ca0  c2cautoupdatesvc - ok
09:17:07.0180 0x0ca0  [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
09:17:07.0206 0x0ca0  c2cpnrsvc - ok
09:17:07.0224 0x0ca0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
09:17:07.0224 0x0ca0  cdfs - ok
09:17:07.0265 0x0ca0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
09:17:07.0268 0x0ca0  cdrom - ok
09:17:07.0283 0x0ca0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
09:17:07.0299 0x0ca0  CertPropSvc - ok
09:17:07.0333 0x0ca0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
09:17:07.0333 0x0ca0  circlass - ok
09:17:07.0369 0x0ca0  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
09:17:07.0376 0x0ca0  CLFS - ok
09:17:07.0429 0x0ca0  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:17:07.0434 0x0ca0  clr_optimization_v2.0.50727_32 - ok
09:17:07.0466 0x0ca0  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:17:07.0469 0x0ca0  clr_optimization_v2.0.50727_64 - ok
09:17:07.0513 0x0ca0  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:17:07.0513 0x0ca0  clr_optimization_v4.0.30319_32 - ok
09:17:07.0528 0x0ca0  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:17:07.0544 0x0ca0  clr_optimization_v4.0.30319_64 - ok
09:17:07.0549 0x0ca0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
09:17:07.0549 0x0ca0  CmBatt - ok
09:17:07.0569 0x0ca0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
09:17:07.0569 0x0ca0  cmdide - ok
09:17:07.0616 0x0ca0  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
09:17:07.0626 0x0ca0  CNG - ok
09:17:07.0648 0x0ca0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
09:17:07.0648 0x0ca0  Compbatt - ok
09:17:07.0691 0x0ca0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
09:17:07.0694 0x0ca0  CompositeBus - ok
09:17:07.0699 0x0ca0  COMSysApp - ok
09:17:07.0699 0x0ca0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
09:17:07.0699 0x0ca0  crcdisk - ok
09:17:07.0730 0x0ca0  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
09:17:07.0746 0x0ca0  CryptSvc - ok
09:17:07.0769 0x0ca0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
09:17:07.0784 0x0ca0  DcomLaunch - ok
09:17:07.0800 0x0ca0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
09:17:07.0818 0x0ca0  defragsvc - ok
09:17:07.0823 0x0ca0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
09:17:07.0823 0x0ca0  DfsC - ok
09:17:07.0854 0x0ca0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
09:17:07.0854 0x0ca0  Dhcp - ok
09:17:07.0944 0x0ca0  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
09:17:07.0975 0x0ca0  DiagTrack - ok
09:17:07.0987 0x0ca0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
09:17:07.0990 0x0ca0  discache - ok
09:17:08.0010 0x0ca0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
09:17:08.0010 0x0ca0  Disk - ok
09:17:08.0046 0x0ca0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
09:17:08.0049 0x0ca0  Dnscache - ok
09:17:08.0080 0x0ca0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
09:17:08.0080 0x0ca0  dot3svc - ok
09:17:08.0126 0x0ca0  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
09:17:08.0129 0x0ca0  Dot4 - ok
09:17:08.0129 0x1040  Object required for P2P: [ 37CD9EB03B36D8329F96BA921470DB54 ] AntiVirMailService
09:17:08.0144 0x0ca0  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
09:17:08.0144 0x0ca0  Dot4Print - ok
09:17:08.0165 0x0ca0  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
09:17:08.0165 0x0ca0  dot4usb - ok
09:17:08.0209 0x0ca0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
09:17:08.0216 0x0ca0  DPS - ok
09:17:08.0289 0x0ca0  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
09:17:08.0289 0x0ca0  drmkaud - ok
09:17:08.0361 0x0ca0  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
09:17:08.0377 0x0ca0  DXGKrnl - ok
09:17:08.0405 0x0ca0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
09:17:08.0405 0x0ca0  EapHost - ok
09:17:08.0515 0x0ca0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
09:17:08.0565 0x0ca0  ebdrv - ok
09:17:08.0575 0x0ca0  [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] EFS             C:\Windows\System32\lsass.exe
09:17:08.0575 0x0ca0  EFS - ok
09:17:08.0663 0x0ca0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
09:17:08.0666 0x0ca0  ehRecvr - ok
09:17:08.0702 0x0ca0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
09:17:08.0702 0x0ca0  ehSched - ok
09:17:08.0736 0x0ca0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
09:17:08.0738 0x0ca0  elxstor - ok
09:17:08.0754 0x0ca0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
09:17:08.0754 0x0ca0  ErrDev - ok
09:17:08.0785 0x0ca0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
09:17:08.0793 0x0ca0  EventSystem - ok
09:17:08.0803 0x0ca0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
09:17:08.0803 0x0ca0  exfat - ok
09:17:08.0818 0x0ca0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
09:17:08.0818 0x0ca0  fastfat - ok
09:17:08.0857 0x0ca0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
09:17:08.0875 0x0ca0  Fax - ok
09:17:08.0891 0x0ca0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
09:17:08.0891 0x0ca0  fdc - ok
09:17:08.0906 0x0ca0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
09:17:08.0906 0x0ca0  fdPHost - ok
09:17:08.0911 0x0ca0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
09:17:08.0911 0x0ca0  FDResPub - ok
09:17:08.0919 0x0ca0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
09:17:08.0919 0x0ca0  FileInfo - ok
09:17:08.0924 0x0ca0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
09:17:08.0924 0x0ca0  Filetrace - ok
09:17:08.0942 0x0ca0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
09:17:08.0942 0x0ca0  flpydisk - ok
09:17:08.0960 0x0ca0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
09:17:08.0980 0x0ca0  FltMgr - ok
09:17:09.0045 0x0ca0  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
09:17:09.0065 0x0ca0  FontCache - ok
09:17:09.0091 0x0ca0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:17:09.0091 0x0ca0  FontCache3.0.0.0 - ok
09:17:09.0107 0x0ca0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
09:17:09.0107 0x0ca0  FsDepends - ok
09:17:09.0122 0x0ca0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
09:17:09.0122 0x0ca0  Fs_Rec - ok
09:17:09.0170 0x0ca0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
09:17:09.0170 0x0ca0  fvevol - ok
09:17:09.0204 0x0ca0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
09:17:09.0204 0x0ca0  gagp30kx - ok
09:17:09.0240 0x0ca0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
09:17:09.0266 0x0ca0  gpsvc - ok
09:17:09.0268 0x0ca0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
09:17:09.0268 0x0ca0  hcw85cir - ok
09:17:09.0299 0x0ca0  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:17:09.0315 0x0ca0  HdAudAddService - ok
09:17:09.0315 0x08fc  Object required for P2P: [ 98BB62ABFD17F284C3C5DE40F8266F3C ] Avira.ServiceHost
09:17:09.0333 0x0ca0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
09:17:09.0333 0x0ca0  HDAudBus - ok
09:17:09.0351 0x0ca0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
09:17:09.0351 0x0ca0  HidBatt - ok
09:17:09.0351 0x0ca0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
09:17:09.0367 0x0ca0  HidBth - ok
09:17:09.0367 0x0ca0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
09:17:09.0367 0x0ca0  HidIr - ok
09:17:09.0390 0x0ca0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
09:17:09.0390 0x0ca0  hidserv - ok
09:17:09.0413 0x0ca0  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
09:17:09.0413 0x0ca0  HidUsb - ok
09:17:09.0444 0x0ca0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
09:17:09.0444 0x0ca0  hkmsvc - ok
09:17:09.0480 0x0ca0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:17:09.0480 0x0ca0  HomeGroupListener - ok
09:17:09.0517 0x0ca0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:17:09.0517 0x0ca0  HomeGroupProvider - ok
09:17:09.0631 0x0ca0  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05, 7B3F117C1D606DDA7623BEC0BFBC362C33A12213E899F049AC56A55826984134 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
09:17:09.0646 0x0ca0  hpqcxs08 - ok
09:17:09.0680 0x0ca0  [ F3F72A2A86C22610BCA5439FA789DD52, DA5A8F09DCC512AA1558863AD4FAC12F72DD83CA8FB4D8D9831E4AFBB6B3C616 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
09:17:09.0680 0x0ca0  hpqddsvc - ok
09:17:09.0711 0x0ca0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
09:17:09.0711 0x0ca0  HpSAMD - ok
09:17:09.0793 0x0ca0  [ D972F48D0CE396759B788693CD665926, 13C32575F1BD5D75067B288D1669AE1F1829B434F97CB211EC3C189F7D2D7C38 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
09:17:09.0811 0x0ca0  HPSLPSVC - ok
09:17:09.0849 0x0ca0  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
09:17:09.0849 0x0ca0  HTTP - ok
09:17:09.0881 0x0ca0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
09:17:09.0881 0x0ca0  hwpolicy - ok
09:17:09.0901 0x0ca0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
09:17:09.0917 0x0ca0  i8042prt - ok
09:17:09.0945 0x0ca0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
09:17:09.0960 0x0ca0  iaStorV - ok
09:17:10.0038 0x0ca0  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:17:10.0053 0x0ca0  idsvc - ok
09:17:10.0069 0x0ca0  IEEtwCollectorService - ok
09:17:10.0074 0x0ca0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
09:17:10.0074 0x0ca0  iirsp - ok
09:17:10.0131 0x0ca0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
09:17:10.0151 0x0ca0  IKEEXT - ok
09:17:10.0183 0x0ca0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
09:17:10.0183 0x0ca0  intelide - ok
09:17:10.0216 0x0ca0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
09:17:10.0216 0x0ca0  intelppm - ok
09:17:10.0231 0x0ca0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
09:17:10.0249 0x0ca0  IPBusEnum - ok
09:17:10.0273 0x0ca0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:17:10.0273 0x0ca0  IpFilterDriver - ok
09:17:10.0329 0x0ca0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
09:17:10.0345 0x0ca0  iphlpsvc - ok
09:17:10.0345 0x0ca0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
09:17:10.0361 0x0ca0  IPMIDRV - ok
09:17:10.0366 0x0ca0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
09:17:10.0366 0x0ca0  IPNAT - ok
09:17:10.0381 0x0ca0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
09:17:10.0381 0x0ca0  IRENUM - ok
09:17:10.0397 0x0ca0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
09:17:10.0397 0x0ca0  isapnp - ok
09:17:10.0433 0x11b4  Object required for P2P: [ C35B91B6777E7C6DB67B8583D2AA66A7 ] c2cpnrsvc
09:17:10.0433 0x0ca0  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
09:17:10.0449 0x0ca0  iScsiPrt - ok
09:17:10.0472 0x0ca0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
09:17:10.0472 0x0ca0  kbdclass - ok
09:17:10.0492 0x0ca0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
09:17:10.0492 0x0ca0  kbdhid - ok
09:17:10.0492 0x0ca0  [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] KeyIso          C:\Windows\system32\lsass.exe
09:17:10.0492 0x0ca0  KeyIso - ok
09:17:10.0523 0x0ca0  [ 211A379BAAB812A7B437319BD85B2435, 4C8B82817B735BEFC0C8E2A42C7EF547D1C179561D3C97B3067B5EA3408F9E4D ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
09:17:10.0523 0x0ca0  KSecDD - ok
09:17:10.0547 0x0ca0  [ CC1B3B52F33CBC1CE60867DA4E23537C, A373DBCE6A53B77F59D9C83E243E5C1A2B4C38571CA28198229730D612561978 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
09:17:10.0547 0x0ca0  KSecPkg - ok
09:17:10.0562 0x0ca0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
09:17:10.0562 0x0ca0  ksthunk - ok
09:17:10.0601 0x0ca0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
09:17:10.0601 0x1040  Object send P2P result: true
09:17:10.0616 0x0ca0  KtmRm - ok
09:17:10.0648 0x0ca0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
09:17:10.0658 0x0ca0  LanmanServer - ok
09:17:10.0678 0x0ca0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:17:10.0678 0x0ca0  LanmanWorkstation - ok
09:17:10.0709 0x0ca0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
09:17:10.0709 0x0ca0  lltdio - ok
09:17:10.0741 0x0ca0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
09:17:10.0748 0x0ca0  lltdsvc - ok
09:17:10.0748 0x0ca0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
09:17:10.0748 0x0ca0  lmhosts - ok
09:17:10.0779 0x0ca0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
09:17:10.0779 0x0ca0  LSI_FC - ok
09:17:10.0797 0x0ca0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
09:17:10.0797 0x0ca0  LSI_SAS - ok
09:17:10.0829 0x0ca0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:17:10.0831 0x0ca0  LSI_SAS2 - ok
09:17:10.0834 0x0ca0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:17:10.0849 0x0ca0  LSI_SCSI - ok
09:17:10.0865 0x0ca0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
09:17:10.0865 0x0ca0  luafv - ok
09:17:10.0885 0x0ca0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
09:17:10.0885 0x0ca0  Mcx2Svc - ok
09:17:10.0901 0x0ca0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
09:17:10.0901 0x0ca0  megasas - ok
09:17:10.0932 0x0ca0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
09:17:10.0937 0x0ca0  MegaSR - ok
09:17:10.0953 0x0ca0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
09:17:10.0953 0x0ca0  MMCSS - ok
09:17:10.0968 0x0ca0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
09:17:10.0971 0x0ca0  Modem - ok
09:17:10.0981 0x0ca0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
09:17:10.0981 0x0ca0  monitor - ok
09:17:10.0997 0x0ca0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
09:17:10.0997 0x0ca0  mouclass - ok
09:17:11.0012 0x0ca0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
09:17:11.0012 0x0ca0  mouhid - ok
09:17:11.0033 0x0ca0  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
09:17:11.0033 0x0ca0  mountmgr - ok
09:17:11.0082 0x0ca0  [ 5961C5D8EDD2E2A3B99F1782AE1AC21F, C383A4724A335737C4C7C3211AFCFB82D373267EC634BC47EE078A1C66E1F62A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:17:11.0085 0x0ca0  MozillaMaintenance - ok
09:17:11.0100 0x0ca0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
09:17:11.0116 0x0ca0  mpio - ok
09:17:11.0136 0x0ca0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
09:17:11.0136 0x0ca0  mpsdrv - ok
09:17:11.0183 0x0ca0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
09:17:11.0188 0x0ca0  MpsSvc - ok
09:17:11.0222 0x0ca0  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
09:17:11.0222 0x0ca0  MRxDAV - ok
09:17:11.0237 0x0ca0  [ 07F8F6B0CAEC7ADD30EBD94940A315D7, 288429A146B74E88D93C5BC19D878A42AC6F411EE31D9A6D36A2A2FFCF7B9436 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
09:17:11.0237 0x0ca0  mrxsmb - ok
09:17:11.0237 0x0ca0  [ 8856E45D23BFF4D977BF06D0543BCD96, 0066C061A3516A16C2477590859865E46E522A290CCE17C3EC1B69F81E466E9E ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:17:11.0256 0x0ca0  mrxsmb10 - ok
09:17:11.0261 0x0ca0  [ 8D383CED28332B5F3894658857472F47, CB3872543D08C6432CF884C11A5897637A6FC7E9AC40F424444BAAA49C9FC32A ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:17:11.0261 0x0ca0  mrxsmb20 - ok
09:17:11.0276 0x0ca0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
09:17:11.0276 0x0ca0  msahci - ok
09:17:11.0292 0x0ca0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
09:17:11.0292 0x0ca0  msdsm - ok
09:17:11.0310 0x0ca0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
09:17:11.0312 0x0ca0  MSDTC - ok
09:17:11.0312 0x0ca0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
09:17:11.0328 0x0ca0  Msfs - ok
09:17:11.0328 0x0ca0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
09:17:11.0328 0x0ca0  mshidkmdf - ok
09:17:11.0344 0x0ca0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
09:17:11.0344 0x0ca0  msisadrv - ok
09:17:11.0382 0x0ca0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
09:17:11.0382 0x0ca0  MSiSCSI - ok
09:17:11.0382 0x0ca0  msiserver - ok
09:17:11.0398 0x0ca0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
09:17:11.0398 0x0ca0  MSKSSRV - ok
09:17:11.0426 0x0ca0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
09:17:11.0429 0x0ca0  MSPCLOCK - ok
09:17:11.0429 0x0ca0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
09:17:11.0429 0x0ca0  MSPQM - ok
09:17:11.0475 0x0ca0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
09:17:11.0485 0x0ca0  MsRPC - ok
09:17:11.0493 0x0ca0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
09:17:11.0493 0x0ca0  mssmbios - ok
09:17:11.0508 0x0ca0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
09:17:11.0511 0x0ca0  MSTEE - ok
09:17:11.0516 0x0ca0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
09:17:11.0516 0x0ca0  MTConfig - ok
09:17:11.0547 0x0ca0  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
09:17:11.0547 0x0ca0  MTsensor - ok
09:17:11.0547 0x0ca0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
09:17:11.0563 0x0ca0  Mup - ok
09:17:11.0580 0x0ca0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
09:17:11.0603 0x0ca0  napagent - ok
09:17:11.0641 0x0ca0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
09:17:11.0641 0x0ca0  NativeWifiP - ok
09:17:11.0710 0x0ca0  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
09:17:11.0726 0x08fc  Object send P2P result: true
09:17:11.0726 0x0ca0  NDIS - ok
09:17:11.0741 0x0ca0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
09:17:11.0741 0x0ca0  NdisCap - ok
09:17:11.0762 0x0ca0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
09:17:11.0762 0x0ca0  NdisTapi - ok
09:17:11.0778 0x0ca0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
09:17:11.0778 0x0ca0  Ndisuio - ok
09:17:11.0793 0x0ca0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
09:17:11.0793 0x0ca0  NdisWan - ok
09:17:11.0829 0x0ca0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
09:17:11.0829 0x0ca0  NDProxy - ok
09:17:11.0897 0x0ca0  [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
09:17:11.0897 0x0ca0  Net Driver HPZ12 - ok
09:17:11.0917 0x0ca0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
09:17:11.0920 0x0ca0  NetBIOS - ok
09:17:11.0956 0x0ca0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
09:17:11.0966 0x0ca0  NetBT - ok
09:17:11.0982 0x0ca0  [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] Netlogon        C:\Windows\system32\lsass.exe
09:17:11.0982 0x0ca0  Netlogon - ok
09:17:12.0031 0x0ca0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
09:17:12.0036 0x0ca0  Netman - ok
09:17:12.0067 0x0ca0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0067 0x0ca0  NetMsmqActivator - ok
09:17:12.0083 0x0ca0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0085 0x0ca0  NetPipeActivator - ok
09:17:12.0090 0x0ca0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
09:17:12.0106 0x0ca0  netprofm - ok
09:17:12.0106 0x0ca0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0106 0x0ca0  NetTcpActivator - ok
09:17:12.0106 0x0ca0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:17:12.0121 0x0ca0  NetTcpPortSharing - ok
09:17:12.0142 0x0ca0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
09:17:12.0142 0x0ca0  nfrd960 - ok
09:17:12.0158 0x0ca0  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
09:17:12.0173 0x0ca0  NlaSvc - ok
09:17:12.0189 0x0ca0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
09:17:12.0189 0x0ca0  Npfs - ok
09:17:12.0191 0x0ca0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
09:17:12.0191 0x0ca0  nsi - ok
09:17:12.0207 0x0ca0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
09:17:12.0207 0x0ca0  nsiproxy - ok
09:17:12.0261 0x0ca0  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
09:17:12.0297 0x0ca0  Ntfs - ok
09:17:12.0313 0x0ca0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
09:17:12.0313 0x0ca0  Null - ok
09:17:12.0352 0x0ca0  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
09:17:12.0367 0x0ca0  NVHDA - ok
09:17:12.0640 0x0ca0  [ 3B99271224C43ADAB5A7F8D4B574AE3F, 931B011EA7796C61922D892C11D880BCC0383FCECABC4F4855AF89BA20B9B01B ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:17:12.0802 0x0ca0  nvlddmkm - ok
09:17:12.0841 0x0ca0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
09:17:12.0841 0x0ca0  nvraid - ok
09:17:12.0841 0x11b4  Object send P2P result: true
09:17:12.0857 0x0ca0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
09:17:12.0857 0x0ca0  nvstor - ok
09:17:12.0911 0x0ca0  [ 97ADEBE576474D4CEC53F8E06590FFC8, 2CC8587AAB595D7621AA57A33D94789BD9DC6DBFB4FA9BDEFBB425B7ACCB65AB ] NVSvc           C:\Windows\system32\nvvsvc.exe
09:17:12.0927 0x0ca0  NVSvc - ok
09:17:12.0950 0x0ca0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
09:17:12.0950 0x0ca0  nv_agp - ok
09:17:12.0965 0x0ca0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
09:17:12.0965 0x0ca0  ohci1394 - ok
09:17:12.0981 0x0ca0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
09:17:12.0999 0x0ca0  p2pimsvc - ok
09:17:13.0020 0x0ca0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
09:17:13.0035 0x0ca0  p2psvc - ok
09:17:13.0053 0x0ca0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
09:17:13.0053 0x0ca0  Parport - ok
09:17:13.0078 0x0ca0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
09:17:13.0078 0x0ca0  partmgr - ok
09:17:13.0099 0x0ca0  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
09:17:13.0115 0x0ca0  PcaSvc - ok
09:17:13.0135 0x0ca0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
09:17:13.0135 0x0ca0  pci - ok
09:17:13.0156 0x0ca0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
09:17:13.0156 0x0ca0  pciide - ok
09:17:13.0189 0x0ca0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
09:17:13.0189 0x0ca0  pcmcia - ok
09:17:13.0218 0x0ca0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
09:17:13.0220 0x0ca0  pcw - ok
09:17:13.0261 0x0ca0  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
09:17:13.0277 0x0ca0  PEAUTH - ok
09:17:13.0341 0x0ca0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
09:17:13.0343 0x0ca0  PerfHost - ok
09:17:13.0351 0x0ca0  pfc - ok
09:17:13.0436 0x0ca0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
09:17:13.0459 0x0ca0  pla - ok
09:17:13.0492 0x0ca0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
09:17:13.0513 0x0ca0  PlugPlay - ok
09:17:13.0565 0x0ca0  [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
09:17:13.0565 0x0ca0  Pml Driver HPZ12 - ok
09:17:13.0596 0x0ca0  PnkBstrA - ok
09:17:13.0616 0x0ca0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
09:17:13.0616 0x0ca0  PNRPAutoReg - ok
09:17:13.0632 0x0ca0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
09:17:13.0648 0x0ca0  PNRPsvc - ok
09:17:13.0686 0x0ca0  [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
09:17:13.0689 0x0ca0  Point64 - ok
09:17:13.0720 0x0ca0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
09:17:13.0738 0x0ca0  PolicyAgent - ok
09:17:13.0754 0x0ca0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
09:17:13.0754 0x0ca0  Power - ok
09:17:13.0790 0x0ca0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
09:17:13.0806 0x0ca0  PptpMiniport - ok
09:17:13.0821 0x0ca0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
09:17:13.0821 0x0ca0  Processor - ok
09:17:13.0821 0x0ca0  prodrv06 - ok
09:17:13.0865 0x0ca0  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
09:17:13.0870 0x0ca0  ProfSvc - ok
09:17:13.0885 0x0ca0  prohlp02 - ok
09:17:13.0885 0x0ca0  prosync1 - ok
09:17:13.0904 0x0ca0  [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:17:13.0904 0x0ca0  ProtectedStorage - ok
09:17:13.0924 0x0ca0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
09:17:13.0940 0x0ca0  Psched - ok
09:17:13.0999 0x0ca0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
09:17:14.0024 0x0ca0  ql2300 - ok
09:17:14.0029 0x0ca0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
09:17:14.0029 0x0ca0  ql40xx - ok
09:17:14.0045 0x0ca0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
09:17:14.0060 0x0ca0  QWAVE - ok
09:17:14.0076 0x0ca0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
09:17:14.0076 0x0ca0  QWAVEdrv - ok
09:17:14.0081 0x0ca0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
09:17:14.0081 0x0ca0  RasAcd - ok
09:17:14.0112 0x0ca0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
09:17:14.0112 0x0ca0  RasAgileVpn - ok
09:17:14.0112 0x0ca0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
09:17:14.0112 0x0ca0  RasAuto - ok
09:17:14.0130 0x0ca0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
09:17:14.0130 0x0ca0  Rasl2tp - ok
09:17:14.0148 0x0ca0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
09:17:14.0169 0x0ca0  RasMan - ok
09:17:14.0169 0x0ca0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
09:17:14.0169 0x0ca0  RasPppoe - ok
09:17:14.0184 0x0ca0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
09:17:14.0184 0x0ca0  RasSstp - ok
09:17:14.0184 0x0ca0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
09:17:14.0200 0x0ca0  rdbss - ok
09:17:14.0218 0x0ca0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
09:17:14.0218 0x0ca0  rdpbus - ok
09:17:14.0221 0x0ca0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
09:17:14.0221 0x0ca0  RDPCDD - ok
09:17:14.0254 0x0ca0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
09:17:14.0254 0x0ca0  RDPENCDD - ok
09:17:14.0264 0x0ca0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
09:17:14.0264 0x0ca0  RDPREFMP - ok
09:17:14.0329 0x0ca0  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:17:14.0329 0x0ca0  RdpVideoMiniport - ok
09:17:14.0367 0x0ca0  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
09:17:14.0367 0x0ca0  RDPWD - ok
09:17:14.0409 0x0ca0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
09:17:14.0411 0x0ca0  rdyboost - ok
09:17:14.0442 0x0ca0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
09:17:14.0447 0x0ca0  RemoteAccess - ok
09:17:14.0470 0x0ca0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
09:17:14.0470 0x0ca0  RemoteRegistry - ok
09:17:14.0488 0x0ca0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
09:17:14.0493 0x0ca0  RpcEptMapper - ok
09:17:14.0498 0x0ca0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
09:17:14.0498 0x0ca0  RpcLocator - ok
09:17:14.0530 0x0ca0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
09:17:14.0530 0x0ca0  RpcSs - ok
09:17:14.0545 0x0ca0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
09:17:14.0545 0x0ca0  rspndr - ok
09:17:14.0584 0x0ca0  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
09:17:14.0600 0x0ca0  RTL8167 - ok
09:17:14.0600 0x0ca0  [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] SamSs           C:\Windows\system32\lsass.exe
09:17:14.0600 0x0ca0  SamSs - ok
09:17:14.0620 0x0ca0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
09:17:14.0620 0x0ca0  sbp2port - ok
09:17:14.0636 0x0ca0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
09:17:14.0636 0x0ca0  SCardSvr - ok
09:17:14.0667 0x0ca0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
09:17:14.0667 0x0ca0  scfilter - ok
09:17:14.0719 0x0ca0  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
09:17:14.0747 0x0ca0  Schedule - ok
09:17:14.0762 0x0ca0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
09:17:14.0762 0x0ca0  SCPolicySvc - ok
09:17:14.0777 0x0ca0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
09:17:14.0777 0x0ca0  SDRSVC - ok
09:17:14.0793 0x0ca0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
09:17:14.0793 0x0ca0  secdrv - ok
09:17:14.0819 0x0ca0  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
09:17:14.0821 0x0ca0  seclogon - ok
09:17:14.0821 0x0ca0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
09:17:14.0821 0x0ca0  SENS - ok
09:17:14.0837 0x0ca0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
09:17:14.0837 0x0ca0  SensrSvc - ok
09:17:14.0875 0x0ca0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
09:17:14.0875 0x0ca0  Serenum - ok
09:17:14.0888 0x0ca0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
09:17:14.0888 0x0ca0  Serial - ok
09:17:14.0922 0x0ca0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
09:17:14.0922 0x0ca0  sermouse - ok
09:17:14.0945 0x0ca0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
09:17:14.0960 0x0ca0  SessionEnv - ok
09:17:14.0960 0x0ca0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
09:17:14.0960 0x0ca0  sffdisk - ok
09:17:14.0976 0x0ca0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
09:17:14.0976 0x0ca0  sffp_mmc - ok
09:17:14.0999 0x0ca0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
09:17:14.0999 0x0ca0  sffp_sd - ok
09:17:15.0015 0x0ca0  sfhlp01 - ok
09:17:15.0030 0x0ca0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
09:17:15.0030 0x0ca0  sfloppy - ok
09:17:15.0066 0x0ca0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
09:17:15.0082 0x0ca0  SharedAccess - ok
09:17:15.0126 0x0ca0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:17:15.0131 0x0ca0  ShellHWDetection - ok
09:17:15.0164 0x0ca0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:17:15.0164 0x0ca0  SiSRaid2 - ok
09:17:15.0180 0x0ca0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
09:17:15.0180 0x0ca0  SiSRaid4 - ok
09:17:15.0250 0x0ca0  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
09:17:15.0271 0x0ca0  SkypeUpdate - ok
09:17:15.0281 0x0ca0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
09:17:15.0296 0x0ca0  Smb - ok
09:17:15.0312 0x0ca0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
09:17:15.0312 0x0ca0  SNMPTRAP - ok
09:17:15.0335 0x0ca0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
09:17:15.0337 0x0ca0  spldr - ok
09:17:15.0381 0x0ca0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
09:17:15.0397 0x0ca0  Spooler - ok
09:17:15.0505 0x0ca0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
09:17:15.0557 0x0ca0  sppsvc - ok
09:17:15.0573 0x0ca0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
09:17:15.0573 0x0ca0  sppuinotify - ok
09:17:15.0609 0x0ca0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
09:17:15.0609 0x0ca0  srv - ok
09:17:15.0624 0x0ca0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
09:17:15.0624 0x0ca0  srv2 - ok
09:17:15.0645 0x0ca0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
09:17:15.0645 0x0ca0  srvnet - ok
09:17:15.0676 0x0ca0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
09:17:15.0676 0x0ca0  SSDPSRV - ok
09:17:15.0692 0x0ca0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
09:17:15.0694 0x0ca0  SstpSvc - ok
09:17:15.0769 0x0ca0  [ 2A6EDC2FBB4B9C11BB21BE3881C7A692, 74482CA4EC2B98C069A32C224BA5449AE10A8B41BFC053A4C23B6F65113A97A4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
09:17:15.0769 0x0ca0  Steam Client Service - ok
09:17:15.0875 0x0ca0  [ 49B1E5AF3AA400752A20BE169CB73DFA, D990BC79B289912EB07F3FD50F1236C593A45C5E9B7BD8162269687258E07CE2 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
09:17:15.0890 0x0ca0  Stereo Service - ok
09:17:15.0890 0x0ca0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
09:17:15.0890 0x0ca0  stexstor - ok
09:17:15.0940 0x0ca0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
09:17:15.0945 0x0ca0  stisvc - ok
09:17:15.0960 0x0ca0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
09:17:15.0960 0x0ca0  swenum - ok
09:17:15.0994 0x0ca0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
09:17:15.0999 0x0ca0  swprv - ok
09:17:16.0046 0x0ca0  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
09:17:16.0079 0x0ca0  SysMain - ok
09:17:16.0102 0x0ca0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:17:16.0104 0x0ca0  TabletInputService - ok
09:17:16.0122 0x0ca0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
09:17:16.0138 0x0ca0  TapiSrv - ok
09:17:16.0163 0x0ca0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
09:17:16.0163 0x0ca0  TBS - ok
09:17:16.0269 0x0ca0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
09:17:16.0287 0x0ca0  Tcpip - ok
09:17:16.0334 0x0ca0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
09:17:16.0372 0x0ca0  TCPIP6 - ok
09:17:16.0392 0x0ca0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
09:17:16.0392 0x0ca0  tcpipreg - ok
09:17:16.0410 0x0ca0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
09:17:16.0410 0x0ca0  TDPIPE - ok
09:17:16.0431 0x0ca0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
09:17:16.0431 0x0ca0  TDTCP - ok
09:17:16.0456 0x0ca0  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
09:17:16.0456 0x0ca0  tdx - ok
09:17:16.0472 0x0ca0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
09:17:16.0472 0x0ca0  TermDD - ok
09:17:16.0531 0x0ca0  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
09:17:16.0551 0x0ca0  TermService - ok
09:17:16.0567 0x0ca0  TFsExDisk - ok
09:17:16.0583 0x0ca0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
09:17:16.0583 0x0ca0  Themes - ok
09:17:16.0603 0x0ca0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
09:17:16.0603 0x0ca0  THREADORDER - ok
09:17:16.0621 0x0ca0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
09:17:16.0624 0x0ca0  TrkWks - ok
09:17:16.0639 0x0ca0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:17:16.0639 0x0ca0  TrustedInstaller - ok
09:17:16.0671 0x0ca0  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
09:17:16.0671 0x0ca0  tssecsrv - ok
09:17:16.0696 0x0ca0  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
09:17:16.0699 0x0ca0  TsUsbFlt - ok
09:17:16.0740 0x0ca0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
09:17:16.0747 0x0ca0  tunnel - ok
09:17:16.0747 0x0ca0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
09:17:16.0763 0x0ca0  uagp35 - ok
09:17:16.0799 0x0ca0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
09:17:16.0815 0x0ca0  udfs - ok
09:17:16.0830 0x0ca0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
09:17:16.0830 0x0ca0  UI0Detect - ok
09:17:16.0851 0x0ca0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
09:17:16.0851 0x0ca0  uliagpkx - ok
09:17:16.0879 0x0ca0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
09:17:16.0879 0x0ca0  umbus - ok
09:17:16.0894 0x0ca0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
09:17:16.0894 0x0ca0  UmPass - ok
09:17:16.0910 0x0ca0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
09:17:16.0925 0x0ca0  upnphost - ok
09:17:16.0969 0x0ca0  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
09:17:16.0969 0x0ca0  USBAAPL64 - ok
09:17:17.0000 0x0ca0  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
09:17:17.0016 0x0ca0  usbaudio - ok
09:17:17.0049 0x0ca0  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
09:17:17.0049 0x0ca0  usbccgp - ok
09:17:17.0077 0x0ca0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
09:17:17.0077 0x0ca0  usbcir - ok
09:17:17.0108 0x0ca0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
09:17:17.0108 0x0ca0  usbehci - ok
09:17:17.0139 0x0ca0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
09:17:17.0147 0x0ca0  usbhub - ok
09:17:17.0147 0x0ca0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
09:17:17.0147 0x0ca0  usbohci - ok
09:17:17.0178 0x0ca0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
09:17:17.0178 0x0ca0  usbprint - ok
09:17:17.0196 0x0ca0  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
09:17:17.0196 0x0ca0  usbscan - ok
09:17:17.0212 0x0ca0  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
09:17:17.0212 0x0ca0  USBSTOR - ok
09:17:17.0243 0x0ca0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
09:17:17.0243 0x0ca0  usbuhci - ok
09:17:17.0253 0x0ca0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
09:17:17.0269 0x0ca0  UxSms - ok
09:17:17.0269 0x0ca0  [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] VaultSvc        C:\Windows\system32\lsass.exe
09:17:17.0269 0x0ca0  VaultSvc - ok
09:17:17.0289 0x0ca0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
09:17:17.0289 0x0ca0  vdrvroot - ok
09:17:17.0328 0x0ca0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
09:17:17.0333 0x0ca0  vds - ok
09:17:17.0349 0x0ca0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
09:17:17.0349 0x0ca0  vga - ok
09:17:17.0349 0x0ca0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
09:17:17.0349 0x0ca0  VgaSave - ok
09:17:17.0385 0x0ca0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
09:17:17.0385 0x0ca0  vhdmp - ok
09:17:17.0488 0x0ca0  [ 84FFC3CCA60A1B52A021BC894D529735, F5D98240BF671D792F62669E793080AC1C421C9D1AC3218582622A4C0648C368 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
09:17:17.0520 0x0ca0  VIAHdAudAddService - ok
09:17:17.0561 0x0ca0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
09:17:17.0561 0x0ca0  viaide - ok
09:17:17.0583 0x0ca0  [ F4310278E6CE1C507B5555B662369E26, 179645BCA78FD52F6A370FF885E8A5579B21E6FB721E4FA3D48B5ABCD2A72B3A ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
09:17:17.0583 0x0ca0  VIAKaraokeService - ok
09:17:17.0599 0x0ca0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
09:17:17.0599 0x0ca0  volmgr - ok
09:17:17.0635 0x0ca0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
09:17:17.0651 0x0ca0  volmgrx - ok
09:17:17.0679 0x0ca0  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
09:17:17.0679 0x0ca0  volsnap - ok
09:17:17.0712 0x0ca0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
09:17:17.0715 0x0ca0  vsmraid - ok
09:17:17.0764 0x0ca0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
09:17:17.0795 0x0ca0  VSS - ok
09:17:17.0815 0x0ca0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
09:17:17.0815 0x0ca0  vwifibus - ok
09:17:17.0859 0x0ca0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
09:17:17.0859 0x0ca0  W32Time - ok
09:17:17.0879 0x0ca0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
09:17:17.0879 0x0ca0  WacomPen - ok
09:17:17.0882 0x0ca0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
09:17:17.0897 0x0ca0  WANARP - ok
09:17:17.0897 0x0ca0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
09:17:17.0897 0x0ca0  Wanarpv6 - ok
09:17:17.0946 0x0ca0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
09:17:17.0977 0x0ca0  WatAdminSvc - ok
09:17:18.0013 0x0ca0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
09:17:18.0047 0x0ca0  wbengine - ok
09:17:18.0088 0x0ca0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
09:17:18.0093 0x0ca0  WbioSrvc - ok
09:17:18.0116 0x0ca0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
09:17:18.0116 0x0ca0  wcncsvc - ok
09:17:18.0131 0x0ca0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:17:18.0131 0x0ca0  WcsPlugInService - ok
09:17:18.0147 0x0ca0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
09:17:18.0147 0x0ca0  Wd - ok
09:17:18.0211 0x0ca0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
09:17:18.0232 0x0ca0  Wdf01000 - ok
09:17:18.0263 0x0ca0  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
09:17:18.0263 0x0ca0  WdiServiceHost - ok
09:17:18.0263 0x0ca0  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
09:17:18.0263 0x0ca0  WdiSystemHost - ok
09:17:18.0299 0x0ca0  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
09:17:18.0304 0x0ca0  WebClient - ok
09:17:18.0317 0x0ca0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
09:17:18.0322 0x0ca0  Wecsvc - ok
09:17:18.0347 0x0ca0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
09:17:18.0347 0x0ca0  wercplsupport - ok
09:17:18.0404 0x0ca0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
09:17:18.0409 0x0ca0  WerSvc - ok
09:17:18.0427 0x0ca0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
09:17:18.0427 0x0ca0  WfpLwf - ok
09:17:18.0461 0x0ca0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
09:17:18.0461 0x0ca0  WIMMount - ok
09:17:18.0482 0x0ca0  WinDefend - ok
09:17:18.0500 0x0ca0  WinHttpAutoProxySvc - ok
09:17:18.0538 0x0ca0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
09:17:18.0554 0x0ca0  Winmgmt - ok
09:17:18.0634 0x0ca0  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
09:17:18.0664 0x0ca0  WinRM - ok
09:17:18.0695 0x0ca0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
09:17:18.0695 0x0ca0  WinUsb - ok
09:17:18.0744 0x0ca0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
09:17:18.0759 0x0ca0  Wlansvc - ok
09:17:18.0880 0x0ca0  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:17:18.0903 0x0ca0  wlidsvc - ok
09:17:18.0937 0x0ca0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
09:17:18.0937 0x0ca0  WmiAcpi - ok
09:17:18.0955 0x0ca0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
09:17:18.0955 0x0ca0  wmiApSrv - ok
09:17:18.0970 0x0ca0  WMPNetworkSvc - ok
09:17:18.0991 0x0ca0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
09:17:18.0991 0x0ca0  WPCSvc - ok
09:17:19.0007 0x0ca0  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
09:17:19.0012 0x0ca0  WPDBusEnum - ok
09:17:19.0012 0x0ca0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
09:17:19.0012 0x0ca0  ws2ifsl - ok
09:17:19.0027 0x0ca0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
09:17:19.0027 0x0ca0  wscsvc - ok
09:17:19.0027 0x0ca0  WSearch - ok
09:17:19.0133 0x0ca0  [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv        C:\Windows\system32\wuaueng.dll
09:17:19.0164 0x0ca0  wuauserv - ok
09:17:19.0200 0x0ca0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
09:17:19.0200 0x0ca0  WudfPf - ok
09:17:19.0216 0x0ca0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\drivers\WUDFRd.sys
09:17:19.0216 0x0ca0  WUDFRd - ok
09:17:19.0236 0x0ca0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
09:17:19.0236 0x0ca0  wudfsvc - ok
09:17:19.0252 0x0ca0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
09:17:19.0267 0x0ca0  WwanSvc - ok
09:17:19.0267 0x0ca0  ================ Scan global ===============================
09:17:19.0288 0x0ca0  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
09:17:19.0327 0x0ca0  [ DE4812AB2E6926D0FF2423F3B774585A, 77604B47F2A91F77DDF778D8D362A0145636ED060596760ED55D76DD12E04B79 ] C:\Windows\system32\winsrv.dll
09:17:19.0347 0x0ca0  [ DE4812AB2E6926D0FF2423F3B774585A, 77604B47F2A91F77DDF778D8D362A0145636ED060596760ED55D76DD12E04B79 ] C:\Windows\system32\winsrv.dll
09:17:19.0363 0x0ca0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:17:19.0397 0x0ca0  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
09:17:19.0399 0x0ca0  [ Global ] - ok
09:17:19.0399 0x0ca0  ================ Scan MBR ==================================
09:17:19.0415 0x0ca0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:17:19.0573 0x0ca0  \Device\Harddisk0\DR0 - ok
09:17:19.0573 0x0ca0  ================ Scan VBR ==================================
09:17:19.0573 0x0ca0  [ 268C96959E6BD877A065959930023686 ] \Device\Harddisk0\DR0\Partition1
09:17:19.0611 0x0ca0  \Device\Harddisk0\DR0\Partition1 - ok
09:17:19.0611 0x0ca0  [ BC3A675FD3DBEEBF9EE4EDE9E7B25B1C ] \Device\Harddisk0\DR0\Partition2
09:17:19.0653 0x0ca0  \Device\Harddisk0\DR0\Partition2 - ok
09:17:19.0655 0x0ca0  [ E942436E35142068794E52B9CC967448 ] \Device\Harddisk0\DR0\Partition3
09:17:19.0673 0x0ca0  \Device\Harddisk0\DR0\Partition3 - ok
09:17:19.0673 0x0ca0  ================ Scan generic autorun ======================
09:17:19.0787 0x0ca0  [ 4F46EA70C7579052F764D0F9B81D23C2, EABE443ABC39AFDA49762A78711FAB4C7367680BE4F0B79F3144362D4A272238 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
09:17:19.0825 0x0ca0  NvBackend - ok
09:17:19.0913 0x0ca0  [ B4707C1DB877378C0D0CA715B7388E32, 130ABA211B32E83F5AB4770E16781B0913298960DA3312BB734835AC6F33611C ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
09:17:19.0950 0x0ca0  HDAudDeck - ok
09:17:20.0004 0x0ca0  [ EB6299B13573433744A6582966F760C7, 3D2FE7AB8533331566D449F9DD8FEC4B03C6E341E82D651DD778BDF8B0AEE663 ] C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
09:17:20.0004 0x0ca0  Device Detector - ok
09:17:20.0084 0x0ca0  [ 0A8C7CDE76A44A98E1B1CE34D27AC926, 26B86CA609DD15F86981C1FC4667814A2A7EE5D4BC944B5306A06C00DA35E1D0 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
09:17:20.0099 0x0ca0  DivXMediaServer - ok
09:17:20.0177 0x0ca0  [ 1CE11C53E562D5F7EAFCF47E0E696516, 4E8264DB3CA9B2344905BC2CAE6A9E73190A3CCF3D154B3CBDAF4F73F8FCD64B ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
09:17:20.0177 0x0ca0  avgnt - ok
09:17:20.0247 0x0ca0  [ 16AFB34618E1286FF856DC600AC49C79, 431EC110507685A0F4472EAE35383B4C1E3DC0B56E01CDECFB18F753181DC995 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
09:17:20.0262 0x0ca0  DivXUpdate - ok
09:17:20.0327 0x0ca0  [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
09:17:20.0327 0x0ca0  HP Software Update - ok
09:17:20.0361 0x0ca0  [ 86069F4F421FB355C41FD734500E477F, CB4CE22C3298280B033105875079A373D7E1ADEA15F0F71A2095CCA50CF7E5A5 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
09:17:20.0363 0x0ca0  Avira SystrayStartTrigger - ok
09:17:20.0425 0x0ca0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:17:20.0448 0x0ca0  Sidebar - ok
09:17:20.0466 0x0ca0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:17:20.0466 0x0ca0  mctadmin - ok
09:17:20.0500 0x0ca0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:17:20.0515 0x0ca0  Sidebar - ok
09:17:20.0515 0x0ca0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:17:20.0515 0x0ca0  mctadmin - ok
09:17:20.0626 0x0ca0  [ E8405C87CD06FF5D69BC6F3B24D766D0, C82171BEDBFE593A04D09C2E20B0528AA3CEC722D6919F8A5C70C6EFFB9EFEAE ] C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
09:17:20.0642 0x0ca0  AmazonMP3DownloaderHelper - ok
09:17:20.0644 0x0ca0  Waiting for KSN requests completion. In queue: 278
09:17:21.0645 0x0ca0  Waiting for KSN requests completion. In queue: 278
09:17:22.0660 0x0ca0  Waiting for KSN requests completion. In queue: 278
09:17:23.0690 0x0ca0  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.16.273 ), 0x41000 ( enabled : updated )
09:17:23.0690 0x0ca0  Win FW state via NFP2: enabled ( trusted )
09:17:26.0123 0x0ca0  ============================================================
09:17:26.0123 0x0ca0  Scan finished
09:17:26.0123 0x0ca0  ============================================================
09:17:26.0136 0x0cdc  Detected object count: 0
09:17:26.0136 0x0cdc  Actual detected object count: 0
09:19:05.0840 0x0ec8  Deinitialize success
         
__________________

Alt 28.03.2016, 09:27   #4
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



FRST Addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-28 09:00:43)
Gestartet von D:\
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-11 12:11:54)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3779484281-1756450511-2492205697-500 - Administrator - Disabled)
Gast (S-1-5-21-3779484281-1756450511-2492205697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3779484281-1756450511-2492205697-1004 - Limited - Enabled)
Patrick (S-1-5-21-3779484281-1756450511-2492205697-1000 - Administrator - Enabled) => C:\Users\Patrick

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4500_G510gm_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510gm (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
4500G510gm_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ACDSee 6.0 PowerPack (HKLM-x32\...\{1A20BC22-8F21-4A2A-9F4A-E31FC0E5C7E3}) (Version: 6.0.2 - ACD Systems Ltd.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version:  - )
Armageddon (HKLM-x32\...\{E163BB62-2840-4C55-9A8E-5C5B9E9FF86C}) (Version:  - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Birth of the Federation (HKLM-x32\...\Birth of the Federation) (Version:  - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
Browser Configuration Utility (HKLM-x32\...\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}) (Version: 1.0.12.1 - DeviceVM, Inc.) <==== ACHTUNG
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty - United Offensive (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Command & Conquer Die ersten 10 Jahre (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528D}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Die ersten 10 Jahre-Patch 1.02 (HKLM-x32\...\{CBB0ABFB-4668-4172-952D-2CEF5C14F4D2}) (Version:  - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of the Tentacle Remastered (HKLM-x32\...\Steam App 388210) (Version:  - Double Fine Productions)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo II (HKLM-x32\...\Diablo II) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DocMgr (x32 Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hearts of Iron III (HKLM-x32\...\{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}) (Version:  - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510g-m (HKLM\...\{E5083D57-D93F-404C-A91F-1C50D67C2BEB}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mafia II (HKLM-x32\...\Steam App 50130) (Version:  - 2K Czech)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version:  - )
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Controller-Treiber 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.2.3 (HKLM-x32\...\OpenTTD) (Version: 1.2.3 - OpenTTD)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 36.0.2130.32 (HKLM-x32\...\Opera 36.0.2130.32) (Version: 36.0.2130.32 - Opera Software)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.0.0 - Electronic Arts)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sid Meier's Colonization 1.0 (HKLM-x32\...\Sid Meier's Colonization) (Version: 1.0 - 2K Games)
Sierra-Dienstprogramme (HKLM-x32\...\Sierra-Dienstprogramme) (Version:  - )
Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft)
simfy (HKLM-x32\...\Simfy) (Version: 1.6.2 - simfy GmbH)
simfy (x32 Version: 1.6.2 - simfy GmbH) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version:  - )
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tropico 3 1.00 (HKLM-x32\...\Tropico3) (Version: 1.00 - Kalypso Media)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vallen JPegger (HKLM-x32\...\{73182AC3-5CC3-4161-AE97-F23E09B13147}) (Version: V5.70 (Build: 14.0924) - Vallen Systeme GmbH)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.61  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0047D97F-82A4-4888-8E7C-47AC907D76B0} - System32\Tasks\{B6288156-B6A5-41E5-AB28-FE71E587B474} => pcalua.exe -a "C:\Program Files (x86)\Java\jre6\bin\javacpl.exe" -d C:\Windows\system32
Task: {05F7C29C-D76E-4A27-8336-807AF0310399} - System32\Tasks\Opera scheduled Autoupdate 1418232650 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-14] (Opera Software)
Task: {0DB7B184-595B-4856-B0F4-AADCAFC707DD} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {1648D46D-CAEE-4802-89F4-232D9AB28447} - System32\Tasks\{E5BA36D8-FBCB-492C-814C-C01FC0D68945} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {26A6AA09-96AA-4A14-9067-8E22ED566AD2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {290E186C-4866-47D5-A71E-A68A176CE6FB} - System32\Tasks\{997BBDD4-01CD-4A6C-BECD-B768246E0A0F} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly
Task: {2DB641E6-F5E1-4992-A829-46733C4B1C8B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {53240E2C-09C8-433F-B676-E4B8557303B5} - System32\Tasks\{BE3FED53-E047-4060-92A7-2C0351AD1EC3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-02-10] (Skype Technologies S.A.)
Task: {57D4DA5D-CA0C-47C1-B802-28086DC70B64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {5863F53F-89A6-4A1B-A458-5762650648AF} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {6B2309B9-7C6E-4831-8381-379EC9F9128B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {76990081-9D55-490B-947D-5D4D63657CAD} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {87DAAAA0-4DCF-4A99-91A7-907DEF7CFC66} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A458DE9E-A37C-440D-B98E-A0165829035F} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20] (Oracle Corporation)
Task: {A9FB9D69-F562-42C7-8F7A-8D0FB11C332D} - System32\Tasks\Samsung-Online-Aktualisierungsprogramm => C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe
Task: {B51F4F57-3D09-40B3-895D-B28B9D51D0E0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BB660F43-FC39-4CC1-93D2-0A8F5B14AA58} - System32\Tasks\{7C6732F4-33FA-48CE-8A11-814478F176AE} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {D0943722-068A-4952-B465-BAE44AEBDE27} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2011-10-26 10:59 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-11 17:50 - 2011-08-14 10:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2011-05-11 14:17 - 2011-04-06 18:20 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-11 14:19 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2011-05-11 14:19 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2011-05-11 14:19 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2011-05-11 14:19 - 2009-03-25 16:53 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2011-12-09 17:02 - 2014-04-22 21:26 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
2016-03-24 21:29 - 2016-03-24 21:29 - 19397824 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{C32984CB-584C-43E9-95A0-9095F6397D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0DBE4CE2-7290-4F45-8452-A1B228808D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{624A342D-57A1-45B9-84C4-AF749461B87C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{43FEF54A-ECCA-4C98-8826-20AC3B1007B6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5A39D4AB-2354-4DCE-B0C8-F0246ABC76BA}] => (Allow) LPort=2869
FirewallRules: [{BD3F6624-5C77-4856-A223-3D6F191085A4}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{A6BC6C2C-0BA3-4E30-9360-DF0B093BE7BC}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{4E75F0FD-5F7E-4C6E-ACDC-37EEDA2340A8}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{ADB97BF7-44AB-47B2-8F93-AE043CC8A570}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{05667FFF-D0F8-4D3F-9AB2-3D15ABC06E97}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8ECD16C6-91DF-4625-BD7E-46515E0AF576}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{3C2A3C26-78DF-443C-BD3B-9FB6274843CD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{5A5BCB59-87EB-4D28-8DFE-A3BFDD93A54B}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{6333C699-0768-4EE0-9045-B051C8B6E112}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{25EE640D-15A0-4281-83B8-31A6F824F684}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{378FE6A3-E8D7-4689-BDBF-86B0434102F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4FC8356D-354E-43A8-AD51-DD7BCFEE1673}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D294339F-1EB0-4AD9-8BE6-5E49A1A3C917}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6387AAD7-DBC1-43B3-8922-3906A2DA1EB7}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{49562064-7E28-45E6-B715-8F3435F14A26}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{2240193D-5BF2-40CE-9399-A0432E2C774D}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{DA5F9BAA-34D9-4785-A9CE-9844679CCB21}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D6DA1C3D-26A8-49C6-A846-847B5D701C48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{F735CC49-391F-4DD2-86BC-A5DFA52670B1}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{0CAD3A0B-B2FC-459B-A41A-68EE8A3D7B55}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{9293C9E0-A94E-48AD-A0D6-49FF83683938}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{FB76B658-56AF-402D-B9AF-65799624CB5A}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [UDP Query User{3DDA228D-02E6-4813-A0CF-F7F7F044485C}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{02190F4B-165E-410E-A6FB-391882415CC9}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{D329D921-EC96-4553-9B20-D09AD7FB93B7}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [TCP Query User{7473EFAC-A698-4843-BF56-E2D489DEF4FA}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0BE7A2CA-3A16-4515-824C-8BA75F4B051F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{4B80DF41-3BF6-4398-8703-E41B544538F4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9C4BF73C-0B71-4B16-AF30-D279073442A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{459B32AC-5267-4EF7-9673-75C7DA979980}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [{FA3EA983-53CA-47E8-98DF-82156F4B7824}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [TCP Query User{ECEFA33E-DE78-458D-A745-C1691FD30E9A}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [UDP Query User{A811B78A-FE9E-41F5-A3A9-20FBF08753DE}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{8FF5605F-EFA9-4DD4-97F8-B3F7394747E7}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{9FE4A8B3-7A1E-4669-A049-84E53A0F5A57}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [TCP Query User{4DDEA0E4-704D-4DA3-8F99-47D32FC4572B}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2AC2AC37-8C27-4493-85C3-D97052DFDA1C}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E25A8788-5049-49D8-8648-E4634CEF36B0}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{93DFD1DA-F47E-4C98-AB1C-C770F2C007A3}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FCC2A810-C55B-4DB8-AB31-C4A912FB7D47}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{87597222-8A96-49FA-A318-5AFD868823D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{EF063043-D8C9-4E3C-A477-33BF1EB43B9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{4063C165-21E5-408F-9D3F-9E253D3BE2E9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{229CF85B-1420-4640-9DE9-A1301671A017}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{065DF7BD-E2EE-4C38-86E1-D493D3B41BC6}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{FA78F6DF-1C8E-4F50-95E2-D9A7A8534C99}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{3A3EA13C-D24B-4C7D-B767-28B165DE7EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [TCP Query User{FE8E9E6A-9263-4139-8E8C-B6DC52B323ED}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [UDP Query User{AB20D579-041B-4C1A-B333-B0E12506A9DD}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [{5E5D2079-B4B4-47A2-BE26-FD544B6A9CFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{ECEF128C-CBFD-4E4A-9F0C-F76F65EA3780}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{D59AA56B-A8E8-4FEB-AFAA-683B4F4C9816}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{C472F769-E15B-462E-88EB-B7524A0BA2E7}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [TCP Query User{EEE03B2C-0FC5-48C4-B022-B48B560C8BC4}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{E2B83EE9-0164-4C82-B41B-FA3AF59F3922}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{E56DAA2B-7337-4C7C-92AD-E6200476BDF9}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{CE56DAB9-780F-4ED3-AB65-76CC22FACAEB}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{2C6CC2C5-4282-4596-BE37-77B73646253D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1B986CDA-1724-4268-81AB-1C3743BED4F0}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E36EA5F-F900-420E-AAE3-2C232DFCA9AA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{EF529C20-ECB5-4961-ABF9-B5A91CE5E5BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [TCP Query User{EF5FCF5A-6BC9-4B64-B74F-646F89B48006}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{19E6565B-96E4-4D32-81F6-121815B5C22D}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{801900C4-77CC-439F-9F72-57375117FC7C}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{0395FF3B-C528-49E7-9F00-8BEE871B4EEE}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{2AA628D4-2C71-4299-A2D8-857BA35FD8FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{E6C307E9-B837-43A2-B990-E46CEECFDBE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [TCP Query User{B51E0C45-CB19-41C9-BB3F-555AE8E2690C}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [UDP Query User{3B510D0D-E5F4-4AA0-A913-A339205A81FA}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [{CDE95D20-9C75-4FC9-8411-CF3696269E95}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{7DF73B6E-C44D-4436-AC69-B3E006975FC8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{DF42F708-9521-4453-B99E-0713668F166D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{8DC95206-76E9-4E46-BCB8-31633A366654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{7095C02D-4BBA-4C7C-928C-20494C1E517B}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{1D9F5187-6AAC-4AA3-850B-45AA5F141D10}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{54840F41-5AA8-4CFF-A2D3-FD74A38E70B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{420D4372-2BA1-43E3-ACDA-63E05E7FCD0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E992E954-196B-4FDD-8353-65CF0BD2309F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B8783539-B66C-4EE5-AC46-49D141F95337}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B7A49E58-DA80-4568-98D3-FD1062E932E9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{46C72477-6000-47D2-A1BD-188777EF572E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{563E450C-D1F7-4F4B-97F9-586CEDFD072A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{9B1E57DF-096B-4216-8D43-57D7DC2B767B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1A3C5741-7751-437F-8EF6-7C471E179E09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{53E0635B-9838-4A4B-8BD3-16EF5E5A8651}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FB9FEF18-A4A1-44A0-AAF8-2FA3CEF665C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{B1FED601-9F01-474A-BC16-BDCAE9F6D550}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{3ED7010A-DD24-438F-A7AA-C2FD31F44334}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A29251D-0926-4B6C-8CBE-88C07CBF1A82}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7FE49A7-ACE0-479A-9059-A2EB64595DC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{D4226C21-0DAE-41AA-B4A9-6E7CB54A4B87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{0E2E6FEE-D31D-410B-944D-C0E7E9C8660D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{927C6C1A-D142-4701-A831-D0E806A8E392}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{52CBA9EE-879D-48A8-B0CB-2C29A03A7F87}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{21D17140-1447-474F-B4A0-96BB217A93A8}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [TCP Query User{FB145B01-CDA4-4910-B871-C0C063BF0B53}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{DAA21334-E6B3-4A8D-81C4-62D6CDDAF88F}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{F19DC922-F6F9-4F3A-85A8-C1C79F47486C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{2B670CB9-C181-400D-A5FF-7F7FF36BC1D3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{DF47DB6E-8324-406D-9D0B-DDD250C98274}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{7AC44544-59CA-4A25-910F-5905CAECE913}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C35A1D5-CA88-44F5-BDF5-9E5F219530F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{ADFB721A-E8CC-4343-A17E-5D4161DEF896}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8D415CE1-1D3A-4F24-8A7D-20B148CB870C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{55A1F745-D8D3-4C5D-8A74-9CE9D9560E4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7D6942F5-48A6-4B0A-B5E5-C7AAA05BE4E2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B1678A39-59CF-4439-BD5E-C5B5220B66C8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7FC273BC-5F50-4CAE-9742-F4CFBF3CD423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{1FB5C5CB-8F9F-45AF-8B82-0DE7A11693E7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{1D5A1C6B-BEC4-44DB-A343-A93120D0AE62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E11D49C-5CB0-42D6-9AC0-9553CB1CD1EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{13DFE636-8B8B-475C-AA35-698EC0F65135}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{3F020619-865C-4AB6-A931-29F9055D70C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{932BBCFD-048D-4D3C-8EF2-2D538D012277}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F4A7349A-7005-4B21-A5F7-C2904F9F29FE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{8C36F0BE-C005-4FE1-A95F-769069489455}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{5786A6AC-A14B-42BA-9B68-4F31261CB8E7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{B75263D3-D958-4290-9BC9-6902DA0A7C23}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D4CCB33-0CA0-40F5-9CA3-DAEA3C779153}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{33F2371D-5E62-4B9A-85CD-37596933A86E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{B111818D-995C-42FF-9709-97C6BBD948F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E4ADB540-2066-4DDF-A049-42C4F2D853CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{5A4C8C9C-B3C7-4533-BA7D-BED64856CAC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{BCD10E1B-3BE4-48AF-8230-6A5B42885516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{081D7107-A1F8-4E59-9E43-FB369C3FFC03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{3E49CC7E-8AEB-4FB2-89B6-FC0DF2AB98C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{C076010B-DF57-4B00-835E-FE6AA8E87687}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{D10DD33A-0506-439A-A005-72B386C8D113}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{CD3979EE-62E6-4669-A9A1-1AAE77DCA0FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{9FAFAE95-748A-46C3-8465-E264A385A31A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{BE1D7ADE-02C9-45A2-90D3-51444B25BFFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{EE1FA5A9-28CF-45D0-BC2E-ED1AC1DEC978}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{EB6EC940-C784-4571-BA7E-6931ADA6E411}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{44D3FCFD-0F3F-4519-B2A8-F8E87195CD61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{E01C6642-ECFC-465D-8036-FB77C5B07F19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{C58C50B8-0DE0-4ECA-ABEC-800012D854E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{7E959230-455A-4823-A2E9-0C912EA4D054}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{95FD7D24-F0E4-4558-B9B5-59E8A90B096E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{06D05AB2-B1EB-48B0-A87B-C6C796D290B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{A93E4C38-F0DC-468A-AF34-9DBBD5077872}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{CE64A636-68F1-4A48-9D24-B34967AB9C28}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{F39B6073-94E3-4900-A519-35C72CB51054}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B0C51CA3-65FA-41E9-8579-3EB3071CD818}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6A7627DA-560D-4AEF-9B04-A91F6F12F752}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [UDP Query User{AE6E3FC0-B7D5-424E-B914-2702B6F49F5B}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [{1498C0BE-43E9-47B8-8BED-0597CD23DDAC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{225870E3-3C82-4B0B-A909-FC814BB82C04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CDC896C2-E025-4530-A4F0-070288C097D2}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{D8413924-4CE8-4412-924A-AE825FDD54AA}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{62534F73-CB55-456C-A469-6CD2212DCC01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{418C28DA-9BF9-4D7B-89DD-0EB67BB8E8D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C4B96FD-A409-493E-8519-67CFA3408695}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{BA1B9ECE-84E0-47B4-B11E-7612B3F47623}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [{1F27C5B3-48F4-4461-9B11-4E56AD3C2F72}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{3CF26DF8-9B0B-44B1-9EE7-1E191E08FB32}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe

==================== Wiederherstellungspunkte =========================

15-03-2016 15:42:06 Windows Update
19-03-2016 15:29:27 Windows Update
22-03-2016 17:02:16 Windows Update
24-03-2016 23:26:06 Windows Update
27-03-2016 15:37:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
27-03-2016 15:38:09 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
27-03-2016 18:17:23 Windows Defender Checkpoint

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/27/2016 07:08:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 07:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x83c
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (03/27/2016 07:00:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 06:43:41 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 04:32:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Name des fehlerhaften Moduls: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000efbc7
ID des fehlerhaften Prozesses: 0x141c
Startzeit der fehlerhaften Anwendung: 0xDott.exe0
Pfad der fehlerhaften Anwendung: Dott.exe1
Pfad des fehlerhaften Moduls: Dott.exe2
Berichtskennung: Dott.exe3

Error: (03/10/2016 05:06:40 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5C00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (03/05/2016 09:38:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x860
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (02/19/2016 03:10:19 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5B00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (02/15/2016 03:19:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0xb00
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (02/15/2016 09:33:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x694
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3


Systemfehler:
=============
Error: (03/28/2016 09:04:03 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:02:55 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:02:45 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:02:15 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:01:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:01:45 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:01:43 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:00:12 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:00:11 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 09:00:10 AM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Prozentuale Nutzung des RAM: 23%
Installierter physikalischer RAM: 8183.05 MB
Verfügbarer physikalischer RAM: 6286.35 MB
Summe virtueller Speicher: 16364.32 MB
Verfügbarer virtueller Speicher: 14164.45 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:200.01 GB) (Free:95.96 GB) NTFS
Drive d: () (Fixed) (Total:731.41 GB) (Free:649.15 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9FCDF98)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 28.03.2016, 09:27   #5
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



FRST

FRST Logfile:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Patrick (Administrator) auf PATRICK-PC (28-03-2016 09:00:12)
Gestartet von D:\
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ACD Systems, Ltd.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3031664 2011-04-06] (VIA)
HKLM-x32\...\Run: [Device Detector] => C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe [217088 2003-11-27] (ACD Systems, Ltd.)
HKLM-x32\...\Run: [NPSStartup] => [X]
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-27]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B9C1690C-CDE6-4E02-B8DF-1124B8E084EB}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-06-26] [ist nicht signiert]
FF HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome: 
=======
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-24] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-08-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-05-23] (Padus, Inc.) [Datei ist nicht signiert]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [65504 2004-03-09] (Protection Technology) [Datei ist nicht signiert]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [Datei ist nicht signiert]
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2015-11-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [Datei ist nicht signiert]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Datei ist nicht signiert]
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-28 08:59 - 2016-03-28 09:00 - 00000000 ____D C:\FRST
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (2).exe
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (1).exe
2016-03-27 20:28 - 2016-03-27 20:29 - 00188150 _____ C:\Windows\ntbtlog.txt
2016-03-27 19:28 - 2016-03-27 21:23 - 00000000 ____D C:\AdwCleaner
2016-03-27 19:28 - 2016-03-27 19:29 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
2016-03-27 18:40 - 2016-03-27 18:40 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\MCorp
2016-03-27 18:14 - 2016-03-27 18:15 - 00000000 ____D C:\Users\Patrick\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-27 18:14 - 2016-03-27 18:14 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\Desktop\Vallen JPegger.lnk
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vallen JPegger.lnk
2016-03-09 18:40 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 18:40 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 18:40 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 18:40 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-08 21:37 - 2016-02-04 19:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-08 21:37 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-08 21:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-08 21:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-08 21:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-08 21:36 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-08 21:36 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-08 21:36 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-08 21:36 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-08 21:36 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-08 21:36 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-08 21:36 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-08 21:36 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-08 21:36 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-08 21:36 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-08 21:36 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-08 21:36 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-08 21:36 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-08 21:36 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-08 21:36 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-08 21:36 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-08 21:36 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-08 21:36 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-08 21:36 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-08 21:36 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-08 21:36 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-08 21:36 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-08 21:36 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-08 21:36 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-08 21:36 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-08 21:36 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-08 21:36 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-08 21:36 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-08 21:36 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 21:36 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-08 21:35 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-08 21:35 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-08 21:35 - 2016-02-11 19:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-08 21:35 - 2016-02-11 19:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-08 21:35 - 2016-02-11 19:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-08 21:35 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-08 21:35 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-08 21:34 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-08 21:34 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-08 21:34 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-08 21:34 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-08 21:34 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-08 21:34 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-28 08:58 - 2015-10-03 21:12 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-28 08:55 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-28 08:55 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-28 08:51 - 2009-07-14 19:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2016-03-28 08:51 - 2009-07-14 19:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2016-03-28 08:51 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-28 08:51 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-03-28 08:39 - 2011-05-11 14:23 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-28 08:39 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-27 23:29 - 2012-04-08 17:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-27 22:59 - 2011-05-11 15:19 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Skype
2016-03-27 22:28 - 2015-11-02 22:48 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-27 22:28 - 2014-12-10 19:30 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 36.lnk
2016-03-27 22:28 - 2014-06-26 19:19 - 00001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-27 22:28 - 2011-09-04 14:35 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-03-27 22:28 - 2011-05-11 14:25 - 00001833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-27 22:28 - 2011-05-11 14:17 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-27 22:28 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-27 22:27 - 2016-02-06 16:45 - 00000897 _____ C:\Users\Public\Desktop\Command & Conquer Die ersten 10 Jahre.lnk
2016-03-27 22:27 - 2015-11-02 22:48 - 00002041 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-27 22:27 - 2015-10-03 21:12 - 00001100 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-27 22:27 - 2015-09-25 19:12 - 00000907 _____ C:\Users\Patrick\Desktop\Star Wars Jedi Knight II Jedi Outcast spielen.lnk
2016-03-27 22:27 - 2015-09-25 16:34 - 00000833 _____ C:\Users\Public\Desktop\DOSBox 0.74.lnk
2016-03-27 22:27 - 2015-09-02 16:21 - 00001132 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-27 22:27 - 2014-11-12 21:54 - 00001851 _____ C:\Users\Public\Desktop\ooVoo.lnk
2016-03-27 22:27 - 2014-10-11 22:42 - 00002013 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-27 22:27 - 2014-09-27 20:26 - 00001386 _____ C:\Users\Patrick\Desktop\CopyTrans Control Center.lnk
2016-03-27 22:27 - 2014-08-31 17:33 - 00001135 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2016-03-27 22:27 - 2014-07-04 14:58 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001345 _____ C:\Users\Public\Desktop\HP Solution Center.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Mehrspieler.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Einzelspieler.lnk
2016-03-27 22:27 - 2013-11-12 20:33 - 00001156 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Mehrspieler.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Einzelspieler.lnk
2016-03-27 22:27 - 2012-12-23 17:06 - 00000670 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-03-27 22:27 - 2012-07-17 21:51 - 00000706 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-27 22:27 - 2012-06-24 19:09 - 00001859 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-27 22:27 - 2012-04-20 16:32 - 00000814 _____ C:\Users\Patrick\Desktop\Diablo II - Lord of Destruction.lnk
2016-03-27 22:27 - 2012-04-20 16:23 - 00000814 _____ C:\Users\Public\Desktop\Diablo II.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001777 _____ C:\Users\Patrick\Desktop\Spotify.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001763 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-03-27 22:27 - 2011-11-04 20:03 - 00001822 _____ C:\Users\Public\Desktop\ICQ7.6.lnk
2016-03-27 22:27 - 2011-10-03 10:02 - 00001577 _____ C:\Users\Patrick\Desktop\DivX Movies.lnk
2016-03-27 22:27 - 2011-09-15 16:31 - 00000860 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-27 22:27 - 2011-08-18 18:45 - 00000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Sierra-Dienstprogramme.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Mehrspieler.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Einzelspieler.lnk
2016-03-27 22:27 - 2011-06-23 11:12 - 00001056 _____ C:\Users\Public\Desktop\Hearts of Iron III.lnk
2016-03-27 22:27 - 2011-06-17 22:02 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-03-27 22:27 - 2011-06-10 19:09 - 00000622 _____ C:\Users\Public\Desktop\simfy.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002881 _____ C:\Users\Public\Desktop\ACD FotoCanvas 3.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002845 _____ C:\Users\Public\Desktop\ACDSee 6.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002721 _____ C:\Users\Public\Desktop\ACD FotoSlate 3.0.lnk
2016-03-27 22:27 - 2011-05-21 11:49 - 00000784 _____ C:\Users\Patrick\Desktop\PATRIZIER II Gold starten.lnk
2016-03-27 22:27 - 2011-05-14 12:15 - 00000767 _____ C:\Users\Public\Desktop\Arsenal of Democracy.lnk
2016-03-27 22:27 - 2011-05-11 16:56 - 00001000 _____ C:\Users\Public\Desktop\Armageddon.lnk
2016-03-27 22:27 - 2011-05-11 16:53 - 00000983 _____ C:\Users\Patrick\Desktop\Winamp.lnk
2016-03-27 22:27 - 2011-05-11 16:48 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-27 22:27 - 2011-05-11 16:33 - 00001446 _____ C:\Users\Patrick\Desktop\Windows Live Mail.lnk
2016-03-27 22:27 - 2011-05-11 14:43 - 00000355 _____ C:\Users\Patrick\Desktop\Computer - Verknüpfung.lnk
2016-03-27 22:27 - 2011-05-11 14:25 - 00001827 _____ C:\Users\Public\Desktop\Opera.lnk
2016-03-27 22:27 - 2011-05-11 14:18 - 00001444 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
2016-03-27 22:27 - 2011-05-11 14:17 - 00001200 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-03-27 22:27 - 2011-05-11 14:12 - 00001425 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-03-27 22:27 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-27 22:27 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-27 22:26 - 2011-10-09 15:27 - 00000000 ____D C:\Windows\Sun
2016-03-27 22:23 - 2011-06-02 10:11 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:23 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-03-27 20:31 - 2016-02-16 14:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-27 20:03 - 2013-08-24 19:52 - 00000000 ____D C:\ProgramData\BitRaider
2016-03-27 19:31 - 2014-06-26 19:21 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Yahoo!
2016-03-27 19:08 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-27 18:19 - 2011-08-18 18:43 - 00000302 _____ C:\Windows\SIERRA.INI
2016-03-27 15:37 - 2014-08-08 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-26 15:05 - 2014-11-01 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 15:05 - 2013-10-16 22:32 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 15:05 - 2012-06-13 08:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-26 15:04 - 2015-08-26 16:55 - 00000000 ____D C:\Users\Patrick\.oracle_jre_usage
2016-03-26 15:04 - 2014-11-01 14:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-24 21:29 - 2012-04-08 17:12 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-24 21:29 - 2012-04-08 17:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-24 21:29 - 2011-06-13 21:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-24 19:17 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-24 18:53 - 2011-10-06 14:59 - 00000000 ____D C:\Windows\Panther
2016-03-20 16:16 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Local\Battle.net
2016-03-20 16:16 - 2013-11-12 20:33 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-03-20 16:08 - 2014-08-22 17:34 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-03-19 20:40 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Battle.net
2016-03-19 20:40 - 2013-11-12 19:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-17 16:35 - 2015-04-22 16:14 - 00003872 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418232650
2016-03-17 16:35 - 2011-05-11 14:25 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-10 14:09 - 2015-10-03 21:12 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2015-10-03 21:12 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2011-06-01 20:57 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-09 23:38 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:20 - 2013-11-26 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-09 23:19 - 2013-11-26 09:51 - 00154816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00133168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00069888 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-03-09 18:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-03-08 22:45 - 2009-07-14 06:45 - 00298264 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-08 22:31 - 2013-07-20 13:58 - 00000000 ____D C:\Windows\system32\MRT
2016-03-08 22:28 - 2011-05-11 15:01 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-06-12 12:15 - 2012-06-12 13:41 - 0000455 _____ () C:\Users\Patrick\AppData\Roaming\SamsungLiveUpdateConfig.ini
2011-11-01 10:23 - 2014-07-17 21:48 - 0007168 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-18 21:51 - 2012-06-18 21:51 - 0000017 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2011-05-11 15:20 - 2011-05-11 15:20 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2014-06-26 19:13 - 2014-06-26 19:45 - 0001331 _____ () C:\ProgramData\hpzinstall.log
2013-01-11 23:51 - 2013-01-11 23:51 - 0000040 _____ () C:\ProgramData\ra3.ini

Einige Dateien in TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\554815143.exe
C:\Users\Patrick\AppData\Local\Temp\727234035.exe
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe
C:\Users\Patrick\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Patrick\AppData\Local\Temp\detectionui_r.exe
C:\Users\Patrick\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\local.dll
C:\Users\Patrick\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-19 16:36

==================== Ende von FRST.txt ============================
         
--- --- ---


Alt 28.03.2016, 23:02   #6
M-K-D-B
/// TB-Ausbilder
 
MPC Cleaner - Standard

MPC Cleaner



Zitat:
Zitat von Patrick123 Beitrag anzeigen
Da ich noch Antimalewarebytes drauf hatte hab ich das gestern Abend auch mal laufen lassen. Falls du davon noch was sehen möchtest einfach sagen.
Klar will ich die Logdatei sehen.




Und wegen FRST:

Zukünftig bitte beachten:
Zitat:
Gestartet von D:\
Leider hast du unsere Anleitung nicht richtig befolgt:
Bitte alle Tools direkt auf den Desktop downloaden bzw. dorthin verschieben und vom Desktop starten, da unsere Anleitungen daraufhin ausgelegt sind.
Zudem lassen sich dann am Ende der Bereinigung alle verwendeten Tools sehr einfach entfernen.
Alle Tools bis zum Ende der Bereinigung auf dem Desktop lassen, evtl. benötigen wir manche öfter.
__________________
--> MPC Cleaner

Alt 28.03.2016, 23:06   #7
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 27.03.2016
Suchlaufzeit: 22:09
Protokolldatei: malwarebytes.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.03.27.03
Rootkit-Datenbank: v2016.03.12.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Patrick

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 403563
Abgelaufene Zeit: 13 Min., 27 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 1
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, , [219ea2ea7524bb7b61e4250244bf9c64], 

Registrierungswerte: 4
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffsengext, , [219ea2ea7524bb7b61e4250244bf9c64]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffsengext, , [ecd3b9d39aff0333ba8b38ef3fc44ab6]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, hxxp://www.yessearches.com/chrome.php?uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&q={searchTerms}&ts=AHEpCH0tBH8tA0..&v=20160323&mode=ffsengext, , [7c438a02bcdd1323450036f1c63d1ee2]
PUP.Optional.YesSearches, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, hxxp://www.yessearches.com/chrome.php?uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&ts=AHEpCH0tBH8tA0..&v=20160323&mode=ffexttoolbar&q=, , [13ac55379ffac86e0342af78ee1501ff]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 3
PUP.Optional.ASK, C:\Windows\TEMP\APNLogs, , [6d528804910873c3b9e20a1db25144bc], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7, , [d1ee602caaef9a9c30b1ce4e10f39a66], 

Dateien: 58
PUP.Optional.ConvertAd, C:\Users\Patrick\AppData\Local\Temp\nsaCE3D.tmp, , [e9d64e3e1e7b5ed8119f1085a55dc33d], 
Adware.ConvertAd, C:\Users\Patrick\AppData\Local\Temp\nsjF53D.tmp, , [9c239eee9affaf8733d69273ba4817e9], 
PUP.Optional.NoteUp, C:\Users\Patrick\AppData\Local\Temp\nsp5CC1.tmp, , [3d823a524d4ca4925106a2c935cc54ac], 
PUP.Optional.StartSurf, C:\Users\Patrick\AppData\Local\Temp\00f559a8.a, , [c1fe37553a5f74c253fbc21a986932ce], 
Adware.IStartSurf, C:\Users\Patrick\AppData\Local\Temp\00f560e9.a, , [b9066e1edcbd67cf9ef3916c976a9769], 
PUP.Optional.SpaceSoundPro, C:\Users\Patrick\AppData\Local\Temp\M26U6OLJL2.exe, , [902f96f679208aac3dad7e86679e6799], 
PUP.Optional.SpaceSoundPro, C:\Users\Patrick\AppData\Local\Temp\R4MUWIOLG5\testversion.exe, , [dae5523a1782e056c5fe33c80af71ce4], 
PUP.Optional.Tuto4PC, C:\Users\Patrick\AppData\Local\Temp\R4MUWIOLG5\win.exe, , [a41b2a622c6dfe381885dd81fa06fe02], 
PUP.Optional.Tuto4PC, C:\Users\Patrick\AppData\Local\Temp\FL08TSMCH3\win.exe, , [605f9bf1f2a789ad8d10b1ad8f714eb2], 
PUP.Optional.Tuto4PC, C:\Users\Patrick\AppData\Local\Temp\TXJW5IG6OL\win.exe, , [704fe3a94c4d2b0b2c71aab413ed9b65], 
Adware.ConvertAd, C:\Users\Patrick\AppData\Local\Temp\16081378\ic-0.1f4146256a76d8.exe, , [c8f7cac28415a4929376d530fd055da3], 
PUP.Optional.Amonetize, C:\Users\Patrick\AppData\Local\Temp\16081378\Setup__2140_il2186504.exe, , [bb04f19b5841a0960424c983f312a858], 
PUP.Optional.CrossAd.Gen, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\extensions\@E9438230-A7DF-4D1F-8F2D-CA1D0F0F7924.xpi, , [ffc03458a3f62511731082a3c63deb15], 
PUP.Optional.ASK, C:\Windows\TEMP\APNLogs\ic.log, , [6d528804910873c3b9e20a1db25144bc], 
PUP.Optional.FakeIELaunch, C:\Users\Patrick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk, , [fcc35a32b9e0290d9367212a887c2ed2], 
Trojan.FakeAlert, C:\Users\Patrick\AppData\Local\Temp\R4MUWIOLG5\testversion.exe, , [3f80bad237629c9a79047b10b0542dd3], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\Stbf72178bb-6165-4bdc-a6b6-243e86e64e5f.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi6f901e40-66f6-4ccb-a020-3d1349c6dce4.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb1bdfdbd0-3308-4cfa-8bd3-6b35ca6cb8ba.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi01394cc2-ca24-4212-92d5-85ace355e250.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi0eb7cc38-c04f-44c6-926a-76b6f3345041.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi1bdfdbd0-3308-4cfa-8bd3-6b35ca6cb8ba.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi2ab7d664-094f-41b2-95d1-695c5494d71b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi2bac68a7-3c61-41b0-9a65-023b16fa16e0.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi2cd0e769-4c25-4279-a0a9-24d9f6e05a43.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi3af117dd-fa85-465e-9e10-aeaa18ee0896.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi4ff56bfa-7286-4c36-bdc8-f098cb31429e.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msi606a6274-8949-4ab6-b75f-b3596692b4cb.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb2ab7d664-094f-41b2-95d1-695c5494d71b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb2bac68a7-3c61-41b0-9a65-023b16fa16e0.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb2cd0e769-4c25-4279-a0a9-24d9f6e05a43.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb314db0e0-b415-439e-bc9c-368ecd4e3cdb.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb3adefc5d-f46e-4d8e-9c43-571828b580e1.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb3af117dd-fa85-465e-9e10-aeaa18ee0896.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb4ff56bfa-7286-4c36-bdc8-f098cb31429e.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb606a6274-8949-4ab6-b75f-b3596692b4cb.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb6f901e40-66f6-4ccb-a020-3d1349c6dce4.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbae5c0bb0-4ff0-4e4d-80dd-e503cf14205d.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbb160a911-83b9-4c70-bfaf-9ecdfd74a045.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbc1d0cfc2-2f2e-4c01-86ab-45567bccdf0b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbcbc68cb9-661b-4c35-9eb3-6110400893a1.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbf11fcbdc-b33e-4bb6-b347-01ff3a4cddc9.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stbfc584d63-bb84-4ac2-8516-6e42fca25745.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msiae5c0bb0-4ff0-4e4d-80dd-e503cf14205d.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msib160a911-83b9-4c70-bfaf-9ecdfd74a045.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msic1d0cfc2-2f2e-4c01-86ab-45567bccdf0b.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msicbc68cb9-661b-4c35-9eb3-6110400893a1.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msif11fcbdc-b33e-4bb6-b347-01ff3a4cddc9.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Msifc584d63-bb84-4ac2-8516-6e42fca25745.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb01394cc2-ca24-4212-92d5-85ace355e250.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.ASK.Gen, C:\Windows\TEMP\APN-Stub\AVIRA-V7\Stb0eb7cc38-c04f-44c6-926a-76b6f3345041.log, , [d1ee602caaef9a9c30b1ce4e10f39a66], 
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (user_pref("browser.newtab.url", "hxxp://www.yessearches.com/?ts=AHEpCH0tBH8tA0..&v=20160323&uid=EC8FF4E0E140795FEB32448B33C8D3C1&ptid=wak&mode=ffseng");), ,[b20df99355448da9567f8ec8c93c768a]
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (lor", "#0000FF");
user_pref("browser.bookmarks.restore_default_bookmarks", false);
user_pref("browser.cache.disk.capacity", 358400);
user_pref("browser.cache.disk.f), ,[7d4267254a4f7fb77362c096a4616a96]
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (hile the application is running,
 * the changes will be overwritten when the application exits.
 *
 * To make a manual change to preferences, you can visit the URL about:config
 */

user_), ,[922dbcd089106fc783525df98382c13f]
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (nning,
 * the changes will be overwritten when the application exits.
 *
 * To make a manual change to preferences, you can visit the URL about:config
 */

user_pref("accessibility.typeahe), ,[f4cbfd8fe8b154e2973e6aec2cd9629e]
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (), Schlecht: (istory", false);
user_pref("app.update.enabled", false);
user_pref("app.update.lastUpdateTime.addon-background-update-timer", 1458984614);
user_pref("app.u), ,[1ea1d6b69bfe2a0c369fba9c16ef4ab6]
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js, Gut: (user_pref("browser.startup.homepage", "https://www.malwarebytes.org/restorebrowser/), Schlecht: (user_pref("browser.startup.homepage", "hxxp://www.yessearches.com), ,[b00ff09cf2a773c3da10aea89f6656aa]
PUP.Optional.YesSearches, C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\searchplugins\DD1B66D4.xml, , [843b523a4c4dfe384aaa1e37b64fdf21], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         

Alt 28.03.2016, 23:10   #8
M-K-D-B
/// TB-Ausbilder
 
MPC Cleaner - Standard

MPC Cleaner



Servus,



Zukünftig bitte beachten:
Zitat:
Gestartet von D:\
Leider hast du unsere Anleitung nicht richtig befolgt:
Bitte alle Tools direkt auf den Desktop downloaden bzw. dorthin verschieben und vom Desktop starten, da unsere Anleitungen daraufhin ausgelegt sind.
Zudem lassen sich dann am Ende der Bereinigung alle verwendeten Tools sehr einfach entfernen.
Alle Tools bis zum Ende der Bereinigung auf dem Desktop lassen, evtl. benötigen wir manche öfter.


  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Untersuchen.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.
__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 28.03.2016, 23:15   #9
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Patrick (Administrator) auf PATRICK-PC (28-03-2016 23:11:12)
Gestartet von C:\Users\Patrick\Desktop
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ACD Systems, Ltd.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3031664 2011-04-06] (VIA)
HKLM-x32\...\Run: [Device Detector] => C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe [217088 2003-11-27] (ACD Systems, Ltd.)
HKLM-x32\...\Run: [NPSStartup] => [X]
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-27]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B9C1690C-CDE6-4E02-B8DF-1124B8E084EB}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-06-26] [ist nicht signiert]
FF HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome: 
=======
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-24] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-08-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-05-23] (Padus, Inc.) [Datei ist nicht signiert]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [65504 2004-03-09] (Protection Technology) [Datei ist nicht signiert]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [Datei ist nicht signiert]
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2015-11-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [Datei ist nicht signiert]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Datei ist nicht signiert]
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-28 23:11 - 2016-03-28 23:11 - 00017724 _____ C:\Users\Patrick\Desktop\FRST.txt
2016-03-28 23:11 - 2016-03-28 08:57 - 02374144 _____ (Farbar) C:\Users\Patrick\Desktop\FRST64.exe
2016-03-28 09:16 - 2016-03-28 09:19 - 00196664 _____ C:\TDSSKiller.3.1.0.9_28.03.2016_09.16.48_log.txt
2016-03-28 08:59 - 2016-03-28 23:11 - 00000000 ____D C:\FRST
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (2).exe
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (1).exe
2016-03-27 20:28 - 2016-03-27 20:29 - 00188150 _____ C:\Windows\ntbtlog.txt
2016-03-27 19:28 - 2016-03-27 21:23 - 00000000 ____D C:\AdwCleaner
2016-03-27 19:28 - 2016-03-27 19:29 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
2016-03-27 18:40 - 2016-03-27 18:40 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\MCorp
2016-03-27 18:14 - 2016-03-27 18:15 - 00000000 ____D C:\Users\Patrick\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-27 18:14 - 2016-03-27 18:14 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\Desktop\Vallen JPegger.lnk
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vallen JPegger.lnk
2016-03-09 18:40 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 18:40 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 18:40 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 18:40 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-08 21:37 - 2016-02-04 19:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-08 21:37 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-08 21:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-08 21:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-08 21:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-08 21:36 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-08 21:36 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-08 21:36 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-08 21:36 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-08 21:36 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-08 21:36 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-08 21:36 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-08 21:36 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-08 21:36 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-08 21:36 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-08 21:36 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-08 21:36 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-08 21:36 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-08 21:36 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-08 21:36 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-08 21:36 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-08 21:36 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-08 21:36 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-08 21:36 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-08 21:36 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-08 21:36 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-08 21:36 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-08 21:36 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-08 21:36 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-08 21:36 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-08 21:36 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-08 21:36 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-08 21:36 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-08 21:36 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 21:36 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-08 21:35 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-08 21:35 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-08 21:35 - 2016-02-11 19:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-08 21:35 - 2016-02-11 19:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-08 21:35 - 2016-02-11 19:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-08 21:35 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-08 21:35 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-08 21:34 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-08 21:34 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-08 21:34 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-08 21:34 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-08 21:34 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-08 21:34 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-28 22:29 - 2012-04-08 17:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-28 21:26 - 2011-05-11 15:19 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Skype
2016-03-28 13:30 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-28 13:30 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-28 13:26 - 2009-07-14 19:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2016-03-28 13:26 - 2009-07-14 19:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2016-03-28 13:26 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-28 13:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-03-28 13:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-28 13:21 - 2011-05-11 14:23 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-28 08:58 - 2015-10-03 21:12 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-27 22:28 - 2015-11-02 22:48 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-27 22:28 - 2014-12-10 19:30 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 36.lnk
2016-03-27 22:28 - 2014-06-26 19:19 - 00001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-27 22:28 - 2011-09-04 14:35 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-03-27 22:28 - 2011-05-11 14:25 - 00001833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-27 22:28 - 2011-05-11 14:17 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-27 22:28 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-27 22:27 - 2016-02-06 16:45 - 00000897 _____ C:\Users\Public\Desktop\Command & Conquer Die ersten 10 Jahre.lnk
2016-03-27 22:27 - 2015-11-02 22:48 - 00002041 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-27 22:27 - 2015-10-03 21:12 - 00001100 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-27 22:27 - 2015-09-25 19:12 - 00000907 _____ C:\Users\Patrick\Desktop\Star Wars Jedi Knight II Jedi Outcast spielen.lnk
2016-03-27 22:27 - 2015-09-25 16:34 - 00000833 _____ C:\Users\Public\Desktop\DOSBox 0.74.lnk
2016-03-27 22:27 - 2015-09-02 16:21 - 00001132 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-27 22:27 - 2014-11-12 21:54 - 00001851 _____ C:\Users\Public\Desktop\ooVoo.lnk
2016-03-27 22:27 - 2014-10-11 22:42 - 00002013 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-27 22:27 - 2014-09-27 20:26 - 00001386 _____ C:\Users\Patrick\Desktop\CopyTrans Control Center.lnk
2016-03-27 22:27 - 2014-08-31 17:33 - 00001135 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2016-03-27 22:27 - 2014-07-04 14:58 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001345 _____ C:\Users\Public\Desktop\HP Solution Center.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Mehrspieler.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Einzelspieler.lnk
2016-03-27 22:27 - 2013-11-12 20:33 - 00001156 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Mehrspieler.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Einzelspieler.lnk
2016-03-27 22:27 - 2012-12-23 17:06 - 00000670 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-03-27 22:27 - 2012-07-17 21:51 - 00000706 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-27 22:27 - 2012-06-24 19:09 - 00001859 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-27 22:27 - 2012-04-20 16:32 - 00000814 _____ C:\Users\Patrick\Desktop\Diablo II - Lord of Destruction.lnk
2016-03-27 22:27 - 2012-04-20 16:23 - 00000814 _____ C:\Users\Public\Desktop\Diablo II.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001777 _____ C:\Users\Patrick\Desktop\Spotify.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001763 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-03-27 22:27 - 2011-11-04 20:03 - 00001822 _____ C:\Users\Public\Desktop\ICQ7.6.lnk
2016-03-27 22:27 - 2011-10-03 10:02 - 00001577 _____ C:\Users\Patrick\Desktop\DivX Movies.lnk
2016-03-27 22:27 - 2011-09-15 16:31 - 00000860 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-27 22:27 - 2011-08-18 18:45 - 00000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Sierra-Dienstprogramme.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Mehrspieler.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Einzelspieler.lnk
2016-03-27 22:27 - 2011-06-23 11:12 - 00001056 _____ C:\Users\Public\Desktop\Hearts of Iron III.lnk
2016-03-27 22:27 - 2011-06-17 22:02 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-03-27 22:27 - 2011-06-10 19:09 - 00000622 _____ C:\Users\Public\Desktop\simfy.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002881 _____ C:\Users\Public\Desktop\ACD FotoCanvas 3.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002845 _____ C:\Users\Public\Desktop\ACDSee 6.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002721 _____ C:\Users\Public\Desktop\ACD FotoSlate 3.0.lnk
2016-03-27 22:27 - 2011-05-21 11:49 - 00000784 _____ C:\Users\Patrick\Desktop\PATRIZIER II Gold starten.lnk
2016-03-27 22:27 - 2011-05-14 12:15 - 00000767 _____ C:\Users\Public\Desktop\Arsenal of Democracy.lnk
2016-03-27 22:27 - 2011-05-11 16:56 - 00001000 _____ C:\Users\Public\Desktop\Armageddon.lnk
2016-03-27 22:27 - 2011-05-11 16:53 - 00000983 _____ C:\Users\Patrick\Desktop\Winamp.lnk
2016-03-27 22:27 - 2011-05-11 16:48 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-27 22:27 - 2011-05-11 16:33 - 00001446 _____ C:\Users\Patrick\Desktop\Windows Live Mail.lnk
2016-03-27 22:27 - 2011-05-11 14:43 - 00000355 _____ C:\Users\Patrick\Desktop\Computer - Verknüpfung.lnk
2016-03-27 22:27 - 2011-05-11 14:25 - 00001827 _____ C:\Users\Public\Desktop\Opera.lnk
2016-03-27 22:27 - 2011-05-11 14:18 - 00001444 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
2016-03-27 22:27 - 2011-05-11 14:17 - 00001200 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-03-27 22:27 - 2011-05-11 14:12 - 00001425 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-03-27 22:27 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-27 22:27 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-27 22:26 - 2011-10-09 15:27 - 00000000 ____D C:\Windows\Sun
2016-03-27 22:23 - 2011-06-02 10:11 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:23 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-03-27 20:31 - 2016-02-16 14:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-27 20:03 - 2013-08-24 19:52 - 00000000 ____D C:\ProgramData\BitRaider
2016-03-27 19:31 - 2014-06-26 19:21 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Yahoo!
2016-03-27 19:08 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-27 18:19 - 2011-08-18 18:43 - 00000302 _____ C:\Windows\SIERRA.INI
2016-03-27 15:37 - 2014-08-08 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-26 15:05 - 2014-11-01 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 15:05 - 2013-10-16 22:32 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 15:05 - 2012-06-13 08:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-26 15:04 - 2015-08-26 16:55 - 00000000 ____D C:\Users\Patrick\.oracle_jre_usage
2016-03-26 15:04 - 2014-11-01 14:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-24 21:29 - 2012-04-08 17:12 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-24 21:29 - 2012-04-08 17:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-24 21:29 - 2011-06-13 21:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-24 19:17 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-24 18:53 - 2011-10-06 14:59 - 00000000 ____D C:\Windows\Panther
2016-03-20 16:16 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Local\Battle.net
2016-03-20 16:16 - 2013-11-12 20:33 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-03-20 16:08 - 2014-08-22 17:34 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-03-19 20:40 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Battle.net
2016-03-19 20:40 - 2013-11-12 19:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-17 16:35 - 2015-04-22 16:14 - 00003872 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418232650
2016-03-17 16:35 - 2011-05-11 14:25 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-10 14:09 - 2015-10-03 21:12 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2015-10-03 21:12 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2011-06-01 20:57 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-09 23:38 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:20 - 2013-11-26 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-09 23:19 - 2013-11-26 09:51 - 00154816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00133168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00069888 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-03-09 18:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-03-08 22:45 - 2009-07-14 06:45 - 00298264 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-08 22:31 - 2013-07-20 13:58 - 00000000 ____D C:\Windows\system32\MRT
2016-03-08 22:28 - 2011-05-11 15:01 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-06-12 12:15 - 2012-06-12 13:41 - 0000455 _____ () C:\Users\Patrick\AppData\Roaming\SamsungLiveUpdateConfig.ini
2011-11-01 10:23 - 2014-07-17 21:48 - 0007168 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-18 21:51 - 2012-06-18 21:51 - 0000017 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2011-05-11 15:20 - 2011-05-11 15:20 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2014-06-26 19:13 - 2014-06-26 19:45 - 0001331 _____ () C:\ProgramData\hpzinstall.log
2013-01-11 23:51 - 2013-01-11 23:51 - 0000040 _____ () C:\ProgramData\ra3.ini

Einige Dateien in TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\554815143.exe
C:\Users\Patrick\AppData\Local\Temp\727234035.exe
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe
C:\Users\Patrick\AppData\Local\Temp\detectionapi_rd.dll
C:\Users\Patrick\AppData\Local\Temp\detectionui_r.exe
C:\Users\Patrick\AppData\Local\Temp\directx10tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx11tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\directx9tests_rd.dll
C:\Users\Patrick\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Patrick\AppData\Local\Temp\local.dll
C:\Users\Patrick\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-19 16:36
         

Alt 28.03.2016, 23:16   #10
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-28 23:11:46)
Gestartet von C:\Users\Patrick\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-11 12:11:54)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3779484281-1756450511-2492205697-500 - Administrator - Disabled)
Gast (S-1-5-21-3779484281-1756450511-2492205697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3779484281-1756450511-2492205697-1004 - Limited - Enabled)
Patrick (S-1-5-21-3779484281-1756450511-2492205697-1000 - Administrator - Enabled) => C:\Users\Patrick

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4500_G510gm_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510gm (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
4500G510gm_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ACDSee 6.0 PowerPack (HKLM-x32\...\{1A20BC22-8F21-4A2A-9F4A-E31FC0E5C7E3}) (Version: 6.0.2 - ACD Systems Ltd.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version:  - )
Armageddon (HKLM-x32\...\{E163BB62-2840-4C55-9A8E-5C5B9E9FF86C}) (Version:  - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Birth of the Federation (HKLM-x32\...\Birth of the Federation) (Version:  - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
Browser Configuration Utility (HKLM-x32\...\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}) (Version: 1.0.12.1 - DeviceVM, Inc.) <==== ACHTUNG
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty - United Offensive (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Command & Conquer Die ersten 10 Jahre (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528D}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Die ersten 10 Jahre-Patch 1.02 (HKLM-x32\...\{CBB0ABFB-4668-4172-952D-2CEF5C14F4D2}) (Version:  - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of the Tentacle Remastered (HKLM-x32\...\Steam App 388210) (Version:  - Double Fine Productions)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo II (HKLM-x32\...\Diablo II) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DocMgr (x32 Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hearts of Iron III (HKLM-x32\...\{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}) (Version:  - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510g-m (HKLM\...\{E5083D57-D93F-404C-A91F-1C50D67C2BEB}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mafia II (HKLM-x32\...\Steam App 50130) (Version:  - 2K Czech)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version:  - )
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Controller-Treiber 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.2.3 (HKLM-x32\...\OpenTTD) (Version: 1.2.3 - OpenTTD)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 36.0.2130.32 (HKLM-x32\...\Opera 36.0.2130.32) (Version: 36.0.2130.32 - Opera Software)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.0.0 - Electronic Arts)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sid Meier's Colonization 1.0 (HKLM-x32\...\Sid Meier's Colonization) (Version: 1.0 - 2K Games)
Sierra-Dienstprogramme (HKLM-x32\...\Sierra-Dienstprogramme) (Version:  - )
Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft)
simfy (HKLM-x32\...\Simfy) (Version: 1.6.2 - simfy GmbH)
simfy (x32 Version: 1.6.2 - simfy GmbH) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version:  - )
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tropico 3 1.00 (HKLM-x32\...\Tropico3) (Version: 1.00 - Kalypso Media)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vallen JPegger (HKLM-x32\...\{73182AC3-5CC3-4161-AE97-F23E09B13147}) (Version: V5.70 (Build: 14.0924) - Vallen Systeme GmbH)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.61  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0047D97F-82A4-4888-8E7C-47AC907D76B0} - System32\Tasks\{B6288156-B6A5-41E5-AB28-FE71E587B474} => pcalua.exe -a "C:\Program Files (x86)\Java\jre6\bin\javacpl.exe" -d C:\Windows\system32
Task: {05F7C29C-D76E-4A27-8336-807AF0310399} - System32\Tasks\Opera scheduled Autoupdate 1418232650 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-14] (Opera Software)
Task: {0DB7B184-595B-4856-B0F4-AADCAFC707DD} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {1648D46D-CAEE-4802-89F4-232D9AB28447} - System32\Tasks\{E5BA36D8-FBCB-492C-814C-C01FC0D68945} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {26A6AA09-96AA-4A14-9067-8E22ED566AD2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {290E186C-4866-47D5-A71E-A68A176CE6FB} - System32\Tasks\{997BBDD4-01CD-4A6C-BECD-B768246E0A0F} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly
Task: {2DB641E6-F5E1-4992-A829-46733C4B1C8B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {53240E2C-09C8-433F-B676-E4B8557303B5} - System32\Tasks\{BE3FED53-E047-4060-92A7-2C0351AD1EC3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-02-10] (Skype Technologies S.A.)
Task: {57D4DA5D-CA0C-47C1-B802-28086DC70B64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {5863F53F-89A6-4A1B-A458-5762650648AF} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {6B2309B9-7C6E-4831-8381-379EC9F9128B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {76990081-9D55-490B-947D-5D4D63657CAD} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {87DAAAA0-4DCF-4A99-91A7-907DEF7CFC66} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A458DE9E-A37C-440D-B98E-A0165829035F} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20] (Oracle Corporation)
Task: {A9FB9D69-F562-42C7-8F7A-8D0FB11C332D} - System32\Tasks\Samsung-Online-Aktualisierungsprogramm => C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe
Task: {B51F4F57-3D09-40B3-895D-B28B9D51D0E0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BB660F43-FC39-4CC1-93D2-0A8F5B14AA58} - System32\Tasks\{7C6732F4-33FA-48CE-8A11-814478F176AE} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {D0943722-068A-4952-B465-BAE44AEBDE27} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2011-10-26 10:59 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-12 19:03 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2011-05-11 17:50 - 2011-08-14 10:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2011-05-11 14:17 - 2011-04-06 18:20 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-11 14:19 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2011-05-11 14:19 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2011-05-11 14:19 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2011-05-11 14:19 - 2009-03-25 16:53 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2013-07-01 08:20 - 2016-02-10 03:17 - 00782336 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2015-08-26 16:37 - 2015-07-03 18:12 - 04962816 _____ () D:\Program Files (x86)\Steam\v8.dll
2015-08-26 16:37 - 2015-07-03 18:12 - 01556992 _____ () D:\Program Files (x86)\Steam\icui18n.dll
2015-08-26 16:37 - 2015-07-03 18:12 - 01187840 _____ () D:\Program Files (x86)\Steam\icuuc.dll
2014-12-24 11:19 - 2016-03-10 21:02 - 02547792 _____ () D:\Program Files (x86)\Steam\video.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 02549760 _____ () D:\Program Files (x86)\Steam\libavcodec-56.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00442880 _____ () D:\Program Files (x86)\Steam\libavutil-54.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00491008 _____ () D:\Program Files (x86)\Steam\libavformat-56.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00332800 _____ () D:\Program Files (x86)\Steam\libavresample-2.dll
2014-12-24 11:19 - 2016-02-09 01:14 - 00485888 _____ () D:\Program Files (x86)\Steam\libswscale-3.dll
2012-07-17 21:53 - 2016-03-10 21:02 - 00802896 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-28 09:42 - 2016-02-18 00:25 - 00281088 _____ () D:\Program Files (x86)\Steam\openvr_api.dll
2014-03-15 10:07 - 2016-02-09 03:33 - 48400672 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2011-12-09 17:02 - 2014-04-22 21:26 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
2015-08-26 16:37 - 2015-09-25 01:56 - 00119208 _____ () D:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{C32984CB-584C-43E9-95A0-9095F6397D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0DBE4CE2-7290-4F45-8452-A1B228808D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{624A342D-57A1-45B9-84C4-AF749461B87C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{43FEF54A-ECCA-4C98-8826-20AC3B1007B6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5A39D4AB-2354-4DCE-B0C8-F0246ABC76BA}] => (Allow) LPort=2869
FirewallRules: [{BD3F6624-5C77-4856-A223-3D6F191085A4}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{A6BC6C2C-0BA3-4E30-9360-DF0B093BE7BC}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{4E75F0FD-5F7E-4C6E-ACDC-37EEDA2340A8}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{ADB97BF7-44AB-47B2-8F93-AE043CC8A570}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{05667FFF-D0F8-4D3F-9AB2-3D15ABC06E97}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8ECD16C6-91DF-4625-BD7E-46515E0AF576}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{3C2A3C26-78DF-443C-BD3B-9FB6274843CD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{5A5BCB59-87EB-4D28-8DFE-A3BFDD93A54B}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{6333C699-0768-4EE0-9045-B051C8B6E112}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{25EE640D-15A0-4281-83B8-31A6F824F684}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{378FE6A3-E8D7-4689-BDBF-86B0434102F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4FC8356D-354E-43A8-AD51-DD7BCFEE1673}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D294339F-1EB0-4AD9-8BE6-5E49A1A3C917}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6387AAD7-DBC1-43B3-8922-3906A2DA1EB7}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{49562064-7E28-45E6-B715-8F3435F14A26}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{2240193D-5BF2-40CE-9399-A0432E2C774D}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{DA5F9BAA-34D9-4785-A9CE-9844679CCB21}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D6DA1C3D-26A8-49C6-A846-847B5D701C48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{F735CC49-391F-4DD2-86BC-A5DFA52670B1}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{0CAD3A0B-B2FC-459B-A41A-68EE8A3D7B55}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{9293C9E0-A94E-48AD-A0D6-49FF83683938}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{FB76B658-56AF-402D-B9AF-65799624CB5A}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [UDP Query User{3DDA228D-02E6-4813-A0CF-F7F7F044485C}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{02190F4B-165E-410E-A6FB-391882415CC9}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{D329D921-EC96-4553-9B20-D09AD7FB93B7}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [TCP Query User{7473EFAC-A698-4843-BF56-E2D489DEF4FA}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0BE7A2CA-3A16-4515-824C-8BA75F4B051F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{4B80DF41-3BF6-4398-8703-E41B544538F4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9C4BF73C-0B71-4B16-AF30-D279073442A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{459B32AC-5267-4EF7-9673-75C7DA979980}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [{FA3EA983-53CA-47E8-98DF-82156F4B7824}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [TCP Query User{ECEFA33E-DE78-458D-A745-C1691FD30E9A}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [UDP Query User{A811B78A-FE9E-41F5-A3A9-20FBF08753DE}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{8FF5605F-EFA9-4DD4-97F8-B3F7394747E7}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{9FE4A8B3-7A1E-4669-A049-84E53A0F5A57}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [TCP Query User{4DDEA0E4-704D-4DA3-8F99-47D32FC4572B}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2AC2AC37-8C27-4493-85C3-D97052DFDA1C}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E25A8788-5049-49D8-8648-E4634CEF36B0}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{93DFD1DA-F47E-4C98-AB1C-C770F2C007A3}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FCC2A810-C55B-4DB8-AB31-C4A912FB7D47}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{87597222-8A96-49FA-A318-5AFD868823D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{EF063043-D8C9-4E3C-A477-33BF1EB43B9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{4063C165-21E5-408F-9D3F-9E253D3BE2E9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{229CF85B-1420-4640-9DE9-A1301671A017}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{065DF7BD-E2EE-4C38-86E1-D493D3B41BC6}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{FA78F6DF-1C8E-4F50-95E2-D9A7A8534C99}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{3A3EA13C-D24B-4C7D-B767-28B165DE7EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [TCP Query User{FE8E9E6A-9263-4139-8E8C-B6DC52B323ED}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [UDP Query User{AB20D579-041B-4C1A-B333-B0E12506A9DD}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [{5E5D2079-B4B4-47A2-BE26-FD544B6A9CFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{ECEF128C-CBFD-4E4A-9F0C-F76F65EA3780}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{D59AA56B-A8E8-4FEB-AFAA-683B4F4C9816}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{C472F769-E15B-462E-88EB-B7524A0BA2E7}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [TCP Query User{EEE03B2C-0FC5-48C4-B022-B48B560C8BC4}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{E2B83EE9-0164-4C82-B41B-FA3AF59F3922}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{E56DAA2B-7337-4C7C-92AD-E6200476BDF9}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{CE56DAB9-780F-4ED3-AB65-76CC22FACAEB}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{2C6CC2C5-4282-4596-BE37-77B73646253D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1B986CDA-1724-4268-81AB-1C3743BED4F0}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E36EA5F-F900-420E-AAE3-2C232DFCA9AA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{EF529C20-ECB5-4961-ABF9-B5A91CE5E5BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [TCP Query User{EF5FCF5A-6BC9-4B64-B74F-646F89B48006}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{19E6565B-96E4-4D32-81F6-121815B5C22D}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{801900C4-77CC-439F-9F72-57375117FC7C}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{0395FF3B-C528-49E7-9F00-8BEE871B4EEE}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{2AA628D4-2C71-4299-A2D8-857BA35FD8FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{E6C307E9-B837-43A2-B990-E46CEECFDBE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [TCP Query User{B51E0C45-CB19-41C9-BB3F-555AE8E2690C}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [UDP Query User{3B510D0D-E5F4-4AA0-A913-A339205A81FA}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [{CDE95D20-9C75-4FC9-8411-CF3696269E95}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{7DF73B6E-C44D-4436-AC69-B3E006975FC8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{DF42F708-9521-4453-B99E-0713668F166D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{8DC95206-76E9-4E46-BCB8-31633A366654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{7095C02D-4BBA-4C7C-928C-20494C1E517B}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{1D9F5187-6AAC-4AA3-850B-45AA5F141D10}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{54840F41-5AA8-4CFF-A2D3-FD74A38E70B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{420D4372-2BA1-43E3-ACDA-63E05E7FCD0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E992E954-196B-4FDD-8353-65CF0BD2309F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B8783539-B66C-4EE5-AC46-49D141F95337}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B7A49E58-DA80-4568-98D3-FD1062E932E9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{46C72477-6000-47D2-A1BD-188777EF572E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{563E450C-D1F7-4F4B-97F9-586CEDFD072A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{9B1E57DF-096B-4216-8D43-57D7DC2B767B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1A3C5741-7751-437F-8EF6-7C471E179E09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{53E0635B-9838-4A4B-8BD3-16EF5E5A8651}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FB9FEF18-A4A1-44A0-AAF8-2FA3CEF665C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{B1FED601-9F01-474A-BC16-BDCAE9F6D550}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{3ED7010A-DD24-438F-A7AA-C2FD31F44334}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A29251D-0926-4B6C-8CBE-88C07CBF1A82}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7FE49A7-ACE0-479A-9059-A2EB64595DC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{D4226C21-0DAE-41AA-B4A9-6E7CB54A4B87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{0E2E6FEE-D31D-410B-944D-C0E7E9C8660D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{927C6C1A-D142-4701-A831-D0E806A8E392}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{52CBA9EE-879D-48A8-B0CB-2C29A03A7F87}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{21D17140-1447-474F-B4A0-96BB217A93A8}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [TCP Query User{FB145B01-CDA4-4910-B871-C0C063BF0B53}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{DAA21334-E6B3-4A8D-81C4-62D6CDDAF88F}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{F19DC922-F6F9-4F3A-85A8-C1C79F47486C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{2B670CB9-C181-400D-A5FF-7F7FF36BC1D3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{DF47DB6E-8324-406D-9D0B-DDD250C98274}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{7AC44544-59CA-4A25-910F-5905CAECE913}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C35A1D5-CA88-44F5-BDF5-9E5F219530F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{ADFB721A-E8CC-4343-A17E-5D4161DEF896}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8D415CE1-1D3A-4F24-8A7D-20B148CB870C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{55A1F745-D8D3-4C5D-8A74-9CE9D9560E4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7D6942F5-48A6-4B0A-B5E5-C7AAA05BE4E2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B1678A39-59CF-4439-BD5E-C5B5220B66C8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7FC273BC-5F50-4CAE-9742-F4CFBF3CD423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{1FB5C5CB-8F9F-45AF-8B82-0DE7A11693E7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{1D5A1C6B-BEC4-44DB-A343-A93120D0AE62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E11D49C-5CB0-42D6-9AC0-9553CB1CD1EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{13DFE636-8B8B-475C-AA35-698EC0F65135}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{3F020619-865C-4AB6-A931-29F9055D70C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{932BBCFD-048D-4D3C-8EF2-2D538D012277}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F4A7349A-7005-4B21-A5F7-C2904F9F29FE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{8C36F0BE-C005-4FE1-A95F-769069489455}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{5786A6AC-A14B-42BA-9B68-4F31261CB8E7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{B75263D3-D958-4290-9BC9-6902DA0A7C23}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D4CCB33-0CA0-40F5-9CA3-DAEA3C779153}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{33F2371D-5E62-4B9A-85CD-37596933A86E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{B111818D-995C-42FF-9709-97C6BBD948F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E4ADB540-2066-4DDF-A049-42C4F2D853CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{5A4C8C9C-B3C7-4533-BA7D-BED64856CAC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{BCD10E1B-3BE4-48AF-8230-6A5B42885516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{081D7107-A1F8-4E59-9E43-FB369C3FFC03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{3E49CC7E-8AEB-4FB2-89B6-FC0DF2AB98C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{C076010B-DF57-4B00-835E-FE6AA8E87687}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{D10DD33A-0506-439A-A005-72B386C8D113}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{CD3979EE-62E6-4669-A9A1-1AAE77DCA0FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{9FAFAE95-748A-46C3-8465-E264A385A31A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{BE1D7ADE-02C9-45A2-90D3-51444B25BFFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{EE1FA5A9-28CF-45D0-BC2E-ED1AC1DEC978}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{EB6EC940-C784-4571-BA7E-6931ADA6E411}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{44D3FCFD-0F3F-4519-B2A8-F8E87195CD61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{E01C6642-ECFC-465D-8036-FB77C5B07F19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{C58C50B8-0DE0-4ECA-ABEC-800012D854E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{7E959230-455A-4823-A2E9-0C912EA4D054}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{95FD7D24-F0E4-4558-B9B5-59E8A90B096E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{06D05AB2-B1EB-48B0-A87B-C6C796D290B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{A93E4C38-F0DC-468A-AF34-9DBBD5077872}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{CE64A636-68F1-4A48-9D24-B34967AB9C28}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{F39B6073-94E3-4900-A519-35C72CB51054}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B0C51CA3-65FA-41E9-8579-3EB3071CD818}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6A7627DA-560D-4AEF-9B04-A91F6F12F752}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [UDP Query User{AE6E3FC0-B7D5-424E-B914-2702B6F49F5B}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [{1498C0BE-43E9-47B8-8BED-0597CD23DDAC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{225870E3-3C82-4B0B-A909-FC814BB82C04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CDC896C2-E025-4530-A4F0-070288C097D2}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{D8413924-4CE8-4412-924A-AE825FDD54AA}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{62534F73-CB55-456C-A469-6CD2212DCC01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{418C28DA-9BF9-4D7B-89DD-0EB67BB8E8D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C4B96FD-A409-493E-8519-67CFA3408695}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{BA1B9ECE-84E0-47B4-B11E-7612B3F47623}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [{1F27C5B3-48F4-4461-9B11-4E56AD3C2F72}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{3CF26DF8-9B0B-44B1-9EE7-1E191E08FB32}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe

==================== Wiederherstellungspunkte =========================

15-03-2016 15:42:06 Windows Update
19-03-2016 15:29:27 Windows Update
22-03-2016 17:02:16 Windows Update
24-03-2016 23:26:06 Windows Update
27-03-2016 15:37:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
27-03-2016 15:38:09 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
27-03-2016 18:17:23 Windows Defender Checkpoint

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/27/2016 07:08:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 07:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x83c
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (03/27/2016 07:00:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 06:43:41 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 04:32:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Name des fehlerhaften Moduls: Dott.exe, Version: 1.1.0.0, Zeitstempel: 0x56f0bd87
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000efbc7
ID des fehlerhaften Prozesses: 0x141c
Startzeit der fehlerhaften Anwendung: 0xDott.exe0
Pfad der fehlerhaften Anwendung: Dott.exe1
Pfad des fehlerhaften Moduls: Dott.exe2
Berichtskennung: Dott.exe3

Error: (03/10/2016 05:06:40 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5C00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (03/05/2016 09:38:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x860
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (02/19/2016 03:10:19 PM) (Source: MsiInstaller) (EventID: 1024) (User: Patrick-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F0A4E5B00}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (02/15/2016 03:19:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0xb00
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (02/15/2016 09:33:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x694
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3


Systemfehler:
=============
Error: (03/28/2016 11:13:17 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:13:07 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:12:55 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:12:38 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:12:38 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:12:36 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:12:29 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:12:28 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:11:50 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/28/2016 11:11:50 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 8183.05 MB
Verfügbarer physikalischer RAM: 5865.22 MB
Summe virtueller Speicher: 16364.32 MB
Verfügbarer virtueller Speicher: 13666 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:200.01 GB) (Free:95.5 GB) NTFS
Drive d: () (Fixed) (Total:731.41 GB) (Free:649.21 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9FCDF98)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 28.03.2016, 23:47   #11
M-K-D-B
/// TB-Ausbilder
 
MPC Cleaner - Standard

MPC Cleaner



Servus,



wer hat denn den MPC Cleaner gekillt, wenn es nicht AdwCleaner und nicht MBAM war




Schritt 1
AdwCleaner nochmals laufen lassen.





Schritt 2
Lade dir die passende Version von SystemLook vom folgenden Spiegel herunter und speichere das Tool auf dem Desktop:
SystemLook (32 bit) | SystemLook (64 bit)
  • Doppelklicke auf die SystemLook.exe, um das Tool zu starten.
  • Kopiere den Inhalt der folgenden Codebox in das Textfeld des Tools:

    Code:
    ATTFilter
    :regfind
    yessearches
    APNLogs
    APN-Stub
    MPCProtect
    Winsere
    DeviceVM
    MPC Cleaner
    SearchesToYesbnd
    WinTaske
    win_en_77
    YSearchUtil
    Yahoo!\Companion
    ICQToolBar
    search.mpc.am
             
  • Klicke nun auf den Button Look, um den Scan zu starten.
  • Der Suchlauf kann einige Zeit dauern.
  • Wenn der Suchlauf beendet ist, wird sich dein Editor mit den Ergebnissen öffnen, poste diese in deinen Thread.
  • Die Ergebnisse werden auch auf dem Desktop als SystemLook.txt gespeichert.

__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 29.03.2016, 16:17   #12
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Hi,

nachdem ich den MPC Cleaner unter Programme nicht finden konnte hab ich mir den Ordner des Cleaners gesucht und von dort aus deinstalliert.

AdwCleaner hat nichts gefunden.

Code:
ATTFilter
# AdwCleaner v5.107 - Bericht erstellt am 29/03/2016 um 15:57:14
# Aktualisiert am 28/03/2016 von Xplode
# Datenbank : 2016-03-28.2 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Patrick - PATRICK-PC
# Gestartet von : C:\Users\Patrick\Desktop\adwcleaner_5.107.exe
# Option : Suchlauf
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****


***** [ Dateien ] *****


***** [ DLL ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Internetbrowser ] *****


*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [14842 Bytes] - [27/03/2016 19:31:24]
C:\AdwCleaner\AdwCleaner[C2].txt - [6791 Bytes] - [27/03/2016 21:23:59]
C:\AdwCleaner\AdwCleaner[S1].txt - [15308 Bytes] - [27/03/2016 19:29:32]
C:\AdwCleaner\AdwCleaner[S2].txt - [6465 Bytes] - [27/03/2016 21:21:52]
C:\AdwCleaner\AdwCleaner[S3].txt - [970 Bytes] - [29/03/2016 15:57:14]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1042 Bytes] ##########
         
SystemLook starte ich jetzt der Log kommt gleich

Hier der SystemLook Log

Code:
ATTFilter
SystemLook 30.07.11 by jpshortstuff
Log created at 16:12 on 29/03/2016 by Patrick
Administrator - Elevation successful

========== regfind ==========

Searching for "yessearches"
No data found.

Searching for "APNLogs"
No data found.

Searching for "APN-Stub"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210\SourceList]
"LastUsedSource"="n;1;C:\ProgramData\APN\APN-Stub\AVIRA-V7\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210\SourceList\Net]
"1"="C:\ProgramData\APN\APN-Stub\AVIRA-V7\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\25946514D2147365007A7A857BC02210\InstallProperties]
"InstallSource"="C:\ProgramData\APN\APN-Stub\AVIRA-V7\"

Searching for "MPCProtect"
No data found.

Searching for "Winsere"
No data found.

Searching for "DeviceVM"
[HKEY_CURRENT_USER\Software\DeviceVM]
[HKEY_CURRENT_USER\Software\DeviceVM\Browser Configuration Utility\IE]
"AddressBarSearchURL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_CURRENT_USER\Software\DeviceVM\Browser Configuration Utility\IE]
"OldHomePage"="hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fde.search.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"FaviconPath"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\Yahoo.ico"
[HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\299\46693477]
"@C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll,-1"="Soziale Spiele"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\InprocServer32]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\InprocServer32]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\template\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-AE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-BH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-DZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-EG\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-IQ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-JO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-KW\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LB\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-MA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-OM\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-QA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-TN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-YE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\cs-CZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\da-DK\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-AT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-CH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-DE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\el-GR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-029\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-AU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-BZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-CA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-GB\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-JM\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-MY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-NZ\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-PH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-SG\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-TT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-US\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZW\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-AR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-BO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-DO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-EC\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES_tradnl\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-GT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-HN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-MX\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-NI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-SV\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-US\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-UY\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-VE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fi-FI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-BE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-FR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-LU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-MC\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\he-IL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-BA\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-HR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hu-HU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-CH\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-IT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ja-JP\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ko-KR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nb-NO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-BE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-NL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pl-PL\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-BR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-PT\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ru-RU\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sk-SK\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sl-SI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-FI\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-SE\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\tr-TR\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-CN\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-HK\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-MO\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-SG\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-TW\"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\016DE60871C0A029749F021E17ED1EAE]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-NZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03B668FC3B60B39DA984A227C2474F83]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-US\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\069D15A1025068A4F74959C0B869E104]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-IT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0775BA6C9950EED25FD45CD9A3D53A59]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-MY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\087C72201E909E33C96F2F2C1731BC07]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-DZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BB42A1AAE90B3DF8CA5613AC5E5A4FE]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\135497E2CA6B21049BF4D0A9FB71E3BC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14028CE02A6151D102129D084BA15B45]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14FC15876B91B7B0DA514247BC6F2098]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ru-RU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\166BF09269D172D2996631A726512A4B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pl-PL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\172BC29F4571CB010C26D9C9F930909A]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-HR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18051FFF7B117602FB56C0323EEF692A]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-FI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18274E1F7E614121623895532262A466]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C767F16AE911D6CED419A4D1885FEB1]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-BR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DFD7A65F6F166DB63A7CAE9FF6AC341]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-MC\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E1AB1162CC154C37A51A19B7A60BDB3]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sl-SI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1FF088BA88115FC47315EC7763CFEAC1]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-HK\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\200E9645BF6285775EF8ACA103C176B3]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\23ACC1C1C0E2A141D6261EA8FD83F197]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-BH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\25B875297F82A5FD601C9FFFE46DFDC8]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\cs-CZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27514FE5C842463B4B5C10DC1466B028]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-VE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2D39D9CBCB629BDF8A512E704F63BC65]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hr-BA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2FC0F4457FD2CC0D83A5449A1863327E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\tr-TR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\32C27756CC131BC4D368EDC078E09C4F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES_tradnl\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\36BFB502A3330C7D65EB5C2E77EBD7D9]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-SG\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\36F57B7CEDF39E1E1592499968D726C7]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-YE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4353B66D21A423EC3E1EB8D53C4B54E4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-ZW\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A90A7B19B84CDDBE46517DD3191AB9D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-IQ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CC07B602EF4C3D0E31C350BF5BC6472]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\534823CBD445A3870C8DB26430FE0599]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-TT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\55369B7DFB356889BDDFEE543EA217B5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-KW\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5782CA5DB615C9E8486F574AE6D4493E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-GB\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57A00E5958F5A7F56DE7B3692DA0889B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-DO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\57B254E3BBF5228CC7D5A3DFC02CCB1B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\hu-HU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C072A98191FC1644A2B9670D4659B10]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\template\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D5F40A331353A0ECACF08D71FD69822]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60224FAFE4D672F68AD2D1AEDC48039D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-JM\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60AD9C479D36A89D8134C6CEAF2986FF]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60BEA5E48DF6933852FB810993A9CAA2]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-LU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618683B5D85686E14D9A26B7A4B92B38]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-BE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\686BDE8470523844FAFE17C06449F40F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\694892306EB6D6A51518DDB208A8015E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-LB\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6992648F0AC667F84B6B741AEB4F5579]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-NI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6CA937E03ECC19840AD9DDA2F31F2A77]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6FB28499F5D657F4416DA4003BD0FDA7]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-MX\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\70D624E5A77741CE6AF24B97D8747783]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-CH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71CB853A5837BFCE27A1161984A0BF4D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\he-IL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73C62BD769B7E008F941A42603659903]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\763DA14889F7E9262CB8E5A46FBC70C0]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ja-JP\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DEF4E4B364444C4C9931EA5D2E97934]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8585CE53A898839E3DAB38EEB3C0726B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8923E54EA758649270DE55DA8E9A71CD]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C2A9A239518FAD005D71597F624A73F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\da-DK\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90AFA4959469D3F240D9FDBEEA7ECD10]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sv-SE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\91A5A7FE180983A0E7FF1F04A03CFFE5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-HN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94895A51F709F47004661275F9D1D235]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-AU\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\963ED69F4C79AD9E14403614B2EDD2F7]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nl-NL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CA0AEDE43B9AD9B229D3424CB8BB164]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-SY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CC022C4A7E9CF8DBA70B5BC329379A8]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D735316EA59F4D28D21247417A7A523]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-FR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A222092FDE0ABEF1DB2B9A369493C89E]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-AR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A29F8ED2620AEAAE60A5CB577BE78E7B]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-AT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2BA9FC5B15A77D08DEE7E7C106B85CB]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-TN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A3394FC14B2A62EAA838B5A6455690D5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-ES\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A831FFEC4A2AEFB4EF14908F467C5D46]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-DE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9A9EAC3370AFABF390E0F9CF54ABAAC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-PR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA7B9C3AE4FA8A34268E0436F3094068]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\it-CH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D3898267AB73C333A1CD2A75B280B4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-GT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5AA0F83DAEB9A47452F9464D18E9934]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-LI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B67CED5287BBFB729E370EBB216810C4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fr-BE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6DDBE90017B82D3D292DFCC54C217D9]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-BZ\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BBA97FFBD11BFD368E84ADDE62C9C098]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-CA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C167984857CCE006FD3AB3C76994A94F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-EC\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C7AF105B175CEF95890BAE22AF0ECB48]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-EG\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C8C04FE9565C70BE9D006734892DCAAF]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-QA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA109E2F661CC4CAC80D0CE0ED399610]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-TW\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CD2803CC49FC0C2F198C1E2EA48353DF]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ko-KR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEBB4FC36BC027F5955FED7D4EFBD6A]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\el-GR\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D23BB04796BDC2295262416CBDB997BB]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-OM\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2E95630ABAD781C6ED14AF9638451E0]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-AE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2FEBBAFACDD2E23A78336177AA3B385]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\nb-NO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D49E8B83607DDF4C78E66F6CA6719060]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-US\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D9609D942EADB1C043FDB0151159D8F4]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\fi-FI\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDE5F6ABA74D2C08C7051511430325F8]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-MO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEB7CEE016DDD1A45420283F6817FBF0]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-CN\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E2E6EEBA988EB23E5148536D2B82E794]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-029\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4EB5897ACBE36AD5ABD1BA7BEA71E30]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-UY\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E5BCEEC50B1EF2440C62F261C3B86A36]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-MA\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F41F083262EFE7A8B8DCD33C1802876F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-IE\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F42C42D7773F50B34D289AED72F035DC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F651E3208D5F9747937AA52BC32B5FC2]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\en-PH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F78A8348FF4F9805CF59E55AD68C7EB1]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\zh-SG\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7FCBA0AD07FFBF48A846517789BEEDC]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-BO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F98294260C9FC7F83343830A43875124]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\sk-SK\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F99405CD706FD4B40A30F686D2A6E72D]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-CL\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F994857C047FD36DE27C4E9A6797628C]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ar-JO\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FCD5B6B047EF368312A1C0E5F0EB6F9C]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\es-SV\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDD4F941B37F73E288BE00CD201C5CE5]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\pt-PT\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFFE1A0D3F7F98F0BA3DEE415915598F]
"76EE88AB4798D9541ABD8C82D1A96C6F"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\de-CH\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F\InstallProperties]
"InstallLocation"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F\InstallProperties]
"Publisher"="DeviceVM, Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility]
"InstallPath"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\FF\Yahoo]
"AdsBar_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=ytff-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\FF\Yahoo]
"Chrome_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chrf-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\FF\Yahoo]
"Homepage_URL"="hxxp://de.search.yahoo.com/search?fr=fp-devicevm&type=WEB01"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\IE\Yahoo]
"AdsBar_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\IE\Yahoo]
"Chrome_URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\IE\Yahoo]
"Homepage_URL"="hxxp://de.search.yahoo.com/search?fr=fp-devicevm&type=WEB01"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM\Browser Configuration Utility\Plugins\ZyngaGames]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGames.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}]
"InstallLocation"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}]
"Publisher"="DeviceVM, Inc."
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}\InprocServer32]
@="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM]
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM\Browser Configuration Utility\IE]
"AddressBarSearchURL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM\Browser Configuration Utility\IE]
"OldHomePage"="hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fde.search.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"URL"="hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}]
"FaviconPath"="C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\icon\Yahoo.ico"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Classes\Local Settings\MuiCache\299\46693477]
"@C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll,-1"="Soziale Spiele"
[HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000_Classes\Local Settings\MuiCache\299\46693477]
"@C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\plugins\ZyngaGames\ZyngaGamesRes.dll,-1"="Soziale Spiele"

Searching for "MPC Cleaner"
No data found.

Searching for "SearchesToYesbnd"
No data found.

Searching for "WinTaske"
No data found.

Searching for "win_en_77"
No data found.

Searching for "YSearchUtil"
No data found.

Searching for "Yahoo!\Companion"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}\5.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}\4.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 106"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 102"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6EB4349D-4333-442F-ACA4-4C72AF28B6ED}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YMERemote.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}\InProcServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}\5.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}\4.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46}]
"AppPath"="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}\LocalServer32]
@=""C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe""
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 106"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}\ToolboxBitmap32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll, 102"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{6EB4349D-4333-442F-ACA4-4C72AF28B6ED}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YMERemote.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}\InProcServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}\InprocServer32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}\5.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}\4.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\pubmod.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTMsgr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YPUBC.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}\3.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTabBar.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTAntiSpy.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}\1.0\HELPDIR]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTBM.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}\1.0\0\win32]
@="C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YCAPlugin.dll"

Searching for "ICQToolBar"
No data found.

Searching for "search.mpc.am"
No data found.

Searching for "         "
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\3]
"ProcessorNameString"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\ASPEncoder]
"Description"="
        <h3>Das Kernstück Ihres HD-Videoerlebnisses</h3>
        <p>Der Codec, der die Videowelt revolutioniert hat, wurde weiter optimiert. Wir bezeichnen diese Version als „Pro“, da sie zudem fantastische fortschrittliche Encoding-Einstellungen bietet, mit denen Sie mit Drittanbietersoftware hochwertige DivX-Video generieren können, die auf jedem beliebigen DivX Certified®-Gerät wiedergegeben werden können.</p>
        <h3>Gute Gründe für den DivX Codec</h3>
        <ul>
            <li>Erstellen Sie mit Drittanbietersoftware oder mit dem DivX Converter hochwertige, stark komprimierte DivX-Videos.</li>
            <li>Wir garantieren, dass Ihre Videos abgesehen von Deinem PC auch auf DivX Certified-DVD-Playern, Mobiltelefonen, Spielekonsolen uvm. abgespielt werden können.</li>
            <li>Optimieren Sie Ihre Videos mit den fortschrittlichen Encoding-Einstellungen, um hochwertigere Dateien zu erhalten.</li>
        </ul>"
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Converter]
"Description"="
          <p>Konvertiere Filmmaterial ganz einfach in DivX-Videos, um sie auf mehr als 1 Milliarde DivX-Geräten wiederzugeben.</p>
          <ul>
              <li>Erstelle DivX-Videos in hoher Qualität, z. B. DivX HEVC-Videos mit einer Auflösung von bis zu 4K</li>
              <li>Passe Deine Codierung mit AviSynth-Unterstützung individuell an</li>
              <li>Drehe, kombiniere und füge Untertitel und Audio zu Deinen Videos hinzu</li>
          </ul>
          <br/>
          <p><i>*DivX HEVC-Plugin erforderlich</i></p>
          "
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Player]
"Description"="
          <p>Hochwertige Wiedergabe von DivX, DivX Plus HD und DivX HEVC-Video bis zu 4K</p>
          <ul>
              <li>Optimiert für die Wiedergabe der beliebtesten Videoformate im Internet</li>
              <li>DivX Media Server streamt MKV zur PS3, Xbox und anderen Geräten</li>
              <li>Experimenteller DLNA-Controller für die Wiedergabe von DivX-Videos auf lokalen Geräten</li>
          </ul>
          <br/>
          <p><i>*DivX HEVC-Plugin erforderlich</i></p>
          "
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\BundleGroups\divx.com]
"BundleGroupDescription"="
        <p>Spiele, erstelle und streame DivX-Videos in hoher Qualität, z. B. HEVC* mit einer Auflösung von bis zu 4K. Das beste DivX Video-Erlebnis erhältst Du, <i>wenn Du alle Komponenten installierst.</i></p>
		<!-- Leave the 1st <p> tag line, because it is used on other installer page. -->
		<p>Eine neue Version der DivX-Software (10.2.1) ist verfügbar. Vollständige Liste der <a href="hxxp://go.divx.com/WhatsNew/de" target="_blank">Neuheiten</a>:</p>
          <ul>
            <li>Unterstützung für gewichtete Bewegungskompensation im HEVC-Dekoder</li>
            <li>Unterstützung für hohe DPI-Auflösung bis zu 250% für Player und Converter</li>
			<li>Behoben: Probleme beim Öffnen von .divx- und .avi-Dateien im Browser mit Web Player</li>
            <li>Behoben: Problem mit deutscher Sprache beim Lades des Players</li>
		  </ul>
        "
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\InstallGroups\FiltersAndCodecs]
"Description"="
          <p>Mit dem DivX® Codec Pack kannst Du DivX®-Videos mit Deinen Lieblingsanwendungen abspielen und erstellen.</p>
          <ul>
              <li>DivX- und DivX Plus-Videos auf jedem beliebigen Media-Player abspielen (wie beispielsweise Windows Media Player, QuickTime, Media Player Classic)</li>
              <li>Ausgabe von AVI-Videos mit Deiner Lieblingsbearbeitungssoftware (z. B. Sony Vegas, Virtual Dub)</li>
              <li>Konvertieren in DivX und MKV mithilfe von DivX Converter und Tools von Drittanbietern – unbegrenzt und kostenlos</li>
          </ul>
          "
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\InstallGroups\Player]
"Description"="
          <p>Der DivX Plus Player ist für das beste Wiedergabeerlebnis auf Deinem PC optimiert.</p>
          <ul>
              <li>Sehen Sie sich ruckelfreie High-Definition-Videos auf Deinem PC an (bis zu 1080 p)</li>
              <li>Einfacher Transfer von Videos an DivX-Geräte</li>
              <li>Erleben Sie die DivX Plus-Features, wie den schnellen und gleichmäßigen Vor- und Rücklauf und das Überspringen von Szenen</li>
          </ul>
          "
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\Setup\InstallGroups\SharedLibraries]
"Description"="
          <ul>
              <li>Das DivX VOD-Plug-in sorgt für besseres Erlebnis für Kunden, die Filme von DivX VOD - Shops beziehen.</li>
          </ul>
          "
[HKEY_LOCAL_MACHINE\SOFTWARE\DivX\Install\WebPlayer]
"Description"="
          <p>Effizientes, reibungsloses MKV-Streaming in Deinem Browser</p>
          <ul>
            <li>Adaptives Bitrate-Streaming mit experimenteller Unterstützung für DivX HEVC*-Streams</li>
            <li>Problemlose Wiedergabe des FF/RW-Formats, Abschnittsmarkierungen, Unterstützung mehrerer Untertitel und Tonspuren</li>
            <li>Weniger CPU- und Akkuverbrauch mit H.264-DXVA-Hardwarebeschleunigung</li>
          </ul>
          <br/>
          <p><i>*DivX HEVC-Plugin erforderlich</i></p>
          "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{040103CE-98A0-4550-90DE-88AF2C937E1D}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
            <Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{B3F8E60B-DF77-4104-88AC-F5919C64649A}"/>
            <Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{044D131F-D763-4975-9BB4-8C24CC331063}">
              <Descriptor descriptorID="{F110F831-9412-40c9-860A-B489407ED374}"/>
            </Rating>
            <Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{18CD34B7-7AA3-42b9-A303-5A729B2FF228}">
                <Descriptor descriptorID="{5D69B8E0-5CC6-4036-91FD-9BDC999BA634}"/>
                <Descriptor descriptorID="{56C2626D-3794-473c-B57F-40D31D012C4C}"/>
                <Descriptor descriptorID="{BE562A5F-2A80-4c28-9752-74C696E2ABAF}"/>
            </Rating>
        </Ratings>"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{05955E8C-CF66-4FF0-B203-153DED5519F7}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
            <Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{78D8CC82-372F-44e4-B70C-8944DB7BCC24}">
                <Descriptor descriptorID="{ABE23B46-7F9F-495b-B4A9-87F41743727F}"/>
                <Descriptor descriptorID="{4BDB9E0D-53CF-4a28-865F-B315818E7627}"/>
                <Descriptor descriptorID="{D49A8F0C-B183-4a34-8D86-33F2DC0E2D6C}"/>
            </Rating>
            <Rating ratingSystemID="{EC290BBB-D618-4cb9-9963-1CAAE515443E}" ratingID="{997B7D18-2AFA-49dc-847B-0E8A69723040}"/>
            <Rating ratingSystemID="{7F2A4D3A-23A8-4123-90E7-D986BF1D9718}" ratingID="{E2681CD6-318A-4935-8275-AF657045C333}">
                <Descriptor descriptorID="{F6C8131A-897B-4ecf-990E-07B976D1F805}"/>
                <Descriptor descriptorID="{6AB00271-515B-4a4d-8A6E-9E66BF96A437}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{6F8A91C3-1D42-4A0E-B472-730D449BCD5A}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
            <Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{18CD34B7-7AA3-42b9-A303-5A729B2FF228}"/>
            <Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{044D131F-D763-4975-9BB4-8C24CC331063}"/>
            <Rating ratingSystemID="{5B39D1B8-ED49-4055-8A47-04B29A579AD6}" ratingID="{79F6B936-0C8F-4d67-90A6-B7B2E0F37973}"/>
            <Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{B3F8E60B-DF77-4104-88AC-F5919C64649A}"/>
            <Rating ratingSystemID="{EC290BBB-D618-4cb9-9963-1CAAE515443E}" ratingID="{997B7D18-2AFA-49dc-847B-0E8A69723040}"/>
        </Ratings>"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{CC4948B2-7198-4B05-AD0B-14EA11455396}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
            <Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{78D8CC82-372F-44e4-B70C-8944DB7BCC24}">
                <Descriptor descriptorID="{0CFCF432-3544-4f78-9426-07A36843E6BA}"/>
                <Descriptor descriptorID="{4BDB9E0D-53CF-4a28-865F-B315818E7627}"/>
                <Descriptor descriptorID="{DD3146A6-20D6-4f57-A170-E621500614AD}"/>
                <Descriptor descriptorID="{27202CE3-EB93-49bc-A570-23AEBCC2A742}"/>
                <Descriptor descriptorID="{D49A8F0C-B183-4a34-8D86-33F2DC0E2D6C}"/>
                <Descriptor descriptorID="{762EFF14-8713-4649-884E-2E295E2651B3}"/>
                <Descriptor descriptorID="{06B2A5C3-33D1-427b-9261-6703DC794E4F}"/>
            </Rating>
            <Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingI
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{E8AE0286-9A63-4F4F-B479-0E4E4A2A8EB5}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
            <Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{78D8CC82-372F-44e4-B70C-8944DB7BCC24}">
                <Descriptor descriptorID="{ABE23B46-7F9F-495b-B4A9-87F41743727F}"/>
                <Descriptor descriptorID="{BE562A5F-2A80-4c28-9752-74C696E2ABAF}"/>
            </Rating>
            <Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{E2681CD6-318A-4935-8275-AF657045C333}"/>
            <Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{72C4EED7-DC34-4308-BC61-4819752AC408}"/>
        </Ratings>"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\GameUX\Games\{EABB3672-E0D6-4AFB-857A-21CA9E382D0B}]
"RatingsInfo"="<Ratings xmlns="urn:schemas-microsoft-com:GameDescription.v1">
            <Rating ratingSystemID="{C705DCF4-6AFE-4f4f-BC51-21807E4E5CFB}" ratingID="{B3F8E60B-DF77-4104-88AC-F5919C64649A}"/>
            <Rating ratingSystemID="{768BD93D-63BE-46A9-8994-0B53C4B5248F}" ratingID="{18CD34B7-7AA3-42b9-A303-5A729B2FF228}">
                <Descriptor descriptorID="{9A82F712-5A9D-4409-9539-666BBCDFE12D}"/>
                <Descriptor descriptorID="{9F3B6BCD-A23B-4645-B3D1-FF8CB32A096F}"/>
                <Descriptor descriptorID="{1A796A5D-1E25-4862-9443-1550578FF4C4}"/>
                <Descriptor descriptorID="{BE562A5F-2A80-4c28-9752-74C696E2ABAF}"/>
            </Rating>
            <Rating ratingSystemID="{36798944-B235-48ac-BF21-E25671F597EE}" ratingID="{CEC5DB5A-B4C9-4809-96C6-39CE715E4790}">
                <Descriptor descriptorID="{6AB00271-515B-4a4d-8A6E-9E66BF96A437}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell]
"ConfigXML"="             <PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" >                 <InitializationParameters>                     <Param Name="PSVersion" Value="2.0"/>                 </InitializationParameters>                 <Resources>                     <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" SupportsOptions="true" ExactMatch="true">                         <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>                         <Capability Type="Shell"/>                     </Resource>                 </Res
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\WSMAN\Plugin\Microsoft.PowerShell32]
"ConfigXML"="<PlugInConfiguration xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Name="microsoft.powershell32" Filename="%windir%\system32\pwrshplugin.dll" SDKVersion="1" XmlRenderingType="text" Architecture="32" >                         <InitializationParameters>                             <Param Name="PSVersion" Value="2.0"/>                         </InitializationParameters>                         <Resources>                             <Resource ResourceUri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" SupportsOptions="true" ExactMatch="true">                                 <Security xmlns="hxxp://schemas.microsoft.com/wbem/wsman/1/config/PluginConfiguration" Uri="hxxp://schemas.microsoft.com/powershell/microsoft.powershell32" ExactMatch="true" Sddl="O:NSG:BAD:P(A;;GA;;;BA)S:P(AU;FA;GA;;;WD)(AU;SA;GXGW;;;WD)"/>                                
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_1]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_2]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_3]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\ACPI\GenuineIntel_-_Intel64_Family_6_Model_30_-_Intel(R)_Core(TM)_i5_CPU_________760__@_2.80GHz\_4]
"FriendlyName"="Intel(R) Core(TM) i5 CPU         760  @ 2.80GHz"

-= EOF =-
         

Alt 30.03.2016, 11:30   #13
M-K-D-B
/// TB-Ausbilder
 
MPC Cleaner - Standard

MPC Cleaner



Servus,


wir entfernen die letzten Reste und kontrollieren nochmal alles.



Hinweis: Der Suchlauf mit ESET kann länger dauern.



Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
ATTFilter
start
CloseProcesses:
HKLM-x32\...\Run: [NPSStartup] => [X]
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210
DeleteKey: HKEY_CURRENT_USER\Software\DeviceVM
DeleteKey: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.







Schritt 2

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset







Schritt 3
Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
  • Starte die HitmanPro.exe
  • Klicke auf
  • Entferne den Haken bei
  • Klicke auf
    und
  • Akzeptiere die Lizenzbedingungen und klicke auf
  • Klicke auf

    und auf
  • Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
    und speichere die Logdatei auf Deinem Desktop.
  • Schließe HitmanPro und poste mir das Log.

 







Schritt 4
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Untersuchen.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.





Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?







Bitte poste mit deiner nächsten Antwort
  • die Logdatei des FRST-Fix,
  • die Logdatei von ESET,
  • die Logdatei von HitmanPro,
  • die beiden neuen Logdateien von FRST,
  • die Beantwortung der gestellten Fragen.
__________________
Grüße aus Bayern
M-K-D-B

______________________________________

Das Trojaner-Board unterstützen

Alt 30.03.2016, 19:04   #14
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-30 16:06:49) Run:1
Gestartet von C:\Users\Patrick\Desktop
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
start
CloseProcesses:
HKLM-x32\...\Run: [NPSStartup] => [X]
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {1E6BE834-8163-417b-B11D-1A7B3905167E} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> {4D7A679F-1D7E-4584-A529-E28B8D39F1D5} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
FF Keyword.URL: undefined://undefined/
FF NetworkProxy: "type", 0
FF user.js: detected! => C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js [2013-09-15]
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210
DeleteKey: HKEY_CURRENT_USER\Software\DeviceVM
DeleteKey: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A}
DeleteKey: HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D}
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34}
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
         
*****************

Prozess erfolgreich geschlossen.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NPSStartup => Wert erfolgreich entfernt
"HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1E6BE834-8163-417b-B11D-1A7B3905167E}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{1E6BE834-8163-417b-B11D-1A7B3905167E} => Schlüssel nicht gefunden. 
"HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5} => Schlüssel nicht gefunden. 
Firefox "Keyword.URL" erfolgreich entfernt
Firefox Proxy-Einstellungen wurden zurückgesetzt
C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\user.js => erfolgreich verschoben
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210 => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\25946514D2147365007A7A857BC02210 => Schlüssel erfolgreich entfernt
HKEY_CURRENT_USER\Software\DeviceVM => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_CURRENT_USER\Software\DeviceVM => Schlüssel erfolgreich entfernt
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4D7A679F-1D7E-4584-A529-E28B8D39F1D5} => Schlüssel nicht gefunden. 
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\76EE88AB4798D9541ABD8C82D1A96C6F => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\DeviceVM => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BA88EE67-8974-459D-A1DB-C8281D9AC6F6} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes\CLSID\{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} => Schlüssel nicht gefunden. 
HKEY_USERS\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\DeviceVM => Schlüssel nicht gefunden. 
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{003028C2-EA1C-4676-A316-B5CB50917002} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{0548C79F-7B8C-455D-B228-97D35371BB62} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{4A1E52AC-64F2-49E9-BFD7-0806D9494DBB} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{61A2027D-B837-4080-A925-6E30E10DEF32} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{78DB07DF-483E-4829-AB44-ED7952083584} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{8A1AB044-787D-4309-8410-709768E484AB} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A2C55651-A23E-43CA-B63D-C10B99EFF7E0} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A31F34A1-EBD2-45A2-BF6D-231C1B987CC8} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{AD34BE7D-2603-43DD-8D1F-E4431D42C44E} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{B82D18E0-1649-48DE-92D7-AA89BBB5F0AD} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{D2EA97F6-6235-4B2D-B5AA-A4472B9CE557} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1147DC83-6208-4dca-8E88-DD45BAAB3043} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{11CB4723-D5A1-4a55-8D1D-5C2679D54CF5} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{1E57256D-9F39-4267-AB39-D7813D644C5A} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{31371420-098D-4C0E-A11E-EBEC2305DD01} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{37B8167C-B9A4-4316-94B2-67B64BB2BA7C} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{3A06AA27-D94B-48C2-BB55-9FD0FF2120E3} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{46140CE4-76FE-440E-AE88-4C2272BC05C7} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{6E40017D-FB6A-4804-BDE4-3BB09F1719C1} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9F9C4C5C-2BA8-4E00-A697-9F710BB1026B} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B7A0E898-93E5-43f4-B99A-6C70B303699C} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{C60CCE95-6AF9-4E74-B66B-3212D19F1D2F} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D40A62D1-8FC0-4F03-90C4-0DE03BE73A41} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{DDCED22E-D018-471D-9A5C-A4EA2F21133D} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{E1A2D448-6334-45ec-8800-6D7F71DC87FC} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{F9A10D86-182A-4946-869B-70C3D109D14D} => Schlüssel erfolgreich entfernt
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34} => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile.
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{FBE30D66-39A2-4b72-8B43-6D4C335A6F34} => Schlüssel erfolgreich entfernt

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt


========= Ende von RemoveProxy: =========


=========  ipconfig /flushdns =========


Windows-IP-Konfiguration

Der DNS-Aufl�sungscache wurde geleert.

========= Ende von CMD: =========


=========  netsh winsock reset =========


Der Winsock-Katalog wurde zur�ckgesetzt.
Sie m�ssen den Computer neu starten, um den Vorgang abzuschlie�en.


========= Ende von CMD: =========

EmptyTemp: => 2.9 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 16:20:24 ====
         
Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-09-17 07:21:20
# local_time=2011-09-17 09:21:20 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1797 16775165 100 94 60277 52778732 26899 0
# compatibility_mode=5893 16776574 100 94 11118833 67871761 0 0
# compatibility_mode=8192 67108863 100 0 349 349 0 0
# scanned=216958
# found=0
# cleaned=0
# scan_time=2169
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# end=init
# utc_time=2016-03-30 02:29:32
# local_time=2016-03-30 04:29:32 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 28821
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# end=updated
# utc_time=2016-03-30 02:32:57
# local_time=2016-03-30 04:32:57 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=9b128c46f35b9b488eb8bc750eb77c7e
# engine=28821
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-03-30 04:36:26
# local_time=2016-03-30 06:36:26 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Antivirus'
# compatibility_mode=1815 16777213 100 100 8063 57552708 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 95913 210985636 0 0
# scanned=421698
# found=4
# cleaned=0
# scan_time=7409
sh=5EB0075A2CC96A0DF64DE5E87C2EF251602E250B ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\prefs.js"
sh=65149A6E6D011F934A516070333E4D3BB06515E7 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\prefs.js"
sh=C5DB8386C3A901DD6D4FB8B66685B889FA1099F9 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F\user.js"
sh=9249E9EFC555C30EAA4C9C5C33D7FE2E2F13B22E ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\prefs.js"
         
Code:
ATTFilter
Code:
ATTFilter
HitmanPro 3.7.13.258
www.hitmanpro.com

   Computer name . . . . : PATRICK-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : Patrick-PC\Patrick
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2016-03-30 18:53:00
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 5m 11s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 201

   Objects scanned . . . : 2.284.508
   Files scanned . . . . : 67.295
   Remnants scanned  . . : 533.194 files / 1.684.019 keys

Suspicious files ____________________________________________________________

   C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
      Size . . . . . . . : 400.704 bytes
      Age  . . . . . . . : 993.0 days (2013-07-11 19:42:01)
      Entropy  . . . . . : 6.3
      SHA-256  . . . . . : C82171BEDBFE593A04D09C2E20B0528AA3CEC722D6919F8A5C70C6EFFB9EFEAE
      RSA Key Size . . . : 2048
      Parent Name  . . . : C:\Windows\Explorer.EXE
      Authenticode . . . : Self-signed
      Running processes  : 3992
      Fuzzy  . . . . . . : 24.0
         Program is code self-signed.
         This program is actively listening for inbound network connections.
         Uses the Windows Registry to run each time the user logs on.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Program starts automatically without user intervention.
         The file is in use by one or more active processes.
      Startup
         HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AmazonMP3DownloaderHelper
      Network Ports
         0.0.0.0:4618	

   C:\Users\Patrick\AppData\Local\PunkBuster\WAW\pb\pbcl.dll
      Size . . . . . . . : 733.004 bytes
      Age  . . . . . . . : 1754.3 days (2011-06-11 10:45:28)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 8715126E77E8E6F98B4487C11B4656ADAC59145A86D56A0370F2FAE86E40FDC7
      Fuzzy  . . . . . . : 25.0
         The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Program contains PE structure anomalies. This is not typical for most programs.

   C:\Users\Patrick\Desktop\FRST64.exe
      Size . . . . . . . : 2.374.144 bytes
      Age  . . . . . . . : 1.8 days (2016-03-28 23:11:02)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 1CB35A93213562911D4E4218EFFCB9FC5A946B6E1A99509BCD2B5C936898D159
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.

   D:\FRST64.exe
      Size . . . . . . . : 2.374.144 bytes
      Age  . . . . . . . : 2.4 days (2016-03-28 08:57:18)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : 1CB35A93213562911D4E4218EFFCB9FC5A946B6E1A99509BCD2B5C936898D159
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      References
         HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\D:\FRST64.exe


Potential Unwanted Programs _________________________________________________

   C:\Program Files (x86)\Yahoo!\Common\unyt.exe (YahooToolbar)
      Size . . . . . . . : 104.184 bytes
      Age  . . . . . . . : 643.0 days (2014-06-26 19:21:11)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : DC3997D672B09484C4DEE930488271FB541988440A5F3B7E50680D35F4042786
      Publisher  . . . . : Yahoo! Inc.
      Description  . . . : Yahoo! Toolbar Setup
      Version  . . . . . : 2008.11.25.01
      Copyright  . . . . : Copyright (c) 2008 Yahoo! Inc.
      Fuzzy  . . . . . . : 0.0

   HKLM\SOFTWARE\Classes\AppID\YCAPlugin.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\YPUBC.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\yt.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\YTabBar.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\ytbbroker.EXE\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\YTBM.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\YTMsgr.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\YTNavAssist.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\YTSingleInstance.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{07CDAAD9-1226-4C6D-B774-C00E7B323484}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{1CAE874F-F5C7-4BCC-BA46-9AD26DF35B93}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{35860EFB-1589-4F32-A618-99E847A502B2}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{39DCCEAF-C749-4390-9953-527CF916935C}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{41D7CEE0-D91F-498C-BC88-4A6BEE46C2BC}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{7D831388-D405-4272-9511-A07440AD2927}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{9EDCCD11-960D-49AE-B523-C6B5AB7E1345}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{EB2BA65E-41F6-4F64-92A6-216CDFFDF577}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\AppID\{FFFFE1D1-E40D-49a1-9622-BC59BD1879C3}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{11D5E9EA-3117-4389-8E58-742F0975C980}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{12D3E096-0FDF-42CC-8F44-04944F9C1648}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{22389F39-2CF4-47C4-B8B2-273BB16BF70C}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{23E3CEB3-D63A-433E-A5D0-4DB1C501B915}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{26A3152F-CF87-4C5B-8093-4D4B9EC084EB}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{2723E96B-905F-4C64-8999-D868A08E6370}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{29E3319C-4B3C-479F-8692-BDD2CA30BEDD}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{2FCB4E7E-E5C7-4D07-BB2C-78DF2DA867AD}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{367BD1CD-74A3-451F-B1A4-6A2DE4129A2D}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{38552F25-8DED-4206-BB21-041EF53328F9}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{3D592FCB-FEFD-43A6-9A4F-BDE2D4607D07}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{49F018EE-F362-4B5B-8EC8-BCF9246ABF21}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{63B73044-FC1A-4FE1-991B-FDBD4CDAA868}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{67E5E37C-E6B8-4782-877D-E9437C4CD982}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{686D40BC-FA43-4317-8474-E634E6B487F2}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{7207E52B-821E-4C05-A8D6-2965B2BE77CF}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{863FCF5D-DC39-4DA9-AF32-CB0025990EEE}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{A310B105-FB7D-4497-A7E8-E046462B012F}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{B09E015A-4D4E-4F8D-A436-95E19140947D}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{B1E712C4-03AA-495F-B0F5-0F057E126E2A}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{D13DC65C-C77B-4986-9078-DEA3D34C71BB}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{DF522774-8CA0-4B15-A93A-5F61AB95DA1C}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{F56ACA29-1C99-40F1-AC64-2E44C4F6BC71}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Interface\{F9A10D86-182A-4946-869B-70C3D109D14D}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YCAPlugin.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YPUBC.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\yt.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YTabBar.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\ytbbroker.EXE\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YTBM.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YTMsgr.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YTNavAssist.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\YTSingleInstance.DLL\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{07CDAAD9-1226-4C6D-B774-C00E7B323484}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{1CAE874F-F5C7-4BCC-BA46-9AD26DF35B93}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{35860EFB-1589-4F32-A618-99E847A502B2}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{39DCCEAF-C749-4390-9953-527CF916935C}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{41D7CEE0-D91F-498C-BC88-4A6BEE46C2BC}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{7D831388-D405-4272-9511-A07440AD2927}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{9EDCCD11-960D-49AE-B523-C6B5AB7E1345}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{EB2BA65E-41F6-4F64-92A6-216CDFFDF577}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\AppID\{FFFFE1D1-E40D-49a1-9622-BC59BD1879C3}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\CLSID\{6EB4349D-4333-442F-ACA4-4C72AF28B6ED}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{11D5E9EA-3117-4389-8E58-742F0975C980}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{12D3E096-0FDF-42CC-8F44-04944F9C1648}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{22389F39-2CF4-47C4-B8B2-273BB16BF70C}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{23E3CEB3-D63A-433E-A5D0-4DB1C501B915}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{26A3152F-CF87-4C5B-8093-4D4B9EC084EB}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{2723E96B-905F-4C64-8999-D868A08E6370}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{29E3319C-4B3C-479F-8692-BDD2CA30BEDD}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{2FCB4E7E-E5C7-4D07-BB2C-78DF2DA867AD}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{367BD1CD-74A3-451F-B1A4-6A2DE4129A2D}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{38552F25-8DED-4206-BB21-041EF53328F9}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{3D592FCB-FEFD-43A6-9A4F-BDE2D4607D07}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{49F018EE-F362-4B5B-8EC8-BCF9246ABF21}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{63B73044-FC1A-4FE1-991B-FDBD4CDAA868}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{67E5E37C-E6B8-4782-877D-E9437C4CD982}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{686D40BC-FA43-4317-8474-E634E6B487F2}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{7207E52B-821E-4C05-A8D6-2965B2BE77CF}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{863FCF5D-DC39-4DA9-AF32-CB0025990EEE}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{A310B105-FB7D-4497-A7E8-E046462B012F}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{B09E015A-4D4E-4F8D-A436-95E19140947D}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{B1E712C4-03AA-495F-B0F5-0F057E126E2A}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{D13DC65C-C77B-4986-9078-DEA3D34C71BB}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{DF522774-8CA0-4B15-A93A-5F61AB95DA1C}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{F56ACA29-1C99-40F1-AC64-2E44C4F6BC71}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{F9A10D86-182A-4946-869B-70C3D109D14D}\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Yahoo.AntiSpyPlugin.6\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Yahoo.AntiSpyPlugin\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Yahoo.PopupBlockerPlugin.4\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\Yahoo.PopupBlockerPlugin\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YCAPlugin.CAYASPlugin.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YCAPlugin.CAYASPlugin\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YMERemote.YMECompPlugin.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YMERemote.YMECompPlugin\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.BlockerCtrl.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.BlockerCtrl\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.DataStore.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.DataStore\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.PUBHTMLEventHandler.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.PUBHTMLEventHandler\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.StringList.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YPUBC.StringList\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.CacheLoader.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.CacheLoader\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.Clickstream.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.Clickstream\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.YTHelper.2\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.YTHelper\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\yt.YToolbarBand\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTabBar.YTabBarControl.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTabBar.YTabBarControl\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\ytbbroker.YTBCustomizerAssistant.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\ytbbroker.YTBCustomizerAssistant\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\ytbbroker.YTBMessengerAssistant.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\ytbbroker.YTBMessengerAssistant\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTBM.YTBMButton.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTBM.YTBMButton\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTNavAssist.NameSpaceCF.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTNavAssist.NameSpaceCF\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTNavAssist.NameSpacePP.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTNavAssist.NameSpacePP\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTNavAssist.YTNavAssistPlugin.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTNavAssist.YTNavAssistPlugin\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTSingleInstance.SingleInstance.1\ (YahooToolbar)
   HKLM\SOFTWARE\Classes\YTSingleInstance.SingleInstance\ (YahooToolbar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\06B42F08F6F40FA4F83EA94EF9F03F63\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\06FCEE940712E4B4C8A7362CD8D249A1\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\085CE460BADC1D14EA94D8A62E517577\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0B2690283E07C9B4085B3B794202E7F7\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12D3738E79C70C74E9D808E162BD6691\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\189F6D048E923EA48B11D15B30CDAC81\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F0968491626AD249A2A6CBAC4DE352D\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22A78C977EC431247B2ECECC374DFE13\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2CAC1D959B4188B4F8E8C251A25DA9DB\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\33990057697C62f47BB9FFD59CB4AEEB\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\41BF64DDE5C2457478691CB0675759BA\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\42F5B13BF4BAD8D409578286A354E360\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4374E71C5355C4B4AACC93BBBF40E99F\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4410C9B6FF0094C418865CD2B243B258\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45B0A4620F799834C82DE0BD4E90E40B\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4859A93046C917F408248F3C16F75E77\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A3D29BA507550f4F87F6F33D42B24D6\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4E28C30B25E21BF4C9418857AEB2AF7C\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50390A9E27AD04A4698BF297EF564973\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D5D3B13CCBA08C479F107E50BD81C8A\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\661134B612233374391C95E8AC373BA3\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\734F787B99D52824EAB6CA1A89F801F7\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73A172B6C18A3594A9FA363311A187A3\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A0CF0C6A9F9B8642A392A1896DCCCF2\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE43E6BAE0DC0B43883C669D8DCE8B1\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7EC46CC5C43127A45A99762BF7A9C9E5\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFDE7BEC9977ac46B41B0A2BF7D88CD\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8011A895DAAC4CC45AF1397E3CE9CA16\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\81EE804DA9066C64A859E01A38075C59\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\879DDA62492E58A40898AD146BBB572E\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88761D7BAC02ccc428CD5EF352BB933C\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CB53AD495D2C5443B95C9EE29E47902\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F85A4D374D5bf245B8722C062C2D00E\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9516FC331A505934FA76C22DCFFEC47E\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98FD652EB4839214E97B69DD8EEA1D29\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A08449608E3Ca1f4ABF236256A256754\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A431C8F3F57D7844B89242F5F7A5F62C\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A66E2D84F93A9E94FBA6AB3524D85958\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA27FE018F87f5e4F97F31C09E7C5370\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC049320EE27170499EC0B6124142ED7\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B448F401EF39C8346BF7BE9B8D1C7060\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5211271DD585A740AA28576B137D09D\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B58469E2C54833741B90BAD9CE5A1159\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6DA77032731EEE40B463A325128D613\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCC2BCA248E19F74F9AEDE4D1EFEFBC9\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C70C6F53DEE245249956FC291D801A71\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C7C0052DD04CBC84C81C0AC586485E50\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C879DCC3D00BE8E4282F02F1735E78DF\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9FBD8E8A2691564FA012512BCC3748C\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB3AEBFFA9E907145906294AB669B1F2\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE142BFA81B72674892EB318BD603CB0\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE90A73A5D5A01a43A2EDCCF04BA9487\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D05B2B3F5629f9d41A7E57FB534168CA\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D158B0E5D051EA046B8E08BF6B004842\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D45A81F48EF19334EABB33FF8871C4F5\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D538E650623CB2C43AD5FBF587227D55\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D8D06C15BF8AFCD449EFF90B935AEF7C\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB1AE396B3BBfe940922C55C6EEF740A\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDF89DEE0C7E9A5448382117C4436818\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E55AA93871A0fde4490A708053AC6501\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E954A03F45EC92B419A55A0D4815C0A3\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E97C12D46BF588241856422D760336B4\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EA1332016439DD54C840C7D45CFB2705\ (AskBar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EFBB6B0872B0DBB4D912A0F52986399D\ (AskBar)
   HKLM\SOFTWARE\Microsoft\{1f7ee1a8-4436-4ffc-b97b-b5b01e87d3d2}\ (SpaceSoundPro)
   HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46}\ (YahooToolbar)
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Patrick (2016-03-30 19:03:07)
Gestartet von C:\Users\Patrick\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-11 12:11:54)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3779484281-1756450511-2492205697-500 - Administrator - Disabled)
Gast (S-1-5-21-3779484281-1756450511-2492205697-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3779484281-1756450511-2492205697-1004 - Limited - Enabled)
Patrick (S-1-5-21-3779484281-1756450511-2492205697-1000 - Administrator - Enabled) => C:\Users\Patrick

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4500_G510gm_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510gm (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
4500G510gm_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
ACDSee 6.0 PowerPack (HKLM-x32\...\{1A20BC22-8F21-4A2A-9F4A-E31FC0E5C7E3}) (Version: 6.0.2 - ACD Systems Ltd.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version:  - )
Armageddon (HKLM-x32\...\{E163BB62-2840-4C55-9A8E-5C5B9E9FF86C}) (Version:  - )
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Birth of the Federation (HKLM-x32\...\Birth of the Federation) (Version:  - )
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.8.1 - BitRaider, LLC)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty - United Offensive (x32 Version: 1.00.0000 - Activision) Hidden
Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.11 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Command & Conquer Die ersten 10 Jahre (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528D}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Die ersten 10 Jahre-Patch 1.02 (HKLM-x32\...\{CBB0ABFB-4668-4172-952D-2CEF5C14F4D2}) (Version:  - )
CopyTrans Control Center deinstallieren (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\CopyTrans Suite) (Version: 4.004 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of the Tentacle Remastered (HKLM-x32\...\Steam App 388210) (Version:  - Double Fine Productions)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
Diablo II (HKLM-x32\...\Diablo II) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DocMgr (x32 Version: 130.0.000.000 - Ihr Firmenname) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
F1 2010 (x32 Version: 1.0.0001.132 - Codemasters) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hearts of Iron III (HKLM-x32\...\{D0106CC2-E34B-4FA3-B6B6-91F0ACEA2CC3}) (Version:  - )
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510g-m (HKLM\...\{E5083D57-D93F-404C-A91F-1C50D67C2BEB}) (Version: 13.0 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mafia II (HKLM-x32\...\Steam App 50130) (Version:  - 2K Czech)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Medal of Honor (TM) (HKLM-x32\...\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}) (Version: 1.0.0.0 - Electronic Arts)
Medal of Honor Allied Assault (HKLM-x32\...\{0DEA94ED-915A-4834-A87E-388D012C8E02}) (Version:  - )
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 de)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
NVIDIA 3D Vision Controller-Treiber 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.7001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenTTD 1.2.3 (HKLM-x32\...\OpenTTD) (Version: 1.2.3 - OpenTTD)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 36.0.2130.32 (HKLM-x32\...\Opera 36.0.2130.32) (Version: 36.0.2130.32 - Opera Software)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIFT 2 UNLEASHED™ (HKLM-x32\...\{E8C37E27-5205-4C8A-BECB-B00533045AAE}) (Version: 1.0.0.0 - Electronic Arts)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sid Meier's Colonization 1.0 (HKLM-x32\...\Sid Meier's Colonization) (Version: 1.0 - 2K Games)
Sierra-Dienstprogramme (HKLM-x32\...\Sierra-Dienstprogramme) (Version:  - )
Silent Hunter 5 (HKLM-x32\...\{AC61C594-5F86-4BE9-ABAF-763C6A8E2302}) (Version: 1.2.0 - Ubisoft)
simfy (HKLM-x32\...\Simfy) (Version: 1.6.2 - simfy GmbH)
simfy (x32 Version: 1.6.2 - simfy GmbH) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spotify (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Spotify) (Version: 1.0.16.104.g3b776c9e - Spotify AB)
Star Wars JK II Jedi Outcast (HKLM-x32\...\{576E71DA-3000-48F6-9B21-B9A70D47DFCF}) (Version:  - )
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tropico 3 1.00 (HKLM-x32\...\Tropico3) (Version: 1.00 - Kalypso Media)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vallen JPegger (HKLM-x32\...\{73182AC3-5CC3-4161-AE97-F23E09B13147}) (Version: V5.70 (Build: 14.0924) - Vallen Systeme GmbH)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.61  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0047D97F-82A4-4888-8E7C-47AC907D76B0} - System32\Tasks\{B6288156-B6A5-41E5-AB28-FE71E587B474} => pcalua.exe -a "C:\Program Files (x86)\Java\jre6\bin\javacpl.exe" -d C:\Windows\system32
Task: {05F7C29C-D76E-4A27-8336-807AF0310399} - System32\Tasks\Opera scheduled Autoupdate 1418232650 => C:\Program Files (x86)\Opera\launcher.exe [2016-03-14] (Opera Software)
Task: {0DB7B184-595B-4856-B0F4-AADCAFC707DD} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {1648D46D-CAEE-4802-89F4-232D9AB28447} - System32\Tasks\{E5BA36D8-FBCB-492C-814C-C01FC0D68945} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\3\SSCDUninstall.exe
Task: {26A6AA09-96AA-4A14-9067-8E22ED566AD2} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {290E186C-4866-47D5-A71E-A68A176CE6FB} - System32\Tasks\{997BBDD4-01CD-4A6C-BECD-B768246E0A0F} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{F193FC0E-9E18-40FC-A974-509A1BDD240A}\setup.exe" -c -runfromtemp -l0x0407 -removeonly
Task: {2DB641E6-F5E1-4992-A829-46733C4B1C8B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {53240E2C-09C8-433F-B676-E4B8557303B5} - System32\Tasks\{BE3FED53-E047-4060-92A7-2C0351AD1EC3} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-02-10] (Skype Technologies S.A.)
Task: {57D4DA5D-CA0C-47C1-B802-28086DC70B64} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {5863F53F-89A6-4A1B-A458-5762650648AF} - System32\Tasks\Divx-Online-Aktualisierungsprogramm => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {6B2309B9-7C6E-4831-8381-379EC9F9128B} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {76990081-9D55-490B-947D-5D4D63657CAD} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {87DAAAA0-4DCF-4A99-91A7-907DEF7CFC66} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {A458DE9E-A37C-440D-B98E-A0165829035F} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20] (Oracle Corporation)
Task: {A9FB9D69-F562-42C7-8F7A-8D0FB11C332D} - System32\Tasks\Samsung-Online-Aktualisierungsprogramm => C:\Program Files (x86)\SAMSUNG\FW LiveUpdate\FWManager.exe
Task: {B51F4F57-3D09-40B3-895D-B28B9D51D0E0} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BB660F43-FC39-4CC1-93D2-0A8F5B14AA58} - System32\Tasks\{7C6732F4-33FA-48CE-8A11-814478F176AE} => pcalua.exe -a C:\Windows\SysWOW64\Samsung_USB_Drivers\1\SS_Uninstall.exe
Task: {D0943722-068A-4952-B465-BAE44AEBDE27} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2011-10-26 10:59 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-11 17:50 - 2011-08-14 10:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-05-22 20:50 - 2013-05-22 20:50 - 00400704 _____ () C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
2011-05-11 14:17 - 2011-04-06 18:20 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2011-05-11 14:17 - 2011-04-06 18:20 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2011-05-11 14:19 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2011-05-11 14:19 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2011-05-11 14:19 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2016-01-11 11:36 - 2016-01-11 11:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2011-12-09 17:02 - 2014-04-22 21:26 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2011-05-11 14:25 - 2014-04-22 21:26 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{C32984CB-584C-43E9-95A0-9095F6397D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{0DBE4CE2-7290-4F45-8452-A1B228808D0D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{624A342D-57A1-45B9-84C4-AF749461B87C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{43FEF54A-ECCA-4C98-8826-20AC3B1007B6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5A39D4AB-2354-4DCE-B0C8-F0246ABC76BA}] => (Allow) LPort=2869
FirewallRules: [{BD3F6624-5C77-4856-A223-3D6F191085A4}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{A6BC6C2C-0BA3-4E30-9360-DF0B093BE7BC}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [UDP Query User{4E75F0FD-5F7E-4C6E-ACDC-37EEDA2340A8}D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{ADB97BF7-44AB-47B2-8F93-AE043CC8A570}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{05667FFF-D0F8-4D3F-9AB2-3D15ABC06E97}] => (Block) D:\program files (x86)\activision\call of duty 2\cod2mp_s.exe
FirewallRules: [{8ECD16C6-91DF-4625-BD7E-46515E0AF576}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{3C2A3C26-78DF-443C-BD3B-9FB6274843CD}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{5A5BCB59-87EB-4D28-8DFE-A3BFDD93A54B}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{6333C699-0768-4EE0-9045-B051C8B6E112}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{25EE640D-15A0-4281-83B8-31A6F824F684}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{378FE6A3-E8D7-4689-BDBF-86B0434102F7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4FC8356D-354E-43A8-AD51-DD7BCFEE1673}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D294339F-1EB0-4AD9-8BE6-5E49A1A3C917}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6387AAD7-DBC1-43B3-8922-3906A2DA1EB7}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{49562064-7E28-45E6-B715-8F3435F14A26}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{2240193D-5BF2-40CE-9399-A0432E2C774D}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{DA5F9BAA-34D9-4785-A9CE-9844679CCB21}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D6DA1C3D-26A8-49C6-A846-847B5D701C48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{F735CC49-391F-4DD2-86BC-A5DFA52670B1}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{0CAD3A0B-B2FC-459B-A41A-68EE8A3D7B55}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{9293C9E0-A94E-48AD-A0D6-49FF83683938}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{FB76B658-56AF-402D-B9AF-65799624CB5A}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [UDP Query User{3DDA228D-02E6-4813-A0CF-F7F7F044485C}D:\program files (x86)\icq7.5\icq.exe] => (Allow) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{02190F4B-165E-410E-A6FB-391882415CC9}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [{D329D921-EC96-4553-9B20-D09AD7FB93B7}] => (Block) D:\program files (x86)\icq7.5\icq.exe
FirewallRules: [TCP Query User{7473EFAC-A698-4843-BF56-E2D489DEF4FA}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0BE7A2CA-3A16-4515-824C-8BA75F4B051F}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{4B80DF41-3BF6-4398-8703-E41B544538F4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9C4BF73C-0B71-4B16-AF30-D279073442A5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{459B32AC-5267-4EF7-9673-75C7DA979980}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [{FA3EA983-53CA-47E8-98DF-82156F4B7824}] => (Allow) D:\Ubisoft\Silent Hunter 5\sh5.exe
FirewallRules: [TCP Query User{ECEFA33E-DE78-458D-A745-C1691FD30E9A}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [UDP Query User{A811B78A-FE9E-41F5-A3A9-20FBF08753DE}D:\program files (x86)\ea games\mohaa\mohaa.exe] => (Allow) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{8FF5605F-EFA9-4DD4-97F8-B3F7394747E7}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [{9FE4A8B3-7A1E-4669-A049-84E53A0F5A57}] => (Block) D:\program files (x86)\ea games\mohaa\mohaa.exe
FirewallRules: [TCP Query User{4DDEA0E4-704D-4DA3-8F99-47D32FC4572B}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{2AC2AC37-8C27-4493-85C3-D97052DFDA1C}C:\users\patrick\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{E25A8788-5049-49D8-8648-E4634CEF36B0}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{93DFD1DA-F47E-4C98-AB1C-C770F2C007A3}] => (Block) C:\users\patrick\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FCC2A810-C55B-4DB8-AB31-C4A912FB7D47}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{87597222-8A96-49FA-A318-5AFD868823D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{EF063043-D8C9-4E3C-A477-33BF1EB43B9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{4063C165-21E5-408F-9D3F-9E253D3BE2E9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.954\Agent.exe
FirewallRules: [{229CF85B-1420-4640-9DE9-A1301671A017}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{065DF7BD-E2EE-4C38-86E1-D493D3B41BC6}] => (Allow) D:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{FA78F6DF-1C8E-4F50-95E2-D9A7A8534C99}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [{3A3EA13C-D24B-4C7D-B767-28B165DE7EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.976\Agent.exe
FirewallRules: [TCP Query User{FE8E9E6A-9263-4139-8E8C-B6DC52B323ED}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [UDP Query User{AB20D579-041B-4C1A-B333-B0E12506A9DD}D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe] => (Block) D:\program files (x86)\electronic arts\shift 2 unleashed\shift2u.exe
FirewallRules: [{5E5D2079-B4B4-47A2-BE26-FD544B6A9CFA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{ECEF128C-CBFD-4E4A-9F0C-F76F65EA3780}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.998\Agent.exe
FirewallRules: [{D59AA56B-A8E8-4FEB-AFAA-683B4F4C9816}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{C472F769-E15B-462E-88EB-B7524A0BA2E7}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [TCP Query User{EEE03B2C-0FC5-48C4-B022-B48B560C8BC4}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [UDP Query User{E2B83EE9-0164-4C82-B41B-FA3AF59F3922}C:\programdata\battle.net\agent\agent.1040\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{E56DAA2B-7337-4C7C-92AD-E6200476BDF9}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{CE56DAB9-780F-4ED3-AB65-76CC22FACAEB}] => (Allow) C:\programdata\battle.net\agent\agent.1040\agent.exe
FirewallRules: [{2C6CC2C5-4282-4596-BE37-77B73646253D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1B986CDA-1724-4268-81AB-1C3743BED4F0}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5E36EA5F-F900-420E-AAE3-2C232DFCA9AA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{EF529C20-ECB5-4961-ABF9-B5A91CE5E5BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [TCP Query User{EF5FCF5A-6BC9-4B64-B74F-646F89B48006}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [UDP Query User{19E6565B-96E4-4D32-81F6-121815B5C22D}D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe] => (Allow) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{801900C4-77CC-439F-9F72-57375117FC7C}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{0395FF3B-C528-49E7-9F00-8BEE871B4EEE}] => (Block) D:\program files (x86)\electronic arts\medal of honor\binaries\moh.exe
FirewallRules: [{2AA628D4-2C71-4299-A2D8-857BA35FD8FC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{E6C307E9-B837-43A2-B990-E46CEECFDBE0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [TCP Query User{B51E0C45-CB19-41C9-BB3F-555AE8E2690C}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [UDP Query User{3B510D0D-E5F4-4AA0-A913-A339205A81FA}C:\users\patrick\appdata\roaming\orpa\enrozo.exe] => (Block) C:\users\patrick\appdata\roaming\orpa\enrozo.exe
FirewallRules: [{CDE95D20-9C75-4FC9-8411-CF3696269E95}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{7DF73B6E-C44D-4436-AC69-B3E006975FC8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Command and Conquer Red Alert 3\Support\EA Help\Electronic_Arts_Technical_Support.htm
FirewallRules: [{DF42F708-9521-4453-B99E-0713668F166D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{8DC95206-76E9-4E46-BCB8-31633A366654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe
FirewallRules: [{7095C02D-4BBA-4C7C-928C-20494C1E517B}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{1D9F5187-6AAC-4AA3-850B-45AA5F141D10}] => (Allow) D:\Program Files (x86)\War Thunder\launcher.exe
FirewallRules: [{54840F41-5AA8-4CFF-A2D3-FD74A38E70B8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{420D4372-2BA1-43E3-ACDA-63E05E7FCD0C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E992E954-196B-4FDD-8353-65CF0BD2309F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B8783539-B66C-4EE5-AC46-49D141F95337}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{B7A49E58-DA80-4568-98D3-FD1062E932E9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{46C72477-6000-47D2-A1BD-188777EF572E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{563E450C-D1F7-4F4B-97F9-586CEDFD072A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{9B1E57DF-096B-4216-8D43-57D7DC2B767B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{1A3C5741-7751-437F-8EF6-7C471E179E09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{53E0635B-9838-4A4B-8BD3-16EF5E5A8651}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FB9FEF18-A4A1-44A0-AAF8-2FA3CEF665C3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{B1FED601-9F01-474A-BC16-BDCAE9F6D550}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{3ED7010A-DD24-438F-A7AA-C2FD31F44334}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A29251D-0926-4B6C-8CBE-88C07CBF1A82}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7FE49A7-ACE0-479A-9059-A2EB64595DC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{D4226C21-0DAE-41AA-B4A9-6E7CB54A4B87}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{0E2E6FEE-D31D-410B-944D-C0E7E9C8660D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{927C6C1A-D142-4701-A831-D0E806A8E392}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{52CBA9EE-879D-48A8-B0CB-2C29A03A7F87}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{21D17140-1447-474F-B4A0-96BB217A93A8}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [TCP Query User{FB145B01-CDA4-4910-B871-C0C063BF0B53}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [UDP Query User{DAA21334-E6B3-4A8D-81C4-62D6CDDAF88F}D:\program files (x86)\call of duty\codmp.exe] => (Block) D:\program files (x86)\call of duty\codmp.exe
FirewallRules: [{F19DC922-F6F9-4F3A-85A8-C1C79F47486C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{2B670CB9-C181-400D-A5FF-7F7FF36BC1D3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{DF47DB6E-8324-406D-9D0B-DDD250C98274}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{7AC44544-59CA-4A25-910F-5905CAECE913}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{3C35A1D5-CA88-44F5-BDF5-9E5F219530F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{ADFB721A-E8CC-4343-A17E-5D4161DEF896}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{8D415CE1-1D3A-4F24-8A7D-20B148CB870C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{55A1F745-D8D3-4C5D-8A74-9CE9D9560E4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{7D6942F5-48A6-4B0A-B5E5-C7AAA05BE4E2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B1678A39-59CF-4439-BD5E-C5B5220B66C8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{7FC273BC-5F50-4CAE-9742-F4CFBF3CD423}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{1FB5C5CB-8F9F-45AF-8B82-0DE7A11693E7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{1D5A1C6B-BEC4-44DB-A343-A93120D0AE62}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E11D49C-5CB0-42D6-9AC0-9553CB1CD1EB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{13DFE636-8B8B-475C-AA35-698EC0F65135}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{3F020619-865C-4AB6-A931-29F9055D70C6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{932BBCFD-048D-4D3C-8EF2-2D538D012277}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F4A7349A-7005-4B21-A5F7-C2904F9F29FE}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{8C36F0BE-C005-4FE1-A95F-769069489455}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{5786A6AC-A14B-42BA-9B68-4F31261CB8E7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{B75263D3-D958-4290-9BC9-6902DA0A7C23}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{2D4CCB33-0CA0-40F5-9CA3-DAEA3C779153}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{33F2371D-5E62-4B9A-85CD-37596933A86E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{B111818D-995C-42FF-9709-97C6BBD948F1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E4ADB540-2066-4DDF-A049-42C4F2D853CE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{5A4C8C9C-B3C7-4533-BA7D-BED64856CAC3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3322\Agent.exe
FirewallRules: [{BCD10E1B-3BE4-48AF-8230-6A5B42885516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{081D7107-A1F8-4E59-9E43-FB369C3FFC03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3323\Agent.exe
FirewallRules: [{3E49CC7E-8AEB-4FB2-89B6-FC0DF2AB98C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{C076010B-DF57-4B00-835E-FE6AA8E87687}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3332\Agent.exe
FirewallRules: [{D10DD33A-0506-439A-A005-72B386C8D113}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{CD3979EE-62E6-4669-A9A1-1AAE77DCA0FA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{9FAFAE95-748A-46C3-8465-E264A385A31A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{BE1D7ADE-02C9-45A2-90D3-51444B25BFFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{EE1FA5A9-28CF-45D0-BC2E-ED1AC1DEC978}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{EB6EC940-C784-4571-BA7E-6931ADA6E411}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{44D3FCFD-0F3F-4519-B2A8-F8E87195CD61}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{E01C6642-ECFC-465D-8036-FB77C5B07F19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3427\Agent.exe
FirewallRules: [{C58C50B8-0DE0-4ECA-ABEC-800012D854E0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{7E959230-455A-4823-A2E9-0C912EA4D054}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{95FD7D24-F0E4-4558-B9B5-59E8A90B096E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{06D05AB2-B1EB-48B0-A87B-C6C796D290B2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{A93E4C38-F0DC-468A-AF34-9DBBD5077872}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{CE64A636-68F1-4A48-9D24-B34967AB9C28}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{F39B6073-94E3-4900-A519-35C72CB51054}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B0C51CA3-65FA-41E9-8579-3EB3071CD818}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6A7627DA-560D-4AEF-9B04-A91F6F12F752}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [UDP Query User{AE6E3FC0-B7D5-424E-B914-2702B6F49F5B}D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe] => (Block) D:\program files (x86)\ea games\medal of honor pacific assault(tm)\mohpa.exe
FirewallRules: [{1498C0BE-43E9-47B8-8BED-0597CD23DDAC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{225870E3-3C82-4B0B-A909-FC814BB82C04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CDC896C2-E025-4530-A4F0-070288C097D2}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{D8413924-4CE8-4412-924A-AE825FDD54AA}] => (Allow) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
FirewallRules: [{62534F73-CB55-456C-A469-6CD2212DCC01}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{418C28DA-9BF9-4D7B-89DD-0EB67BB8E8D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{4C4B96FD-A409-493E-8519-67CFA3408695}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{BA1B9ECE-84E0-47B4-B11E-7612B3F47623}D:\program files (x86)\activision\call of duty - world at war\codwaw.exe] => (Allow) D:\program files (x86)\activision\call of duty - world at war\codwaw.exe
FirewallRules: [{1F27C5B3-48F4-4461-9B11-4E56AD3C2F72}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe
FirewallRules: [{3CF26DF8-9B0B-44B1-9EE7-1E191E08FB32}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Day of the Tentacle Remastered\Dott.exe

==================== Wiederherstellungspunkte =========================

24-03-2016 23:26:06 Windows Update
27-03-2016 15:37:14 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
27-03-2016 15:38:09 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
27-03-2016 18:17:23 Windows Defender Checkpoint
29-03-2016 15:56:57 Windows Update
29-03-2016 20:46:45 DirectX wurde installiert
30-03-2016 18:51:30 Prüfpunkt von HitmanPro

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/30/2016 06:37:21 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (03/30/2016 04:29:24 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (03/30/2016 04:29:21 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (03/30/2016 04:28:41 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (03/30/2016 04:07:00 PM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.

Error: (03/29/2016 03:52:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x898
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (03/27/2016 07:08:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 07:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DevDetect.exe, Version: 2.0.1.6, Zeitstempel: 0x3fc5677d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000031
ID des fehlerhaften Prozesses: 0x83c
Startzeit der fehlerhaften Anwendung: 0xDevDetect.exe0
Pfad der fehlerhaften Anwendung: DevDetect.exe1
Pfad des fehlerhaften Moduls: DevDetect.exe2
Berichtskennung: DevDetect.exe3

Error: (03/27/2016 07:00:23 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (03/27/2016 06:43:41 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out


Systemfehler:
=============
Error: (03/30/2016 07:03:35 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:02:48 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:02:33 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:02:01 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:01:59 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:01:54 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:01:54 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:01:53 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:01:52 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.

Error: (03/30/2016 07:01:52 PM) (Source: atapi) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Ide\IdePort0 gefunden.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Prozentuale Nutzung des RAM: 30%
Installierter physikalischer RAM: 8183.05 MB
Verfügbarer physikalischer RAM: 5681.15 MB
Summe virtueller Speicher: 16364.32 MB
Verfügbarer virtueller Speicher: 13662.9 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:200.01 GB) (Free:101.51 GB) NTFS
Drive d: () (Fixed) (Total:731.41 GB) (Free:649.11 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F9FCDF98)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=731.4 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 30.03.2016, 19:08   #15
Patrick123
 
MPC Cleaner - Standard

MPC Cleaner



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Patrick (Administrator) auf PATRICK-PC (30-03-2016 19:02:23)
Gestartet von C:\Users\Patrick\Desktop
Geladene Profile: Patrick (Verfügbare Profile: Patrick)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ACD Systems, Ltd.) C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3031664 2011-04-06] (VIA)
HKLM-x32\...\Run: [Device Detector] => C:\Program Files (x86)\Common Files\ACD Systems\DE\DevDetect.exe [217088 2003-11-27] (ACD Systems, Ltd.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-03-27]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{B9C1690C-CDE6-4E02-B8DF-1124B8E084EB}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3779484281-1756450511-2492205697-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Co.)
DPF: HKLM {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2011-05-11] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-05-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3779484281-1756450511-2492205697-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Patrick\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\oy121lv6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Adblock Plus - C:\Users\Patrick\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-26]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2014-06-26] [ist nicht signiert]
FF HKU\S-1-5-21-3779484281-1756450511-2492205697-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome: 
=======
CHR Profile: C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Users\Patrick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-08-24] (BitRaider, LLC)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [923136 2009-05-21] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2011-08-14] ()
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [9856 2011-05-23] (Padus, Inc.) [Datei ist nicht signiert]
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [65504 2004-03-09] (Protection Technology) [Datei ist nicht signiert]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [Datei ist nicht signiert]
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2015-11-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [Datei ist nicht signiert]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Datei ist nicht signiert]
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-30 19:02 - 2016-03-30 19:02 - 00016647 _____ C:\Users\Patrick\Desktop\FRST.txt
2016-03-30 18:45 - 2016-03-30 18:52 - 00000000 ____D C:\ProgramData\HitmanPro
2016-03-30 18:44 - 2016-03-30 18:44 - 11441744 _____ (SurfRight B.V.) C:\Users\Patrick\Desktop\HitmanPro_x64.exe
2016-03-30 16:28 - 2016-03-30 16:28 - 02870984 _____ (ESET) C:\Users\Patrick\Desktop\esetsmartinstaller_deu.exe
2016-03-30 16:06 - 2016-03-30 16:20 - 00018198 _____ C:\Users\Patrick\Desktop\Fixlog.txt
2016-03-29 16:12 - 2016-03-29 16:12 - 00165376 _____ C:\Users\Patrick\Desktop\SystemLook_x64.exe
2016-03-29 15:56 - 2016-03-29 15:56 - 03102208 _____ C:\Users\Patrick\Desktop\adwcleaner_5.107.exe
2016-03-29 15:54 - 2016-03-29 15:54 - 03102208 _____ C:\Users\Patrick\Downloads\adwcleaner_5.107.exe
2016-03-28 23:11 - 2016-03-28 08:57 - 02374144 _____ (Farbar) C:\Users\Patrick\Desktop\FRST64.exe
2016-03-28 09:16 - 2016-03-28 09:19 - 00196664 _____ C:\TDSSKiller.3.1.0.9_28.03.2016_09.16.48_log.txt
2016-03-28 08:59 - 2016-03-30 19:02 - 00000000 ____D C:\FRST
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (2).exe
2016-03-27 21:06 - 2016-03-27 21:06 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106 (1).exe
2016-03-27 20:28 - 2016-03-27 20:29 - 00188150 _____ C:\Windows\ntbtlog.txt
2016-03-27 19:28 - 2016-03-29 15:57 - 00000000 ____D C:\AdwCleaner
2016-03-27 19:28 - 2016-03-27 19:29 - 01538560 _____ C:\Users\Patrick\Downloads\adwcleaner_5.106.exe
2016-03-27 18:40 - 2016-03-27 18:40 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\MCorp
2016-03-27 18:14 - 2016-03-27 18:15 - 00000000 ____D C:\Users\Patrick\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-03-27 18:14 - 2016-03-27 18:14 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\Desktop\Vallen JPegger.lnk
2016-03-17 20:30 - 2016-03-27 22:27 - 00000635 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vallen JPegger.lnk
2016-03-09 18:40 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 18:40 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 18:40 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 18:40 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 18:40 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-08 21:37 - 2016-02-04 19:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-08 21:37 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-08 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-08 21:36 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-08 21:36 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-08 21:36 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-08 21:36 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-08 21:36 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-08 21:36 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-08 21:36 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-08 21:36 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-08 21:36 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-08 21:36 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-08 21:36 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-08 21:36 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-08 21:36 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-08 21:36 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-08 21:36 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-08 21:36 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-08 21:36 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-08 21:36 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-08 21:36 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-08 21:36 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-08 21:36 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-08 21:36 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-08 21:36 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-08 21:36 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-08 21:36 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-08 21:36 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-08 21:36 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-08 21:36 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-08 21:36 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-08 21:36 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-08 21:36 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-08 21:36 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-08 21:36 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-08 21:36 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-08 21:36 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-08 21:36 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-08 21:36 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-08 21:36 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-08 21:36 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-08 21:36 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-08 21:36 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-08 21:36 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-08 21:36 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-08 21:36 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-08 21:36 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-08 21:36 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-08 21:36 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-08 21:36 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-08 21:36 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-08 21:36 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-08 21:36 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-08 21:36 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-08 21:36 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-08 21:36 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-08 21:36 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 21:36 - 2016-01-11 21:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-08 21:35 - 2016-02-11 20:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-08 21:35 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-08 21:35 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-08 21:35 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-08 21:35 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-08 21:35 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-08 21:35 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-08 21:35 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-08 21:35 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-08 21:35 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-08 21:35 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-08 21:35 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-08 21:35 - 2016-02-11 19:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-08 21:35 - 2016-02-11 19:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-08 21:35 - 2016-02-11 19:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-08 21:35 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-08 21:35 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-08 21:35 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-08 21:35 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-08 21:35 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-08 21:34 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-08 21:34 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-08 21:34 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-08 21:34 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-08 21:34 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-08 21:34 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-08 21:34 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-08 21:34 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-08 21:34 - 2016-02-05 19:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-08 21:34 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-08 21:34 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-08 21:34 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-30 18:31 - 2011-05-11 15:19 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Skype
2016-03-30 18:29 - 2012-04-08 17:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-30 16:31 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-30 16:31 - 2009-07-14 06:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-30 16:27 - 2009-07-14 19:58 - 00699432 _____ C:\Windows\system32\perfh007.dat
2016-03-30 16:27 - 2009-07-14 19:58 - 00149572 _____ C:\Windows\system32\perfc007.dat
2016-03-30 16:27 - 2009-07-14 07:13 - 01620684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-30 16:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-03-30 16:23 - 2011-05-11 14:33 - 00064800 _____ C:\Users\Patrick\AppData\Local\GDIPFONTCACHEV1.DAT
2016-03-30 16:22 - 2011-05-11 14:23 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-30 16:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-30 16:22 - 2009-07-14 06:45 - 00298264 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-28 08:58 - 2015-10-03 21:12 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-27 22:28 - 2015-11-02 22:48 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-27 22:28 - 2014-12-10 19:30 - 00001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 36.lnk
2016-03-27 22:28 - 2014-06-26 19:19 - 00001052 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR-Registrierung.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-27 22:28 - 2011-10-06 14:07 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-27 22:28 - 2011-09-04 14:35 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2016-03-27 22:28 - 2011-05-11 14:25 - 00001833 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-27 22:28 - 2011-05-11 14:17 - 00001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-27 22:28 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-27 22:28 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-27 22:27 - 2016-02-06 16:45 - 00000897 _____ C:\Users\Public\Desktop\Command & Conquer Die ersten 10 Jahre.lnk
2016-03-27 22:27 - 2015-11-02 22:48 - 00002041 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-03-27 22:27 - 2015-10-03 21:12 - 00001100 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-03-27 22:27 - 2015-09-25 19:12 - 00000907 _____ C:\Users\Patrick\Desktop\Star Wars Jedi Knight II Jedi Outcast spielen.lnk
2016-03-27 22:27 - 2015-09-25 16:34 - 00000833 _____ C:\Users\Public\Desktop\DOSBox 0.74.lnk
2016-03-27 22:27 - 2015-09-02 16:21 - 00001132 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-03-27 22:27 - 2014-11-12 21:54 - 00001851 _____ C:\Users\Public\Desktop\ooVoo.lnk
2016-03-27 22:27 - 2014-10-11 22:42 - 00002013 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-03-27 22:27 - 2014-09-27 20:26 - 00001386 _____ C:\Users\Patrick\Desktop\CopyTrans Control Center.lnk
2016-03-27 22:27 - 2014-08-31 17:33 - 00001135 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2016-03-27 22:27 - 2014-07-04 14:58 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2016-03-27 22:27 - 2014-06-26 19:19 - 00001345 _____ C:\Users\Public\Desktop\HP Solution Center.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Mehrspieler.lnk
2016-03-27 22:27 - 2014-02-11 16:32 - 00000649 _____ C:\Users\Public\Desktop\Call of Duty - United Offensive Einzelspieler.lnk
2016-03-27 22:27 - 2013-11-12 20:33 - 00001156 _____ C:\Users\Public\Desktop\Diablo III.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Mehrspieler.lnk
2016-03-27 22:27 - 2013-02-12 20:19 - 00000689 _____ C:\Users\Patrick\Desktop\Call of Duty Einzelspieler.lnk
2016-03-27 22:27 - 2012-12-23 17:06 - 00000670 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2016-03-27 22:27 - 2012-07-17 21:51 - 00000706 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-27 22:27 - 2012-06-24 19:09 - 00001859 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-27 22:27 - 2012-04-20 16:32 - 00000814 _____ C:\Users\Patrick\Desktop\Diablo II - Lord of Destruction.lnk
2016-03-27 22:27 - 2012-04-20 16:23 - 00000814 _____ C:\Users\Public\Desktop\Diablo II.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001777 _____ C:\Users\Patrick\Desktop\Spotify.lnk
2016-03-27 22:27 - 2012-03-13 20:10 - 00001763 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-03-27 22:27 - 2011-11-04 20:03 - 00001822 _____ C:\Users\Public\Desktop\ICQ7.6.lnk
2016-03-27 22:27 - 2011-10-03 10:02 - 00001577 _____ C:\Users\Patrick\Desktop\DivX Movies.lnk
2016-03-27 22:27 - 2011-09-15 16:31 - 00000860 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-27 22:27 - 2011-08-18 18:45 - 00000976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Sierra-Dienstprogramme.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Mehrspieler.lnk
2016-03-27 22:27 - 2011-08-13 20:30 - 00000905 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) - Einzelspieler.lnk
2016-03-27 22:27 - 2011-06-23 11:12 - 00001056 _____ C:\Users\Public\Desktop\Hearts of Iron III.lnk
2016-03-27 22:27 - 2011-06-17 22:02 - 00002693 _____ C:\Users\Public\Desktop\Skype.lnk
2016-03-27 22:27 - 2011-06-10 19:09 - 00000622 _____ C:\Users\Public\Desktop\simfy.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002881 _____ C:\Users\Public\Desktop\ACD FotoCanvas 3.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002845 _____ C:\Users\Public\Desktop\ACDSee 6.0.lnk
2016-03-27 22:27 - 2011-05-23 20:18 - 00002721 _____ C:\Users\Public\Desktop\ACD FotoSlate 3.0.lnk
2016-03-27 22:27 - 2011-05-21 11:49 - 00000784 _____ C:\Users\Patrick\Desktop\PATRIZIER II Gold starten.lnk
2016-03-27 22:27 - 2011-05-14 12:15 - 00000767 _____ C:\Users\Public\Desktop\Arsenal of Democracy.lnk
2016-03-27 22:27 - 2011-05-11 16:56 - 00001000 _____ C:\Users\Public\Desktop\Armageddon.lnk
2016-03-27 22:27 - 2011-05-11 16:53 - 00000983 _____ C:\Users\Patrick\Desktop\Winamp.lnk
2016-03-27 22:27 - 2011-05-11 16:48 - 00000773 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-27 22:27 - 2011-05-11 16:33 - 00001446 _____ C:\Users\Patrick\Desktop\Windows Live Mail.lnk
2016-03-27 22:27 - 2011-05-11 14:43 - 00000355 _____ C:\Users\Patrick\Desktop\Computer - Verknüpfung.lnk
2016-03-27 22:27 - 2011-05-11 14:25 - 00001827 _____ C:\Users\Public\Desktop\Opera.lnk
2016-03-27 22:27 - 2011-05-11 14:18 - 00001444 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
2016-03-27 22:27 - 2011-05-11 14:17 - 00001200 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-03-27 22:27 - 2011-05-11 14:12 - 00001425 _____ C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-03-27 22:27 - 2009-07-14 07:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-27 22:27 - 2009-07-14 06:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-27 22:26 - 2011-10-09 15:27 - 00000000 ____D C:\Windows\Sun
2016-03-27 22:23 - 2011-06-02 10:11 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:23 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-03-27 22:07 - 2015-10-03 21:12 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-03-27 20:31 - 2016-02-16 14:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-27 20:03 - 2013-08-24 19:52 - 00000000 ____D C:\ProgramData\BitRaider
2016-03-27 19:31 - 2014-06-26 19:21 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Yahoo!
2016-03-27 19:08 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-27 18:19 - 2011-08-18 18:43 - 00000302 _____ C:\Windows\SIERRA.INI
2016-03-27 15:37 - 2014-08-08 15:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-26 15:05 - 2014-11-01 14:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 15:05 - 2013-10-16 22:32 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 15:05 - 2012-06-13 08:41 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-26 15:04 - 2015-08-26 16:55 - 00000000 ____D C:\Users\Patrick\.oracle_jre_usage
2016-03-26 15:04 - 2014-11-01 14:57 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-24 23:26 - 2015-04-04 11:22 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-24 21:29 - 2012-04-08 17:12 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-24 21:29 - 2012-04-08 17:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-24 21:29 - 2011-06-13 21:07 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-24 19:17 - 2016-02-13 20:35 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-24 18:53 - 2011-10-06 14:59 - 00000000 ____D C:\Windows\Panther
2016-03-20 16:16 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Local\Battle.net
2016-03-20 16:16 - 2013-11-12 20:33 - 00000000 ____D C:\Program Files (x86)\Diablo III
2016-03-20 16:08 - 2014-08-22 17:34 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-03-19 20:40 - 2014-08-22 17:35 - 00000000 ____D C:\Users\Patrick\AppData\Roaming\Battle.net
2016-03-19 20:40 - 2013-11-12 19:53 - 00000000 ____D C:\ProgramData\Battle.net
2016-03-17 16:35 - 2015-04-22 16:14 - 00003872 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1418232650
2016-03-17 16:35 - 2011-05-11 14:25 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-10 14:09 - 2015-10-03 21:12 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-10 14:08 - 2015-10-03 21:12 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-10 14:08 - 2011-06-01 20:57 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-09 23:38 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:20 - 2013-11-26 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-03-09 23:19 - 2013-11-26 09:51 - 00154816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00133168 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-03-09 23:19 - 2013-11-26 09:51 - 00069888 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-03-09 18:41 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-03-08 22:31 - 2013-07-20 13:58 - 00000000 ____D C:\Windows\system32\MRT
2016-03-08 22:28 - 2011-05-11 15:01 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2012-06-12 12:15 - 2012-06-12 13:41 - 0000455 _____ () C:\Users\Patrick\AppData\Roaming\SamsungLiveUpdateConfig.ini
2011-11-01 10:23 - 2014-07-17 21:48 - 0007168 _____ () C:\Users\Patrick\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-18 21:51 - 2012-06-18 21:51 - 0000017 _____ () C:\Users\Patrick\AppData\Local\resmon.resmoncfg
2011-05-11 15:20 - 2011-05-11 15:20 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2014-06-26 19:13 - 2014-06-26 19:45 - 0001331 _____ () C:\ProgramData\hpzinstall.log
2013-01-11 23:51 - 2013-01-11 23:51 - 0000040 _____ () C:\ProgramData\ra3.ini

Einige Dateien in TEMP:
====================
C:\Users\Patrick\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-03-29 17:20

==================== Ende von FRST.txt ============================
         
So Programme abgearbeitet. Soweit keine Probleme.

Antwort

Themen zu MPC Cleaner
avira, defender, desktop, dllhost.exe, einstellungen, explorer, firefox, google, helper, home, internet, internet explorer, löschen, modul, mozilla, mpc cleaner, mpc-cleaner, programm, programme, prozesse, server, services.exe, software, svchost.exe, temp, windows, winlogon.exe, yahoo



Ähnliche Themen: MPC Cleaner


  1. Datenmüll Cleaner
    Alles rund um Windows - 28.08.2015 (1)
  2. Adw Cleaner zeigt immer noch in Scheduled tasks Daten an die der Cleaner nicht Löscht
    Log-Analyse und Auswertung - 23.08.2015 (5)
  3. Fund im ADW-Cleaner
    Log-Analyse und Auswertung - 01.08.2014 (16)
  4. Fund von Adw-Cleaner
    Log-Analyse und Auswertung - 25.01.2014 (7)
  5. PC Performer - Bin ich ihn los mit adw cleaner?
    Plagegeister aller Art und deren Bekämpfung - 13.10.2013 (8)
  6. Frage zum CC Cleaner
    Überwachung, Datenschutz und Spam - 06.03.2012 (4)
  7. DE-Cleaner
    Mülltonne - 22.06.2011 (0)
  8. Frage zu CC Cleaner !
    Alles rund um Windows - 07.11.2010 (2)
  9. the Cleaner 5
    Antiviren-, Firewall- und andere Schutzprogramme - 04.10.2007 (0)
  10. TR/Cleaner.a - Er will nicht weg :-(
    Plagegeister aller Art und deren Bekämpfung - 05.09.2007 (1)
  11. TR/Cleaner.A ???
    Mülltonne - 17.08.2007 (0)
  12. Zum Teufel mit TR/Cleaner.A ....
    Plagegeister aller Art und deren Bekämpfung - 06.08.2007 (2)
  13. Drive Cleaner
    Plagegeister aller Art und deren Bekämpfung - 15.06.2007 (7)
  14. Drive Cleaner Pop Up
    Log-Analyse und Auswertung - 27.03.2007 (3)

Zum Thema MPC Cleaner - Hallo, da ich mal wieder nach Jahren ein Spiel spielen wollte und dieses unter Win7 nicht mehr lief hab ich dummerweise versucht einen no-cd crack zu installieren. Ich bekam sofort - MPC Cleaner...
Archiv
Du betrachtest: MPC Cleaner auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.